Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/cf7c8f4a-0827-444b-b6e4-9a45ca69f600.roa
File: cf7c8f4a-0827-444b-b6e4-9a45ca69f600.roa (raw, json)
Hash identifier: xqXAPGxfFV2vckiVuwHb/DNlfDU3QoOtPnq6zNZnWRk=
Subject key identifier: 1C:66:F7:BD:FB:7B:79:F5:2C:65:D4:64:F7:69:A8:EB:D2:00:A4:38
Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c
Certificate serial: 076FD21F6415D86DE6288044260CB985BD1DC479
Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/cf7c8f4a-0827-444b-b6e4-9a45ca69f600.roa
Signing time: Mon 13 Jan 2025 00:00:00 +0000
ROA not before: Mon 13 Jan 2025 00:00:00 +0000
ROA not after: Mon 17 Feb 2025 23:59:59 +0000
asID: 801
IP address blocks: 35.96.9.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
07:6f:d2:1f:64:15:d8:6d:e6:28:80:44:26:0c:b9:85:bd:1d:c4:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c
Validity
Not Before: Jan 13 00:00:00 2025 GMT
Not After : Feb 17 23:59:59 2025 GMT
Subject: serialNumber=d84866b4ef50be17cbbb560c1aa3340e9158a92e63bdbb6b8c6d4c21cf021ef2, CN=8cd8442f-235f-4171-84e6-8e1007a64c60
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:b2:0a:91:b0:01:74:79:b4:94:55:bf:2b:5b:
a5:b0:7d:71:73:73:6c:e1:0d:11:f5:f4:92:6e:44:
5c:ec:5f:0a:d9:52:08:e4:6e:72:3b:76:44:42:3e:
f9:a3:76:a9:bd:ed:fa:8c:f4:df:85:73:37:40:16:
01:c2:d1:6f:9b:07:7a:ca:fb:e7:a5:c1:12:6d:1e:
44:23:32:a8:5b:91:f3:f3:d7:f7:fc:84:c6:f4:cc:
64:bc:e3:1b:82:58:94:9a:80:da:d8:5a:fe:90:a5:
27:49:d2:ba:c4:65:cf:ae:ed:2d:a1:cd:49:2f:7f:
13:01:33:20:74:7b:08:a9:86:26:d9:33:d1:b4:2e:
f8:b3:13:7a:ad:a8:45:5f:0c:68:96:aa:e3:84:17:
f6:24:b7:00:7a:2a:25:a7:2f:62:a9:f4:26:cb:b5:
06:71:3d:1b:d7:2d:af:33:ff:c0:09:39:54:5f:1a:
55:ee:2c:c4:07:5b:87:94:53:9a:3e:03:98:67:59:
92:58:5e:db:87:43:bc:c1:4a:a3:e3:b1:0e:26:9b:
ab:b7:90:ed:30:fe:b4:2f:47:00:cd:3a:1f:d0:cc:
a8:b2:88:4e:14:b7:9a:b1:89:26:71:06:60:cf:46:
ab:15:bb:c2:9e:b1:9c:c6:47:aa:a5:c8:8d:10:c2:
e9:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:66:F7:BD:FB:7B:79:F5:2C:65:D4:64:F7:69:A8:EB:D2:00:A4:38
X509v3 Authority Key Identifier:
keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/cf7c8f4a-0827-444b-b6e4-9a45ca69f600.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
35.96.9.0/24
Signature Algorithm: sha256WithRSAEncryption
61:bb:f4:98:ed:b1:f6:df:65:5f:13:98:49:79:cd:fb:07:db:
e6:12:b7:ef:19:ec:02:b9:50:18:6f:b0:25:cd:f7:c1:5a:8e:
10:45:dd:60:ba:c4:3d:27:75:07:12:94:3d:f1:b9:b0:c7:bf:
3b:93:8f:87:9a:36:50:1f:ad:0b:34:b1:6f:d2:6b:fc:12:82:
10:7e:f2:53:80:58:28:75:09:6a:b8:00:41:26:a1:b9:d8:55:
5f:cf:89:6e:d8:14:a2:e5:58:00:ed:c4:9c:a3:bc:e0:bb:98:
71:ea:ec:a5:3d:3e:e5:fb:ed:8a:92:b6:aa:7f:2f:64:a6:ba:
be:a7:4a:25:64:aa:ce:b3:57:9c:0f:f6:df:95:68:36:e8:00:
2d:f8:0c:ef:92:aa:95:0f:0b:b8:90:2d:f7:81:f8:6b:d8:ba:
58:39:c5:61:3f:71:6f:a1:a4:68:54:ee:c0:50:c3:af:19:ef:
47:3a:60:ec:d4:f7:e9:19:53:99:fb:f3:dc:35:3e:ee:fc:82:
a5:b8:c0:32:e7:3b:06:cb:b2:1d:db:65:94:5a:ae:68:f5:9a:
b3:5d:51:e7:ce:d5:d2:f9:88:6c:8d:02:3a:02:1f:fd:e9:02:
44:9c:62:15:f7:61:64:a9:fb:f2:66:a1:7e:6e:20:ee:4e:bf:
d8:b3:08:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 12:22:08 2025 by rpki-client