Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/764f43c2-e082-43ab-bc88-6880529588f0.roa
File: 764f43c2-e082-43ab-bc88-6880529588f0.roa (raw, json)
Hash identifier: NjBFTpxuxAKFhcibDviZ8XbKeKkB5ScSWYL62GiuQGk=
Subject key identifier: CE:6C:A5:B1:A1:AD:8E:98:57:46:DD:9B:44:B3:45:73:C7:1C:46:72
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 67C2EBBDC981743F4FEC7106307B1BDC872C38
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/764f43c2-e082-43ab-bc88-6880529588f0.roa
Signing time: Tue 28 Jan 2025 00:00:00 +0000
ROA not before: Tue 28 Jan 2025 00:00:00 +0000
ROA not after: Tue 04 Mar 2025 23:59:59 +0000
asID: 16509
IP address blocks: 184.73.0.0/17 maxlen: 17
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
67:c2:eb:bd:c9:81:74:3f:4f:ec:71:06:30:7b:1b:dc:87:2c:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Jan 28 00:00:00 2025 GMT
Not After : Mar 4 23:59:59 2025 GMT
Subject: serialNumber=108891f36135018bf6ec1f879b77c8037ae746d0017fb6ca2d086582669ca71a, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:38:26:b6:66:56:3f:1b:ca:0b:93:28:bd:f7:
02:c7:11:b9:73:6b:fd:f1:88:33:de:1a:84:d8:f6:
33:46:fc:2e:02:5b:46:bd:91:e7:58:65:38:06:d1:
b7:5d:6b:9e:70:08:df:66:3d:34:55:03:dd:b5:a1:
ed:77:f5:32:b3:70:2b:5d:55:3c:ee:51:26:2b:9d:
75:b1:e7:fb:18:84:8f:89:69:20:41:6d:d4:07:f7:
1c:79:74:c2:3d:4a:b7:79:25:4e:72:ee:30:25:c8:
8b:c3:58:69:b3:34:68:57:d1:7b:ef:e0:d6:e6:71:
30:d9:0a:ca:db:94:d5:6f:53:04:97:78:ea:b4:8d:
8f:4e:4f:8e:35:95:48:60:7f:f9:ee:20:24:e5:4c:
da:d2:2d:02:94:da:a2:86:50:b6:01:1b:18:62:83:
9e:cf:ec:51:f0:45:2b:ed:4a:6d:aa:7b:7b:87:5d:
4c:bc:f5:56:9c:a1:65:5b:72:27:b1:14:f3:c5:ef:
be:a3:44:3b:a2:ba:61:1f:b4:43:28:ab:b1:d3:6b:
33:c6:4c:49:27:eb:97:45:e9:46:e9:c3:bd:8b:cd:
58:2a:30:70:71:db:8b:13:31:ba:a9:ad:c2:6a:9a:
55:45:de:82:b1:d2:23:82:c6:fc:db:7f:3d:a8:29:
55:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:6C:A5:B1:A1:AD:8E:98:57:46:DD:9B:44:B3:45:73:C7:1C:46:72
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/764f43c2-e082-43ab-bc88-6880529588f0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
184.73.0.0/17
Signature Algorithm: sha256WithRSAEncryption
17:12:fc:28:c4:80:b6:a1:43:96:6d:0f:61:96:b5:8a:de:d9:
40:29:c5:2f:0d:8b:04:62:20:ec:e6:a3:e1:08:3e:77:e1:a1:
03:c8:6e:5e:1f:c2:df:8a:8b:dd:92:94:c6:7c:e4:87:e6:fe:
36:ab:06:03:30:77:87:3e:b4:67:57:d9:aa:61:a1:69:d0:88:
b8:07:27:00:49:78:95:fa:90:51:ec:05:4d:f6:23:03:08:6f:
bc:fe:d9:a0:59:bb:05:46:59:33:e6:67:5e:21:74:12:fa:0c:
05:25:67:0e:66:0d:c5:ac:c8:88:ea:08:f7:c7:46:68:89:ab:
