Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/c964bb16-b590-4c0c-89eb-29a939e70a6d.roa
File: c964bb16-b590-4c0c-89eb-29a939e70a6d.roa (raw, json)
Hash identifier: 2duGYpkMgHSIWKvSJk3SYNHG9kfwgnM8rViKhIdjsu0=
Subject key identifier: 53:49:C2:35:5B:1E:9A:E8:CF:2F:4D:AA:85:49:00:5F:A7:6F:50:15
Certificate issuer: /CN=a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3
Certificate serial: 0CE7019C42E11EE85B0B4CE7CAFE80C6FE40AF9D
Authority key identifier: 91:2D:C6:0D:D7:64:29:82:BC:AE:7F:81:FE:3C:4C:12:72:80:22:1F
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/c964bb16-b590-4c0c-89eb-29a939e70a6d.roa
Signing time: Mon 13 Jan 2025 00:00:00 +0000
ROA not before: Mon 13 Jan 2025 00:00:00 +0000
ROA not after: Mon 17 Feb 2025 23:59:59 +0000
asID: 16509
IP address blocks: 50.112.16.0/20 maxlen: 20
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0c:e7:01:9c:42:e1:1e:e8:5b:0b:4c:e7:ca:fe:80:c6:fe:40:af:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3
Validity
Not Before: Jan 13 00:00:00 2025 GMT
Not After : Feb 17 23:59:59 2025 GMT
Subject: serialNumber=a8105eb41c227348b75089a7c5c954a4e4e1d7bca51244c3d78aa98b44a61db0, CN=ddfbc97c-7bed-40df-95ca-e664b29d7b27
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:a6:e7:4f:13:16:d0:df:86:01:f5:db:ca:eb:
6a:95:fd:74:d1:3f:22:a4:2d:d9:60:c3:3d:f2:15:
49:cf:eb:d0:56:62:ae:0a:84:29:7c:c8:5a:bd:65:
fa:b2:8e:6b:8b:4f:3e:4f:69:36:5b:65:33:02:fc:
3f:9f:cf:bf:5f:fa:1a:7e:c8:f3:42:10:f0:cb:29:
1a:7d:f0:c3:6b:df:18:d3:cc:22:99:68:81:f7:28:
ce:13:c4:4e:29:35:ce:72:5a:9f:c9:01:07:95:41:
cd:40:5f:98:51:35:ca:8e:91:fe:6a:de:cf:bf:3b:
51:a8:c8:c0:7e:30:35:43:ac:d6:39:dc:cf:84:0e:
0e:e9:9a:3a:27:04:0f:f2:8e:e7:92:d5:74:0e:c3:
58:47:5b:90:ca:f6:f0:63:67:aa:f3:87:ce:15:56:
fc:d4:9e:41:62:22:42:7c:36:c1:29:a7:28:7d:fd:
56:8f:bf:ac:ca:6b:2e:8b:3d:77:11:6a:14:ce:d5:
ed:62:7d:71:42:a8:b2:63:6c:0a:fb:3e:01:57:b0:
01:99:84:c5:7f:3b:d3:89:1d:21:9b:c9:ac:2f:e2:
15:50:93:c0:9d:90:13:a2:49:36:4d:fb:b7:cd:83:
04:05:35:5f:2e:ae:fc:2b:ce:d9:ef:bc:28:a9:60:
4e:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:49:C2:35:5B:1E:9A:E8:CF:2F:4D:AA:85:49:00:5F:A7:6F:50:15
X509v3 Authority Key Identifier:
keyid:91:2D:C6:0D:D7:64:29:82:BC:AE:7F:81:FE:3C:4C:12:72:80:22:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/c964bb16-b590-4c0c-89eb-29a939e70a6d.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/YtvdNIMmh2ulZ1PLmbRkzEVTJLM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
50.112.16.0/20
Signature Algorithm: sha256WithRSAEncryption
4b:78:22:df:6a:3a:33:02:fe:71:d6:2b:0e:f2:dc:0e:82:0a:
5d:c2:b8:2f:61:3c:2b:4d:23:3d:2e:7a:13:e3:96:f8:6f:80:
ea:77:e8:d6:b1:0e:7d:d2:76:62:37:b6:e1:51:45:06:a6:5d:
01:6f:38:f4:39:8e:b9:98:20:e5:24:d3:29:01:ae:9f:4f:d0:
b8:fd:d0:79:bf:fa:2a:f5:a2:a4:4d:96:99:16:a7:36:e0:09:
9b:55:45:12:73:92:95:de:b6:e1:1a:9a:12:f6:f0:88:1f:e2:
11:dd:f5:64:5f:e9:63:4b:23:d4:71:35:ee:15:47:32:70:9a:
50:ba:c3:e5:54:7d:74:1c:a0:17:b7:55:21:4f:45:47:cc:6d:
52:c1:8f:1d:1e:76:fb:50:16:59:3c:61:a9:03:ba:02:b4:82:
15:c1:0b:0c:50:50:45:35:36:43:b2:35:e9:85:2a:86:05:6f:
8b:fc:99:aa:42:99:a9:cb:67:ef:42:2d:97:81:d6:1a:7f:ed:
4a:5d:04:a9:3e:88:27:96:23:44:66:f7:9c:4c:91:e1:14:e5:
80:b8:e6:1b:ad:45:82:90:04:50:39:de:9e:24:9a:47:c6:2a:
8a:70:78:4f:2c:f5:3b:39:ce:bd:7e:a8:48:3f:28:c6:f1:00:
1b:50:2c:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 11:20:05 2025 by rpki-client