Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cba0e8c0-7bf1-4b5d-b1fe-66e9ca8f9262.roa
File: cba0e8c0-7bf1-4b5d-b1fe-66e9ca8f9262.roa (raw, json)
Hash identifier: YLwQ/4xNsiMLXIpKiTk7woMB0fBIwyuhzAFbgcbZg1g=
Subject key identifier: 67:E2:D8:0E:8E:11:37:18:9C:A6:77:47:FB:A2:19:6C:95:FD:0A:54
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 0276A541909CB7B89873187C8C0C84A4DD9DF215
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cba0e8c0-7bf1-4b5d-b1fe-66e9ca8f9262.roa
Signing time: Tue 28 Jan 2025 00:00:00 +0000
ROA not before: Tue 28 Jan 2025 00:00:00 +0000
ROA not after: Tue 04 Mar 2025 23:59:59 +0000
asID: 16509
IP address blocks: 199.15.112.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
02:76:a5:41:90:9c:b7:b8:98:73:18:7c:8c:0c:84:a4:dd:9d:f2:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Jan 28 00:00:00 2025 GMT
Not After : Mar 4 23:59:59 2025 GMT
Subject: serialNumber=f8262c4e66c852623e7cf777f0e36c10cfbeaed9a0ca29f27c1b3c40c8c3224c, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:c7:a2:bd:36:40:7f:7d:73:55:0a:7a:06:26:
5c:05:ea:06:7e:3a:d3:98:c2:39:e2:45:6c:69:bf:
09:7c:07:3a:71:50:15:0a:03:d3:1b:c4:91:b5:da:
cd:68:62:f0:8c:9f:3e:9e:b8:54:df:50:4d:1d:91:
8e:24:c5:9c:be:5e:cc:2b:12:c0:40:f7:fe:14:07:
3f:72:fa:e7:ee:01:bb:03:e7:89:63:5f:b5:25:f2:
4a:f9:43:25:7b:68:84:ac:f9:f6:28:6b:e9:2f:d6:
06:3f:3b:b6:dd:25:29:f8:2a:fe:fa:b9:8d:da:be:
1f:7a:1b:c3:0d:2f:dc:c8:8e:dd:92:f9:84:0d:59:
4c:62:4b:e7:88:0c:8e:3b:74:39:af:41:90:c3:7a:
87:78:5f:9d:b9:2a:c9:52:f8:13:4c:f7:f0:ae:14:
81:ca:96:79:0a:09:f3:70:ac:d3:ad:69:69:37:24:
c3:6a:70:5c:01:1e:e1:11:2d:28:db:82:ec:e8:e2:
f6:29:f7:8f:fe:a5:e4:1b:b3:4c:40:1d:ac:c5:dc:
c8:51:eb:96:eb:b4:36:9b:e6:ea:01:20:f9:c9:ae:
ce:42:cf:32:9f:af:e3:43:94:ef:5c:5b:61:1c:ab:
e3:09:2d:de:e7:63:d0:7d:3e:3c:97:38:0f:77:f4:
ac:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:E2:D8:0E:8E:11:37:18:9C:A6:77:47:FB:A2:19:6C:95:FD:0A:54
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cba0e8c0-7bf1-4b5d-b1fe-66e9ca8f9262.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.15.112.0/21
Signature Algorithm: sha256WithRSAEncryption
92:5f:72:aa:e2:fa:b7:e9:ef:36:6c:3a:02:06:30:1c:29:ca:
0a:7c:1a:95:4b:fe:af:e6:64:03:1a:11:68:87:45:f1:c0:a4:
9a:54:a0:d8:24:d2:2c:1e:34:44:6d:cf:d3:72:1f:07:75:e8:
a3:cb:63:cf:fa:01:30:da:5a:3c:07:19:6b:3a:df:f3:c1:e0:
25:5a:29:f8:90:a6:bc:fe:e7:0a:f2:43:04:24:24:69:59:d5:
35:68:86:52:9c:5a:22:38:4b:3c:df:56:e7:63:f0:da:e2:0b:
f1:02:91:c8:ee:88:ff:f3:37:ae:cf:f3:e0:7c:a5:0a:1f:a7:
ca:b4:61:03:74:ce:1a:b3:a3:ad:04:0c:e4:99:fb:b5:20:c7:
c4:a9:be:54:b0:b2:7d:84:92:79:40:15:43:65:19:27:c0:75:
23:dc:1d:49:3f:27:37:8c:fe:82:fb:52:20:4d:2a:fb:34:28:
8c:1a:57:e4:52:83:6a:e3:ff:7d:75:a6:3a:64:e3:1a:b0:e8:
1b:99:13:88:2b:47:af:6f:43:26:a8:f3:7c:ea:d3:8a:22:c4:
e1:9a:77:c6:0b:ce:09:1d:1e:08:a0:25:62:8c:d3:a7:a9:cf:
b6:34:f0:c0:3f:77:9f:9f:6f:57:c0:62:be:a0:40:75:8f:ce:
3b:ff:88:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 09:40:30 2025 by rpki-client