c2:b8:39:70:7e:1e:14:87:f7:0c:04:85:8d:b4:27:bb:6b:4e:
1f:8e:fc:0e:df:e5:bc:ba:47:22:9a:6a:7d:4f:0b:ac:9d:55:
27:3a:2f:0b:27:ec:a9:e6:f2:fd:4a:4c:5e:77:97:b0:fc:fb:
47:a2:74:7f:a2:f5:a0:59:d0:78:67:8e:bb:e4:d5:c9:de:8f:
14:39:63:20:ad:63:4f:66:dc:8d:c7:85:80:d6:5e:df:85:14:
dc:f4:75:12:cd:12:c0:a8:31:e4:72:52:47:31:00:1b:c8:27:
4f:ec:34:c8:34:64:07:65:0e:f7:9b:d6:d3:12:a0:7b:30:84:
f0:06:7f:15
-----BEGIN CERTIFICATE-----
MIIF9zCCBN+gAwIBAgITZ8LrvcmBdD9P7HEGMHsb3IcsODANBgkqhkiG9w0BAQsF
ADA9MTswOQYDVQQDEzI2ZWQ4OGNhZDExZmVhYzc3NDQ5ZjAxOGQ0MmJlMzU4ZWIz
NzEwN2RiZThjYjcxZDBhNzAeFw0yNTAxMjgwMDAwMDBaFw0yNTAzMDQyMzU5NTla
MHoxSTBHBgNVBAUTQDEwODg5MWYzNjEzNTAxOGJmNmVjMWY4NzliNzdjODAzN2Fl
NzQ2ZDAwMTdmYjZjYTJkMDg2NTgyNjY5Y2E3MWExLTArBgNVBAMTJGIyNWM5NzBm
LWQ4MTMtNDQ1Yy1iZmUyLTYyNjY4NTE4Yzg3ZTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKg4JrZmVj8byguTKL33AscRuXNr/fGIM94ahNj2M0b8LgJb
Rr2R51hlOAbRt11rnnAI32Y9NFUD3bWh7Xf1MrNwK11VPO5RJiuddbHn+xiEj4lp
IEFt1Af3HHl0wj1Kt3klTnLuMCXIi8NYabM0aFfRe+/g1uZxMNkKytuU1W9TBJd4
6rSNj05PjjWVSGB/+e4gJOVM2tItApTaooZQtgEbGGKDns/sUfBFK+1Kbap7e4dd
TLz1VpyhZVtyJ7EU88XvvqNEO6K6YR+0QyirsdNrM8ZMSSfrl0XpRunDvYvNWCow
cHHbixMxuqmtwmqaVUXegrHSI4LG/Nt/PagpVVUCAwEAAaOCArEwggKtMB0GA1Ud
DgQWBBTObKWxoa2OmFdG3ZtEs0VzxxxGcjAfBgNVHSMEGDAWgBQQXdeNVXhAq0Nd
vRUhII8p+kk/rjAOBgNVHQ8BAf8EBAMCB4AwgfMGCCsGAQUFBwEBBIHmMIHjMIHg
BggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2Fy
aW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMv
MmEyNDY5NDctMmQ2Mi00YTZjLWJhMDUtODcxODdmMDA5OWIyLzFiYTMwMmI4LThk
YWItNDkxZC1iOWVkLWQ3YzkyZDAzMGQ4Mi82ZWQ4OGNhZDExZmVhYzc3NDQ5ZjAx
OGQ0MmJlMzU4ZWIzNzEwN2RiZThjYjcxZDBhNy5jZXIwgZ4GCCsGAQUFBwELBIGR
MIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h
bWF6b25hd3MuY29tL3ZvbHVtZS8yMGFhMzI5Yi1mYzUyLTRjNjEtYmY1My0wOTcy
NWMwNDI5NDIvNzY0ZjQzYzItZTA4Mi00M2FiLWJjODgtNjg4MDUyOTU4OGYwLnJv
YTCBiAYDVR0fBIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0
LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMt
MDk3MjVjMDQyOTQyL19xeDNSSjhCalVLLU5ZNnpjUWZiNk10eDBLYy5jcmwwGAYD
VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw
BgMEB7hJADANBgkqhkiG9w0BAQsFAAOCAQEAFxL8KMSAtqFDlm0PYZa1it7ZQCnF
Lw2LBGIg7Oaj4Qg+d+GhA8huXh/C34qL3ZKUxnzkh+b+NqsGAzB3hz60Z1fZqmGh
adCIuAcnAEl4lfqQUewFTfYjAwhvvP7ZoFm7BUZZM+ZnXiF0EvoMBSVnDmYNxazI
iOoI98dGaImrwrg5cH4eFIf3DASFjbQnu2tOH478Dt/lvLpHIppqfU8LrJ1VJzov
Cyfsqeby/UpMXneXsPz7R6J0f6L1oFnQeGeOu+TVyd6PFDljIK1jT2bcjceFgNZe
34UU3PR1Es0SwKgx5HJSRzEAG8gnT+w0yDRkB2UO95vW0xKgezCE8AZ/FQ==
-----END CERTIFICATE-----
Generated at Fri Apr 25 11:56:29 2025 by rpki-client