Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c5709ea0-6bb9-4753-913b-299185e04aba.roa
File: c5709ea0-6bb9-4753-913b-299185e04aba.roa (raw, json)
Hash identifier: L7klFKewe+F6v78Mdih3c+U8K63BTfKbxaLlB3vexmQ=
Subject key identifier: 98:3E:A5:75:90:E8:DF:4C:37:E2:1B:BB:CB:29:4D:12:3C:A3:CE:7E
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 1D13913BCCEE68A9FD24217FFECAD7B21E718C07
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c5709ea0-6bb9-4753-913b-299185e04aba.roa
Signing time: Tue 07 Jan 2025 00:00:00 +0000
ROA not before: Tue 07 Jan 2025 00:00:00 +0000
ROA not after: Tue 11 Feb 2025 23:59:59 +0000
asID: 14618
IP address blocks: 2600:1f69:8080::/46 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1d:13:91:3b:cc:ee:68:a9:fd:24:21:7f:fe:ca:d7:b2:1e:71:8c:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Jan 7 00:00:00 2025 GMT
Not After : Feb 11 23:59:59 2025 GMT
Subject: serialNumber=36b26601a2b96208574a673527a790a1d3c632bcb2138da52d6080a4225487cd, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:49:c0:42:1b:14:1e:45:7e:a4:9c:82:2d:01:
53:dc:11:3a:55:07:05:9c:a4:86:84:47:b7:13:04:
11:04:fe:91:a8:f0:5f:72:47:19:02:e9:c5:12:65:
a4:87:45:fc:02:41:72:fb:a7:75:3f:26:37:72:36:
cf:d2:d7:8c:6e:57:eb:55:89:27:e4:0d:e4:79:c3:
be:f1:c9:55:79:0c:1e:13:87:28:fc:3c:83:de:e5:
03:df:d3:f0:d6:53:5a:cb:cb:e0:a6:37:3b:bf:64:
c0:aa:9c:82:f3:12:30:10:99:6a:66:bd:f3:27:77:
9c:e1:68:03:72:26:76:f1:da:7b:14:6d:86:aa:da:
06:fd:eb:9a:f2:d5:38:96:e9:d0:66:75:f4:d9:31:
a8:c7:8c:a7:9e:47:93:0f:f6:75:55:92:f1:2d:a2:
ef:33:f1:16:25:45:9f:fd:cb:1c:21:53:df:d6:fd:
71:78:26:2c:83:6f:55:6b:88:04:bd:16:e8:19:05:
cd:4b:c9:cf:c0:0a:cc:87:ef:cf:65:1c:9b:8c:ae:
bc:35:32:10:47:3a:2d:82:20:ae:25:59:9f:1f:04:
26:0c:64:e9:42:66:2c:1f:bd:92:06:0d:a0:da:93:
66:25:ad:da:b3:00:3e:05:72:a5:e7:b8:8a:c3:fe:
7b:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:3E:A5:75:90:E8:DF:4C:37:E2:1B:BB:CB:29:4D:12:3C:A3:CE:7E
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c5709ea0-6bb9-4753-913b-299185e04aba.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2600:1f69:8080::/46
Signature Algorithm: sha256WithRSAEncryption
b6:a8:59:5b:bf:96:cb:ba:0f:b0:db:55:b3:f2:97:7e:95:74:
e9:0b:b5:24:bc:70:17:66:6d:e9:d1:98:2a:ab:69:a8:28:b0:
b1:06:ef:88:8c:ea:d4:2d:24:32:56:6e:02:d6:84:37:81:2c:
84:bd:25:ec:a5:1f:c1:d4:16:d7:2b:92:da:40:0e:ee:2e:1a:
3d:6a:d6:39:b9:27:78:3b:36:63:e7:39:fa:fb:15:46:6d:3c:
79:7c:f6:a0:d2:4b:a7:55:c8:4c:50:b5:ad:96:5c:7b:f2:fa:
76:5f:5b:c0:6b:c7:e0:a9:54:31:05:26:42:9c:8a:f9:b4:f8:
f7:33:b9:a7:92:05:41:21:d5:0d:72:92:01:3f:30:2f:1f:50:
c8:6e:65:df:02:14:bf:d7:50:8d:1f:e6:91:a9:58:f6:4c:d1:
69:0c:9b:6d:7f:56:5e:bf:18:f3:99:a8:1e:d8:b8:aa:11:7d:
78:9f:6a:33:47:e0:e9:ce:e1:48:ba:a8:ea:25:c1:a4:c2:61:
f6:2a:e2:60:a4:41:70:12:73:f4:34:ba:31:a6:17:17:e3:13:
d6:cd:24:70:e4:37:b5:e2:ed:ca:8a:91:2e:e8:cb:53:3f:2e:
a0:bd:30:6d:d5:e8:73:8f:f5:21:7b:14:68:a3:8b:d2:44:b6:
5c:42:3e:cc
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Fri Apr 25 14:22:44 2025 by rpki-client