Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/881c6b9b-594d-4ee7-a6d1-b1e9e6ae935b.roa
File: 881c6b9b-594d-4ee7-a6d1-b1e9e6ae935b.roa (raw, json)
Hash identifier: ixqg9YqjfTKSf052qYvz2DwoEMvd5B4PfqHDf96ORYQ=
Subject key identifier: D1:F4:A4:67:73:4E:9E:F6:AE:7D:68:33:57:35:F8:FC:28:1B:4D:84
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 225B0F46035704BE7E080EBD1C29AFB0C13B2D68
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/881c6b9b-594d-4ee7-a6d1-b1e9e6ae935b.roa
Signing time: Mon 13 Jan 2025 00:00:00 +0000
ROA not before: Mon 13 Jan 2025 00:00:00 +0000
ROA not after: Mon 17 Feb 2025 23:59:59 +0000
asID: 16509
IP address blocks: 72.44.40.0/21 maxlen: 21
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
22:5b:0f:46:03:57:04:be:7e:08:0e:bd:1c:29:af:b0:c1:3b:2d:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Jan 13 00:00:00 2025 GMT
Not After : Feb 17 23:59:59 2025 GMT
Subject: serialNumber=df8a64f45b64c6548fbfabdb8b3d6c3262f33666f51731afb93d1555153dfcee, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:bf:da:9b:8f:ff:10:a4:bf:b9:40:12:5b:94:
d6:f8:a4:70:a9:c0:ff:fc:38:a6:f8:fc:bb:3c:1a:
d9:5b:de:6b:30:c8:33:32:ea:a4:2b:68:87:f9:d9:
6c:7d:71:ff:f3:64:1b:45:17:f7:ad:21:34:a6:41:
a9:8b:be:b9:1f:da:4c:c7:c4:79:79:b9:a0:7b:26:
b3:7c:89:46:21:ad:a8:9b:b0:83:95:56:12:7f:4e:
38:7d:60:b7:c8:42:01:6d:ce:af:26:3d:04:ff:20:
3e:5c:ae:af:c5:35:4e:d0:8f:53:46:37:11:02:96:
ca:e1:04:f3:2b:30:90:44:da:5d:b7:09:c6:d2:95:
f5:65:0c:e0:ea:0a:7c:30:60:3c:02:66:c7:04:17:
c9:73:e1:6e:6e:46:f1:70:30:3b:31:a0:44:16:2b:
90:11:01:ab:55:65:8f:97:d3:77:63:a4:b7:03:fa:
3a:cc:77:c5:91:b5:8d:a4:fe:8e:eb:f8:5a:72:55:
23:15:47:9f:86:2c:dd:0b:3c:58:85:87:0b:60:b4:
87:35:2e:9a:20:92:c9:2e:e3:4f:e7:37:b0:35:74:
5a:6d:b9:4f:68:9f:b5:39:b3:47:f5:68:69:6e:65:
26:41:e6:9a:7f:6e:75:8c:9d:c2:3e:9e:9b:36:53:
7f:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:F4:A4:67:73:4E:9E:F6:AE:7D:68:33:57:35:F8:FC:28:1B:4D:84
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/881c6b9b-594d-4ee7-a6d1-b1e9e6ae935b.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
72.44.40.0/21
Signature Algorithm: sha256WithRSAEncryption
76:03:d3:b2:f5:69:6d:b0:33:65:c9:bf:31:81:a3:25:8a:22:
02:06:60:fb:88:83:86:03:bc:b2:8f:33:e6:69:0a:77:5c:65:
2b:92:38:3d:7f:fb:29:99:7c:fa:b0:36:0a:e1:34:3f:58:4c:
1a:7e:25:5d:3e:f6:b8:b7:a5:9c:3b:b1:f2:fc:5a:8b:94:f2:
24:0b:59:ee:16:b2:ce:ef:3e:45:36:54:eb:b5:2c:93:6b:f9:
c9:21:c5:b6:1d:df:77:29:66:a4:b7:84:60:1f:4f:d1:80:b8:
14:a8:3e:43:ff:c3:37:06:5b:28:d0:68:30:27:de:d5:1b:aa:
b4:ee:46:b2:6f:8d:37:a2:a0:90:6f:0c:01:d5:e4:56:4e:ed:
f4:ff:d9:af:db:28:f8:25:16:37:3c:59:65:46:5f:87:0e:d2:
7d:8f:5e:96:51:54:45:fe:b0:70:ea:c7:c2:e5:58:ff:0b:be:
a5:93:7e:75:a5:57:ec:aa:f3:83:48:8a:03:4a:93:20:4d:46:
42:7f:a2:bf:05:46:2f:20:e9:e3:62:30:ef:3e:f6:06:19:d0:
8d:c9:91:3b:47:f7:ab:a9:72:cf:78:95:af:75:df:c5:a5:ba:
90:a5:af:5f:0f:04:79:8a:a3:82:47:e8:f1:1b:e8:c0:f6:a7:
3b:d2:08:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 05:37:58 2025 by rpki-client