Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ab4b0199-6a63-46e2-9ecf-6c0bbea54035.roa
File: ab4b0199-6a63-46e2-9ecf-6c0bbea54035.roa (raw, json)
Hash identifier: JvDj7iCF4R8sZZcIWV2gN7NJlSfaUpvF9aN+lvRD7DI=
Subject key identifier: E5:47:F1:6D:9F:B3:75:ED:46:F9:07:31:9A:FE:11:A3:77:0B:B3:20
Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08
Certificate serial: 5D7D596B74EC70F09443DE1B07736E94CCF004F2
Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ab4b0199-6a63-46e2-9ecf-6c0bbea54035.roa
Signing time: Mon 06 Jan 2025 00:00:00 +0000
ROA not before: Mon 06 Jan 2025 00:00:00 +0000
ROA not after: Mon 10 Feb 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2600:f0fb:e600::/40 maxlen: 40
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5d:7d:59:6b:74:ec:70:f0:94:43:de:1b:07:73:6e:94:cc:f0:04:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08
Validity
Not Before: Jan 6 00:00:00 2025 GMT
Not After : Feb 10 23:59:59 2025 GMT
Subject: serialNumber=e14a1c30366c5d79610c2b15fc9087c51105995b225f7f0e9ffe8fcfeaed313f, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:83:61:40:72:b2:1c:81:a5:7a:b6:7c:67:98:
57:b8:07:f0:dd:14:f7:c8:e1:b0:62:e5:0f:93:26:
ea:4d:80:b1:89:a4:2b:39:47:b4:10:05:d8:b0:b2:
af:3a:f8:ad:8b:16:4d:9d:6c:01:6b:a7:a8:27:70:
c5:60:36:4d:e1:29:5b:6b:19:24:d6:51:6b:0b:0d:
c4:a4:10:ea:e3:d1:81:ac:8a:26:1a:0e:0a:9a:cc:
81:52:0a:aa:d4:61:03:f9:04:9f:28:7d:92:d8:5f:
0b:39:80:7b:ea:d5:e4:63:1d:4b:29:44:55:0e:81:
f3:f4:41:f7:0b:bb:21:c2:1a:6e:2d:ab:0d:75:f9:
32:58:22:86:9a:33:3d:ad:6a:b3:49:bb:d8:db:2d:
0b:09:1f:38:27:0f:05:1b:0c:31:e4:01:b0:24:d0:
ec:a4:6b:7d:92:4c:b3:38:ef:99:d4:72:11:f5:03:
e7:99:9a:7e:0b:5d:89:bf:19:a9:8c:64:e4:78:b9:
b0:bd:c0:ed:00:0b:1f:49:ca:5c:b2:67:77:6c:2a:
79:5d:90:13:28:bf:45:a3:eb:33:fa:19:f5:44:b0:
79:51:0e:be:9a:80:53:46:8d:6e:ae:0e:7f:07:90:
65:fd:16:ed:0d:7f:04:5e:79:5d:53:17:90:4d:b4:
c2:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:47:F1:6D:9F:B3:75:ED:46:F9:07:31:9A:FE:11:A3:77:0B:B3:20
X509v3 Authority Key Identifier:
keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ab4b0199-6a63-46e2-9ecf-6c0bbea54035.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2600:f0fb:e600::/40
Signature Algorithm: sha256WithRSAEncryption
04:d0:94:10:60:23:6b:87:05:9d:5c:8c:f7:4e:d4:ff:32:ff:
8e:aa:f6:fd:16:aa:b6:f7:a9:9c:36:4e:96:e5:a2:3e:9e:86:
c5:f8:13:58:33:cb:8b:70:0c:06:11:1c:38:02:44:27:ca:e8:
6b:5e:da:9c:8d:14:47:da:2f:f7:84:28:dd:ac:55:5a:05:35:
b0:45:24:bb:31:75:d6:4b:ac:50:8e:88:ab:39:3d:81:b1:56:
f9:3a:47:ea:27:0f:11:4b:52:3c:9f:ff:f6:69:b6:8e:46:63:
b1:9b:f9:b2:19:ef:dc:7e:fe:f2:f1:c9:4f:5b:62:b3:df:2f:
32:3e:9a:32:3b:1d:b9:bf:1d:8b:47:bd:62:07:82:d2:18:21:
47:4f:ab:c4:8f:d3:3b:f4:e3:1e:e3:89:bd:47:92:07:70:47:
ba:69:fd:40:d3:0b:23:21:0e:74:95:8b:a1:6f:42:74:de:0d:
df:84:8e:95:6c:dc:ce:0b:a8:f5:2b:46:f4:ff:22:27:72:ed:
74:88:74:41:03:5c:0a:a3:e4:9c:46:36:ff:b8:97:11:04:05:
a6:90:b6:cb:d0:cb:59:45:eb:35:bf:09:6a:e8:f8:ac:9a:6e:
ff:29:19:bd:db:d5:2a:bf:42:34:a0:b7:be:02:74:ab:ac:21:
5c:db:fe:8d
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Fri Apr 25 09:59:09 2025 by rpki-client