Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7717889e-c371-48ff-a08c-1bac4d892dd4.roa
File: 7717889e-c371-48ff-a08c-1bac4d892dd4.roa (raw, json)
Hash identifier: K1tN0UvPoet8XfKkbOTKKZwrfAFEho5uaZZIJXlIjio=
Subject key identifier: 7B:6D:53:23:51:7B:55:67:CD:59:FE:70:01:3D:AA:E8:99:F6:62:E0
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 6F1B5296A31498E77E59D09C37E4251B0966B361
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7717889e-c371-48ff-a08c-1bac4d892dd4.roa
Signing time: Tue 28 Jan 2025 00:00:00 +0000
ROA not before: Tue 28 Jan 2025 00:00:00 +0000
ROA not after: Tue 04 Mar 2025 23:59:59 +0000
asID: 16509
IP address blocks: 99.150.80.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6f:1b:52:96:a3:14:98:e7:7e:59:d0:9c:37:e4:25:1b:09:66:b3:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Jan 28 00:00:00 2025 GMT
Not After : Mar 4 23:59:59 2025 GMT
Subject: serialNumber=32afc5ccf9bd284b18168decc4360d18ad87b3d70226bf1e79dcf3b79942f4a2, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:16:af:75:81:32:50:5d:80:b9:83:62:b3:bb:
2f:a5:a9:1d:3d:a2:44:7f:07:0b:21:bf:73:cc:72:
a0:5f:ad:a8:dc:fe:03:a3:5d:85:8f:91:c0:61:b3:
2c:47:2e:a7:da:2e:3a:77:14:c6:60:a8:ca:16:4d:
6b:6e:ad:73:62:06:d7:12:ad:4f:1d:86:d2:b0:32:
47:06:a1:25:e2:2a:e4:db:13:1c:2e:21:0d:3b:4b:
57:80:a3:b4:b8:e8:f2:e0:ef:42:ff:55:96:75:dc:
2e:18:8c:d0:58:55:88:84:59:f4:74:41:93:8b:a0:
17:33:12:89:1d:a5:9f:85:42:7e:1d:e8:34:e5:7a:
00:d6:4a:ef:3c:0c:88:24:08:e1:22:e5:b2:e2:a3:
e8:88:40:1a:f6:71:4f:3e:d9:d6:d8:d9:22:d3:17:
fa:23:d8:04:d4:2b:73:cf:b0:9c:35:34:f9:0f:31:
2e:e9:26:24:7c:c0:c8:72:16:fd:4a:df:40:59:af:
48:fb:cc:de:c8:8f:de:71:e8:cc:1f:47:25:1c:42:
66:3e:c0:08:00:d0:84:f3:f8:7c:a6:2a:b5:2f:b9:
82:93:59:8b:3e:ac:af:dd:36:5b:84:0a:84:92:1c:
28:60:0f:7c:0a:9f:1e:3f:61:8c:fe:8d:b7:a1:20:
a1:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:6D:53:23:51:7B:55:67:CD:59:FE:70:01:3D:AA:E8:99:F6:62:E0
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7717889e-c371-48ff-a08c-1bac4d892dd4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
99.150.80.0/23
Signature Algorithm: sha256WithRSAEncryption
7e:9a:da:45:55:12:6f:f8:0c:44:50:a7:41:f7:44:c4:ee:05:
b7:18:9b:00:ed:f2:86:8f:7d:24:07:f7:b6:f5:07:89:1b:35:
d9:28:8f:19:40:8c:8d:86:a2:a7:00:9a:91:da:0d:d8:f5:db:
5f:4a:06:b7:50:9f:96:c5:3d:b6:ae:7d:81:b1:9a:02:4f:42:
dc:4d:4e:ba:34:d9:18:b7:e4:ee:b7:33:99:c3:f5:e0:59:24:
52:fd:e5:b4:58:4f:9d:ce:3d:0e:7f:19:a1:f4:f7:d9:7b:1f:
b2:51:dc:ca:c7:20:cd:4c:2f:a5:5d:e9:f0:3e:e7:74:16:88:
84:30:cf:25:3f:83:bf:ab:14:91:bf:20:9a:a2:0d:04:f9:08:
bd:2a:59:2d:c4:ae:76:e0:92:7e:45:d5:de:58:6f:7e:04:8f:
e8:ed:14:80:97:84:85:a6:6f:04:0c:55:27:50:9f:0b:8b:bb:
55:f9:4a:f3:9e:d6:09:b6:a7:dc:4f:70:59:19:e7:8d:72:9d:
9e:b5:4a:b2:c2:fa:40:7a:6a:d9:c7:71:5e:ea:c7:f9:76:06:
5e:81:01:f5:28:a6:6a:f2:52:d3:24:0b:9f:48:a3:bb:b2:b7:
31:38:70:73:74:51:c3:94:c3:96:46:58:17:82:f0:cc:22:b1:
b8:17:e3:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 11:32:00 2025 by rpki-client