Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/bf27fdb7-84bf-40d2-906a-7b4c1ff405b2.roa
File: bf27fdb7-84bf-40d2-906a-7b4c1ff405b2.roa (raw, json)
Hash identifier: sq9c7a85hrUvQ2Tsn/IQSKt7ANQO6FWDDMvIdpCjv70=
Subject key identifier: 5B:42:49:FE:D5:B9:C5:D0:CD:0B:B2:16:50:98:26:B4:5E:C8:67:21
Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08
Certificate serial: 7E1FB5246CB33C7BF827C0471F4561BF8A9C0C79
Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/bf27fdb7-84bf-40d2-906a-7b4c1ff405b2.roa
Signing time: Mon 06 Jan 2025 00:00:00 +0000
ROA not before: Mon 06 Jan 2025 00:00:00 +0000
ROA not after: Mon 10 Feb 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2600:f0fb:e400::/42 maxlen: 42
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7e:1f:b5:24:6c:b3:3c:7b:f8:27:c0:47:1f:45:61:bf:8a:9c:0c:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08
Validity
Not Before: Jan 6 00:00:00 2025 GMT
Not After : Feb 10 23:59:59 2025 GMT
Subject: serialNumber=38655c7afa8a6d65cd0c1a712db84ce4cfa10b656ee14bb6e9b67ba77c441d06, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:d6:f6:f6:10:67:59:a5:d6:9f:fc:53:2e:8c:
6b:5f:01:d6:2c:6c:1f:92:7e:d7:7c:ee:8b:24:77:
96:71:03:d7:87:9a:3b:f6:d6:b3:18:38:24:55:71:
8f:a1:b2:a2:24:cb:79:5d:eb:e7:88:3f:1c:2b:c0:
0c:52:09:09:73:b6:df:37:c7:fd:b5:09:e8:d7:33:
43:54:08:8b:85:e0:f2:36:49:9c:a0:3d:8c:69:eb:
a8:e4:15:58:4f:79:75:76:9f:b3:e8:a6:55:81:d6:
03:c5:b3:dc:42:1a:59:80:b5:5a:64:e9:e4:9f:a2:
2b:44:c2:8e:c4:dd:d7:16:f6:7e:4b:b7:53:99:e9:
ee:ca:ac:ee:27:7a:c7:dc:c9:60:39:a5:b2:ca:5d:
30:bd:b8:23:39:19:08:61:0d:87:42:46:42:5c:bc:
0b:56:5f:8d:64:31:39:0d:41:16:ae:81:34:9c:1d:
25:11:e3:ec:cc:2e:1f:bd:9c:f8:58:8d:bd:5b:72:
f5:39:30:0b:1f:d1:bd:3a:d9:49:84:cd:a0:55:ea:
8a:f5:b1:60:58:3c:a0:38:37:54:ee:1e:c9:c3:8b:
0f:de:14:92:b4:e2:dd:68:d7:06:b4:ef:62:cf:a5:
c3:73:65:77:28:24:00:fb:ff:96:82:19:79:d0:a2:
75:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:42:49:FE:D5:B9:C5:D0:CD:0B:B2:16:50:98:26:B4:5E:C8:67:21
X509v3 Authority Key Identifier:
keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/bf27fdb7-84bf-40d2-906a-7b4c1ff405b2.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2600:f0fb:e400::/42
Signature Algorithm: sha256WithRSAEncryption
77:fb:88:5a:d1:06:fc:27:ba:bb:90:8b:db:df:23:aa:16:09:
15:aa:92:f3:5b:93:1e:58:8c:40:45:41:6c:da:c7:93:b5:5d:
10:8b:5e:97:12:c0:23:37:e1:df:e7:c9:a2:5d:a7:2f:28:90:
cc:c3:41:d7:52:b5:b2:8c:3e:33:3e:47:54:ea:81:d6:0b:b6:
d3:35:be:4b:4b:87:4e:f6:ae:bd:91:f6:b3:e4:e3:9f:b8:84:
1a:63:2a:5a:d9:4b:f2:46:c0:dc:9a:d8:81:d2:41:3a:d5:5c:
a6:5f:e5:93:78:36:5b:88:8e:7b:05:2e:03:3f:3b:16:b6:dc:
05:61:9c:bd:42:7c:0d:75:82:fd:df:99:18:0f:ec:ec:4d:47:
59:2e:13:ed:4b:aa:1d:43:7b:b9:4b:e0:29:f0:65:80:d8:be:
a7:e2:a2:e2:6e:c1:dc:d2:5c:7c:3b:94:97:5f:f8:bf:7c:25:
13:77:2b:aa:66:14:21:e0:55:bf:00:6a:c1:4c:11:7e:05:08:
41:e8:00:1c:33:51:31:9d:b3:60:1f:fd:05:41:b2:9b:c3:45:
4f:5f:13:67:a4:9a:92:bc:f5:dd:05:8f:17:2b:c5:5d:3b:95:
81:ef:6c:6d:b6:37:06:56:b4:e2:5c:67:a0:aa:36:d2:8a:e8:
8a:a4:42:2f
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Fri Apr 25 13:14:08 2025 by rpki-client