Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8bddc70f-633e-45e7-87bf-3deb8fc20ec9.roa
File: 8bddc70f-633e-45e7-87bf-3deb8fc20ec9.roa (raw, json)
Hash identifier: 6QBh9YmSgbBO1HJ2Qbq5erBP21RWrkU5TYeMnjcPsmw=
Subject key identifier: 1E:08:87:F8:08:2C:54:9E:09:BC:D2:FB:D5:6B:CB:F9:D0:A6:6E:0E
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 7DBA8855E4D4B7E962156DC7294423844BC67DC9
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8bddc70f-633e-45e7-87bf-3deb8fc20ec9.roa
Signing time: Wed 15 Jan 2025 00:00:00 +0000
ROA not before: Wed 15 Jan 2025 00:00:00 +0000
ROA not after: Wed 19 Feb 2025 23:59:59 +0000
asID: 6167
IP address blocks: 139.56.3.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7d:ba:88:55:e4:d4:b7:e9:62:15:6d:c7:29:44:23:84:4b:c6:7d:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Jan 15 00:00:00 2025 GMT
Not After : Feb 19 23:59:59 2025 GMT
Subject: serialNumber=db5803b321238ed504642901ac81d8eab3d1eea7b2e1fae6b1690db58a9afd8e, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:9b:c2:fa:ec:6f:9a:6c:a7:94:b5:08:2b:25:
6e:73:dd:fc:8e:e6:a2:b4:e0:a7:fa:a3:a3:8f:6a:
0c:e1:f3:25:9b:2b:23:43:19:6a:a6:db:ff:a3:c8:
d1:d0:f0:eb:3f:0c:22:75:58:49:8a:f5:b0:02:8e:
c4:6b:ff:3c:6e:61:6c:f4:e0:59:37:4c:be:53:d1:
73:cf:03:d5:fc:31:01:e0:e3:23:4d:b3:e6:4e:85:
e3:04:35:9f:7b:ed:cc:c6:be:f9:1c:48:f6:99:08:
71:04:ff:6e:09:6a:2b:44:38:7b:d3:ae:c3:45:d0:
b9:49:1d:ca:c3:05:fe:2f:62:7b:d9:12:ca:a1:09:
41:36:30:77:7d:47:14:56:5f:7e:f2:e5:8b:31:a9:
5f:6e:3a:e5:be:51:b8:c5:16:8d:ca:e4:fe:7a:26:
5b:13:6d:07:d5:1d:ee:66:e5:9c:73:e5:06:10:8e:
08:3c:aa:44:06:c8:39:d5:80:e1:03:26:fc:7c:70:
dd:9b:bb:23:98:87:7e:8a:0a:ad:3e:7f:b3:91:47:
3f:d2:9a:20:f5:5f:f6:7c:fe:1d:21:98:30:06:db:
fc:f2:0a:92:06:22:6f:fd:9d:f9:e8:65:41:79:b2:
8f:74:5b:cd:8f:e0:ea:fb:1c:23:68:72:9e:01:f6:
38:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:08:87:F8:08:2C:54:9E:09:BC:D2:FB:D5:6B:CB:F9:D0:A6:6E:0E
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8bddc70f-633e-45e7-87bf-3deb8fc20ec9.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
139.56.3.0/24
Signature Algorithm: sha256WithRSAEncryption
04:c0:e0:66:46:d6:62:a8:c8:ff:d9:bd:52:9d:8f:d8:8e:16:
8f:b2:ba:b0:67:45:b5:b2:e6:be:91:a5:eb:a8:64:f2:73:29:
84:b5:0a:c0:df:57:17:fc:b9:46:00:00:14:2e:a2:e7:00:0d:
9b:c6:3a:7b:9a:10:64:57:fc:73:a1:df:a8:1d:5f:a5:3d:81:
f9:63:7f:a5:a6:73:f7:64:00:06:54:ec:6c:11:be:6a:7c:aa:
87:ec:f6:0f:68:42:41:c4:33:e4:1d:bc:24:a8:2a:f1:00:27:
42:58:e1:fd:eb:98:ca:74:6b:38:a8:85:eb:7b:68:fc:59:4a:
39:d2:07:42:b6:d2:9f:82:85:50:a5:a4:0b:e7:63:8b:78:98:
22:05:69:33:2d:2e:cc:a7:e3:a3:35:a7:bc:c6:47:d1:7b:e7:
2c:6c:69:02:0a:05:7c:73:bd:91:22:d7:59:2d:3e:49:b5:81:
f9:ed:7d:9f:c0:d5:86:26:72:da:de:45:74:23:89:ca:2b:46:
9f:50:eb:b9:64:59:37:06:86:b3:b8:88:b8:f0:d8:73:9c:dc:
12:37:2f:e4:79:c5:fc:4a:d3:ec:60:44:7a:f3:fe:15:ab:34:
bf:ba:43:85:1d:0f:04:f1:85:79:82:79:ab:fe:9f:62:12:75:
0c:75:5f:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 11:20:54 2025 by rpki-client