Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/9a96c02c-ad61-40ce-b5aa-def693953ba1.roa
File: 9a96c02c-ad61-40ce-b5aa-def693953ba1.roa (raw, json)
Hash identifier: 3tdlSOSfm41O264FSjZ5n10LKCA0VEG+2RTrkvF9m+E=
Subject key identifier: E5:5E:57:D1:99:AF:83:A8:7A:AE:39:7F:54:CA:1B:EC:A3:B1:CF:92
Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08
Certificate serial: 27D56944B30B6AD000C264AA8D78A6A1D736A7F2
Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/9a96c02c-ad61-40ce-b5aa-def693953ba1.roa
Signing time: Sat 18 Jan 2025 00:00:00 +0000
ROA not before: Sat 18 Jan 2025 00:00:00 +0000
ROA not after: Sat 22 Feb 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2600:f0f3:f000::/44 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
27:d5:69:44:b3:0b:6a:d0:00:c2:64:aa:8d:78:a6:a1:d7:36:a7:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08
Validity
Not Before: Jan 18 00:00:00 2025 GMT
Not After : Feb 22 23:59:59 2025 GMT
Subject: serialNumber=64eea557e23b6d0dcd8d0c4f2936ee6f77e4bdae995c259e43539af736842799, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:42:b1:0d:6b:80:c8:8e:7c:43:10:8c:f5:67:
92:64:44:d0:d9:a6:74:6d:1f:5c:19:0c:16:90:61:
0c:81:96:4a:31:7c:8c:83:d6:47:ad:85:af:25:43:
21:7f:9d:c3:46:d3:42:de:8d:2b:e6:b9:a9:99:67:
54:37:e4:cd:ac:28:0d:88:11:5b:4c:39:4a:4f:b8:
ba:7b:a1:55:62:00:db:db:80:9e:4f:60:94:67:b1:
89:9c:16:5b:cd:ac:87:b4:46:cc:8c:90:74:95:5e:
df:47:f2:47:ef:ad:9b:5d:ad:8b:8c:b7:46:da:b3:
08:84:43:04:79:bc:01:65:17:80:9f:fb:78:eb:bf:
72:12:ae:a3:8c:73:d0:17:98:2c:27:ed:ab:c5:77:
73:54:f4:02:f7:ef:17:db:8d:71:cb:14:83:ac:60:
43:79:c7:11:1e:89:a6:ef:b8:31:15:a1:8d:30:ec:
11:17:34:32:94:fa:4f:41:fa:fe:a1:e1:2d:1b:1e:
c2:9e:a1:b1:4b:ca:01:24:87:05:6c:2f:ee:27:c8:
66:53:a7:38:9c:2d:d7:58:19:de:8b:5d:26:0c:ab:
77:44:dd:77:19:33:dd:46:30:82:3d:24:55:c9:06:
32:76:99:a4:1f:ec:ac:5d:91:0b:77:30:81:03:15:
ba:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:5E:57:D1:99:AF:83:A8:7A:AE:39:7F:54:CA:1B:EC:A3:B1:CF:92
X509v3 Authority Key Identifier:
keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/9a96c02c-ad61-40ce-b5aa-def693953ba1.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2600:f0f3:f000::/44
Signature Algorithm: sha256WithRSAEncryption
92:9b:18:95:57:44:a1:4b:2e:e7:58:2b:1e:97:63:95:37:90:
11:60:7d:7a:84:de:12:1d:c5:3a:9c:b0:bf:cf:e3:58:db:ed:
a4:ea:d5:f1:47:10:92:72:13:72:ff:c1:33:9f:8e:dc:7f:0c:
db:6f:0a:b8:e1:15:dd:fd:bc:00:04:25:3f:9a:27:11:92:3a:
36:93:e4:5c:12:39:89:bc:9a:f3:e1:bc:7f:ac:90:14:47:49:
51:42:52:17:eb:57:41:ca:95:64:b0:a9:ee:27:da:d8:18:9c:
36:4b:ba:76:e0:a6:0d:bb:8e:38:a3:55:d7:74:70:13:04:21:
1a:ac:f0:80:0d:3d:1e:3a:3a:20:2f:a0:db:58:a0:78:1d:4d:
3b:8f:0e:23:59:2e:67:fe:21:a7:d6:0f:0d:ca:fa:3a:39:b5:
25:e5:09:de:50:7c:12:19:c5:c7:cc:9b:7e:29:c5:17:af:34:
03:1d:08:3b:85:2c:6c:57:92:41:60:e4:b6:cb:3a:f0:57:e7:
14:f5:33:0a:e5:72:f2:10:6a:3e:09:7d:c6:14:5f:54:69:d9:
a8:21:c5:1a:d7:4a:49:a6:2f:64:6f:2e:f7:ad:dc:67:c4:3f:
07:fc:f7:7d:d8:c8:c0:fb:a4:1e:92:26:d0:91:42:99:55:22:
fe:fb:46:9c
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Fri Apr 25 09:59:17 2025 by rpki-client