Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/780d74b7-efe5-4bc6-8710-333a5f0d8740.roa
File: 780d74b7-efe5-4bc6-8710-333a5f0d8740.roa (raw, json)
Hash identifier: N3Nps/9LplYzErgSSIn7F73hL25OL5y6Qe51i1tfmxs=
Subject key identifier: EB:04:1B:60:1F:79:78:9B:C9:42:24:20:A5:1A:34:D1:51:44:33:1D
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 26931D0001C9F2E4CB7110C24CD0B9EEFB791CDF
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/780d74b7-efe5-4bc6-8710-333a5f0d8740.roa
Signing time: Tue 07 Jan 2025 00:00:00 +0000
ROA not before: Tue 07 Jan 2025 00:00:00 +0000
ROA not after: Tue 11 Feb 2025 23:59:59 +0000
asID: 14618
IP address blocks: 2600:1ff7:80c0::/46 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
26:93:1d:00:01:c9:f2:e4:cb:71:10:c2:4c:d0:b9:ee:fb:79:1c:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Jan 7 00:00:00 2025 GMT
Not After : Feb 11 23:59:59 2025 GMT
Subject: serialNumber=789414bf4c25a7a952312d157bc3dcd115dedae16013626e50f73ede9bc63748, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:41:42:a0:45:f4:3f:ec:7b:33:6d:10:61:50:
37:68:3c:b3:de:26:75:ff:57:68:b6:1e:91:1e:2b:
2f:a6:e2:e4:4d:ec:52:a4:0f:b2:d6:39:03:fd:d4:
ca:9e:53:6b:e3:da:4c:a2:c3:24:ad:fb:10:12:85:
50:0a:bc:a7:01:a4:47:08:c5:92:58:69:9d:22:dd:
5f:ae:c2:38:a6:fd:08:ef:10:1d:7f:80:f6:68:c0:
bb:ac:34:da:f4:38:88:ad:39:00:db:bd:2a:77:3a:
e0:ab:e7:7f:54:94:82:74:26:cd:4e:98:a4:a1:d2:
19:09:f7:a9:15:8c:4b:ac:b1:a3:33:3a:ee:75:7c:
db:3e:89:ec:a8:0c:91:28:03:6c:92:d0:4c:7c:19:
0e:7a:2e:ef:65:36:6d:48:4e:54:9e:88:9c:8e:d5:
9e:a2:c4:82:03:b2:b7:20:ba:31:c0:e6:7a:34:42:
79:6c:58:43:9d:38:9b:89:7d:a3:e1:34:04:09:6f:
b5:9c:87:8a:e9:3b:8b:73:53:92:8d:a9:8e:d5:23:
bc:af:cf:60:83:6c:c6:f2:41:99:d3:ec:3f:93:f8:
34:77:1f:b6:df:3a:1e:59:cb:25:eb:e7:e3:f4:47:
b6:e9:c3:4b:a8:8d:10:bb:8e:9d:eb:0f:e1:18:cd:
4e:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:04:1B:60:1F:79:78:9B:C9:42:24:20:A5:1A:34:D1:51:44:33:1D
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/780d74b7-efe5-4bc6-8710-333a5f0d8740.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2600:1ff7:80c0::/46
Signature Algorithm: sha256WithRSAEncryption
1f:49:5a:6c:d6:89:dc:a5:ef:98:26:aa:0b:74:be:ef:69:12:
b9:87:ae:d4:e7:b6:2b:9d:36:e8:e2:07:a9:37:21:b4:aa:f9:
ff:d1:a7:3d:a5:0f:3f:e1:aa:70:59:11:f1:61:c8:f9:b8:e3:
d8:6d:18:36:98:98:4c:1c:58:8d:7e:57:c2:f2:3b:2c:28:9d:
e2:39:50:63:ed:12:9e:a7:42:16:20:ba:57:28:48:3a:42:4a:
bc:22:16:c9:5d:af:84:e9:3d:f1:59:59:f8:3d:ea:8a:fb:95:
c4:9b:d4:12:af:c5:00:dc:13:9f:3e:93:07:59:4b:27:d4:69:
06:d3:73:85:2c:a7:d1:71:bb:69:59:f8:d2:3f:0e:2a:5e:73:
d6:ae:14:2e:19:f8:f4:ac:a7:08:da:aa:d4:e9:35:55:9c:f7:
3c:63:37:62:68:db:34:a4:c6:30:e1:87:e3:26:55:4e:0a:b4:
9d:92:c7:93:34:2a:7d:e5:aa:78:b5:7c:c8:9f:38:8d:cc:62:
3f:92:95:07:17:6b:d3:60:e9:d5:8d:43:32:d6:58:90:80:f4:
6b:70:95:97:e0:c2:6f:fe:45:73:d0:5a:4f:0f:4c:94:90:2c:
a3:ae:21:ae:9f:ea:15:7a:2b:16:e5:60:77:c2:85:8a:5a:3a:
21:1c:0f:74
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Fri Apr 25 09:57:05 2025 by rpki-client