Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/f8738a51-4689-46b8-a472-d4d0afaca2d7.roa
File: f8738a51-4689-46b8-a472-d4d0afaca2d7.roa (raw, json)
Hash identifier: WpVAw9E32o3YRRjuV4Y/56xu3u+coh2ANoteCemNgMQ=
Subject key identifier: 04:02:84:6A:29:5D:9E:E4:75:DF:AC:9A:6D:9D:58:AB:31:8D:7A:ED
Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08
Certificate serial: 1D8D0DDEFB22E1831B723CC767943535DF5A1DA0
Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/f8738a51-4689-46b8-a472-d4d0afaca2d7.roa
Signing time: Fri 24 Jan 2025 00:00:00 +0000
ROA not before: Fri 24 Jan 2025 00:00:00 +0000
ROA not after: Fri 28 Feb 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2600:f0f0:4::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1d:8d:0d:de:fb:22:e1:83:1b:72:3c:c7:67:94:35:35:df:5a:1d:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08
Validity
Not Before: Jan 24 00:00:00 2025 GMT
Not After : Feb 28 23:59:59 2025 GMT
Subject: serialNumber=74f770d642af44e106432b053e71253172f83c9119898a6e28ad24278a2f4908, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:7b:98:c2:f8:c0:76:44:68:46:e3:d5:e3:65:
f6:ef:ed:de:00:95:81:7f:1f:6f:e6:33:a1:22:5d:
dd:ac:0d:21:08:91:4d:b0:48:bf:3b:75:f2:0e:ce:
8b:8b:66:59:7e:af:b4:3c:1d:7f:d5:06:d8:89:d9:
03:da:01:48:d0:4f:75:3b:2b:c8:2b:4d:48:76:77:
eb:d2:60:47:ef:b7:9e:78:15:be:69:16:7d:dd:d2:
5b:eb:48:d5:ea:9e:72:e0:1c:7c:58:8e:3f:c4:32:
d7:b4:31:3d:9b:4a:a3:99:8e:d2:c8:ff:a1:e3:57:
e3:6c:7e:57:aa:1d:51:b8:7e:73:26:3a:33:ec:ae:
7e:4c:bd:39:91:cd:dc:96:ea:b3:31:78:d7:c3:0c:
7f:9e:f4:28:e6:ce:53:98:65:8f:72:29:e5:1b:12:
c2:e8:30:de:7a:6f:ec:4b:5c:31:9b:42:d4:ac:6b:
77:62:b9:b3:52:35:c1:8c:30:51:ca:16:17:6d:52:
22:f1:ea:19:f3:54:a1:27:3c:ba:5c:5b:bc:9d:37:
38:72:1a:3e:b4:ad:4e:26:a1:73:11:75:c8:29:6e:
e0:46:b5:ff:0b:41:dd:bf:ef:3c:36:ed:f5:72:a4:
d5:c1:1e:02:49:c0:11:97:44:51:45:63:91:a0:99:
35:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:02:84:6A:29:5D:9E:E4:75:DF:AC:9A:6D:9D:58:AB:31:8D:7A:ED
X509v3 Authority Key Identifier:
keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/f8738a51-4689-46b8-a472-d4d0afaca2d7.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2600:f0f0:4::/48
Signature Algorithm: sha256WithRSAEncryption
9c:ff:b3:bc:a5:09:f3:71:9d:23:6e:c8:4c:be:27:eb:32:70:
f6:6e:d3:f4:d4:c9:d7:0b:67:25:a6:07:1e:76:0c:be:58:a7:
61:bc:74:5e:b4:6f:2b:ae:ab:51:4a:fa:c2:24:b2:19:52:28:
6c:32:6d:cd:96:0f:43:21:60:53:6a:ab:aa:9a:05:61:bb:33:
03:21:53:07:3b:2f:11:87:40:01:98:1d:33:d4:3d:69:3f:56:
11:7c:51:4f:dc:12:2b:50:8a:81:1c:8d:5f:ba:75:c5:d9:49:
fa:60:2b:88:8c:b8:d1:42:ad:dd:e0:88:40:d2:f6:78:e8:56:
8a:98:44:89:15:d8:b9:75:03:06:3b:c7:26:08:fc:e3:13:76:
2a:cd:c1:a0:6c:61:a1:d1:ce:59:7f:3a:ec:bd:09:10:2e:3d:
76:52:99:05:20:5a:94:73:12:5c:2d:4e:48:1e:c1:5d:0b:d0:
a2:65:d7:59:29:5f:df:3f:b2:17:bc:74:a7:22:c9:e7:05:b0:
65:74:15:17:6a:1f:ef:dc:37:65:9b:54:a3:21:06:fe:62:dd:
a1:5a:c8:6f:ff:65:7a:54:e4:58:54:73:20:02:e7:90:4b:99:
b9:a4:de:25:64:cc:9d:d2:01:fe:82:08:bc:ca:55:7d:c9:ba:
0d:47:6d:98
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Fri Apr 25 13:06:07 2025 by rpki-client