Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d7fe2419-f59a-4ab1-9c98-0d66a172149d.roa
File: d7fe2419-f59a-4ab1-9c98-0d66a172149d.roa (raw, json)
Hash identifier: BJwN020NEUOvVDYb6X12fAu1YtismFj8Ue+wovlC8HM=
Subject key identifier: 96:2C:F1:40:68:A9:B5:BF:A8:83:D7:33:17:8F:FF:B9:45:00:54:16
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 673FD39705E08CCB4980C14A3625C3B108A62794
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d7fe2419-f59a-4ab1-9c98-0d66a172149d.roa
Signing time: Wed 29 Jan 2025 00:00:00 +0000
ROA not before: Wed 29 Jan 2025 00:00:00 +0000
ROA not after: Wed 05 Mar 2025 23:59:59 +0000
asID: 14618
IP address blocks: 2600:1f32:8000::/39 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
67:3f:d3:97:05:e0:8c:cb:49:80:c1:4a:36:25:c3:b1:08:a6:27:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Jan 29 00:00:00 2025 GMT
Not After : Mar 5 23:59:59 2025 GMT
Subject: serialNumber=8cd7c23be1127c3b491198c77996060985f7c71e4bfdc2356142b3d3752058d1, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:ad:84:6a:f8:f4:b1:04:03:2e:7a:35:0f:2d:
ae:0d:d4:d8:32:73:a3:ca:c9:70:b7:7b:d2:39:f0:
fc:5f:b1:5c:54:7b:ba:8e:00:bc:f2:45:cd:ff:90:
b1:1e:07:c3:90:2d:87:c6:f6:be:ce:e5:44:9d:17:
b7:63:9a:e5:60:29:c4:04:6e:33:4a:ec:7c:3d:aa:
b7:d0:3d:12:b8:9b:21:da:f5:53:6c:02:ed:f4:af:
f1:d6:58:b7:1d:e9:56:7c:07:b5:3d:05:cf:24:24:
11:fc:50:e3:b2:2f:b4:d7:8b:62:ca:97:84:71:43:
8f:60:e6:d5:46:c6:a2:18:c0:fb:08:36:0a:67:ff:
71:38:b1:b2:c2:95:0a:82:1f:84:c7:27:29:ce:71:
57:52:50:6d:9e:10:18:96:0b:63:05:a4:1e:e2:32:
4e:41:33:e4:b3:15:4e:f3:d5:bd:ce:f4:29:21:59:
5c:60:46:23:18:9b:87:60:82:0b:0d:70:48:ca:7b:
bc:7f:b2:aa:ae:54:fd:2f:5b:d8:ef:34:bf:a8:67:
ad:87:d7:9c:36:76:9d:49:98:9c:41:2b:04:16:c9:
04:6a:92:9c:e1:1f:33:f5:f5:27:71:78:de:90:d1:
8f:67:33:c1:7f:a5:7a:02:0f:de:7c:41:f1:ba:fe:
14:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:2C:F1:40:68:A9:B5:BF:A8:83:D7:33:17:8F:FF:B9:45:00:54:16
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d7fe2419-f59a-4ab1-9c98-0d66a172149d.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2600:1f32:8000::/39
Signature Algorithm: sha256WithRSAEncryption
d4:f6:ef:29:ab:a0:97:ac:80:e1:2c:ed:81:90:e2:4b:57:5c:
54:35:c1:da:a5:30:91:bb:41:66:37:d1:db:23:44:4d:8a:eb:
79:0c:32:f4:28:db:c1:da:02:a2:ab:8c:52:6d:49:0d:d7:86:
9c:2a:63:b6:56:a6:44:96:2d:36:82:6b:87:3e:d9:e8:d1:ee:
4e:c6:cd:3e:1a:ee:04:2f:53:3f:0a:fb:b3:24:db:63:f7:8f:
30:16:58:0c:f6:85:83:60:13:15:c8:af:e6:4c:a0:10:40:ac:
f7:b1:b7:5c:a5:05:00:0b:8d:5c:62:cb:70:4f:5d:ab:8a:39:
6a:17:1c:71:cd:3f:c5:80:6f:1c:91:83:f5:11:58:6c:fa:e1:
04:98:41:3e:aa:43:7d:78:04:15:24:1a:0a:f4:24:d6:ee:d1:
13:8c:60:84:5a:c9:61:78:17:eb:36:cf:c5:38:4b:c5:bb:07:
2f:85:a1:8e:50:a0:9d:da:15:e0:9a:9e:2f:59:0b:d1:10:c4:
b9:a7:8c:29:35:b6:1c:5c:e9:52:63:2d:6b:69:40:3d:f4:56:
00:cb:21:32:3d:95:8c:3e:1d:34:7f:73:40:29:2e:aa:30:0a:
78:a8:01:0b:e0:01:aa:48:eb:6d:d6:0d:eb:d9:7f:20:12:48:
10:a5:24:39
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Fri Apr 25 09:39:12 2025 by rpki-client