Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0b75a069-5b51-4aca-802b-2672f514c861.roa
File: 0b75a069-5b51-4aca-802b-2672f514c861.roa (raw, json)
Hash identifier: 5vyq3bzq2ii8kc5XQ8KFUaWZbIG2rAI6I4ucxwIBNW0=
Subject key identifier: 64:B7:BF:D4:99:2A:33:20:89:EF:7D:2D:29:8C:79:B0:89:88:75:D7
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 06B5A8A07126BCABEF4EBBC372C4706D8E7C3EA5
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0b75a069-5b51-4aca-802b-2672f514c861.roa
Signing time: Tue 08 Apr 2025 00:01:32 +0000
ROA not before: Tue 08 Apr 2025 00:01:32 +0000
ROA not after: Tue 13 May 2025 23:59:59 +0000
asID: 16509
IP address blocks: 108.138.0.0/15 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
06:b5:a8:a0:71:26:bc:ab:ef:4e:bb:c3:72:c4:70:6d:8e:7c:3e:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Apr 8 00:01:32 2025 GMT
Not After : May 13 23:59:59 2025 GMT
Subject: serialNumber=0a05fd615bcfb13501cc504e4baa5de149bbeceb1a5cfee759d32f01c753bd2b, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:17:d8:e1:50:f4:7b:39:e4:ce:5b:d9:73:00:
bc:7c:d1:b0:8c:bb:a7:3d:49:94:15:8e:f4:fa:4a:
c8:62:ad:bd:41:98:29:5b:ea:a0:c8:74:ba:09:99:
19:9a:e3:11:a9:91:f9:9f:f8:19:1a:71:be:c1:85:
d5:ee:08:84:57:31:5c:0e:83:c3:88:32:ea:60:c7:
9d:b7:3b:bf:a7:dc:5f:19:ae:33:e0:c0:b2:a9:7f:
4f:5b:f1:7c:29:2c:2c:60:bf:fc:8c:da:79:79:0a:
f2:1f:a8:24:dc:58:17:f5:0a:e2:db:4a:91:07:20:
e5:06:1c:26:e5:e8:15:04:e8:03:92:2c:f8:fc:8e:
66:62:60:60:53:6d:9f:c1:52:86:84:ba:35:2f:9d:
8e:83:89:84:7d:13:61:7e:f3:19:81:1a:5b:f0:3a:
42:71:f1:06:c0:49:9c:4c:2b:7a:2c:36:29:86:d4:
0e:73:cd:f7:41:e8:39:32:5b:6d:40:55:0d:93:d9:
65:f6:32:f1:1a:a8:b2:24:02:27:89:b3:6e:9b:01:
51:ad:63:d4:1e:aa:51:1a:53:4f:00:1c:69:81:27:
5a:c0:c4:3d:9a:9d:5b:c0:1f:21:6f:a0:4f:4f:c9:
a1:f5:e4:10:3f:62:76:8e:89:8e:af:cd:5c:8e:73:
c7:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:B7:BF:D4:99:2A:33:20:89:EF:7D:2D:29:8C:79:B0:89:88:75:D7
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0b75a069-5b51-4aca-802b-2672f514c861.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
108.138.0.0/15
Signature Algorithm: sha256WithRSAEncryption
24:d3:97:46:0b:03:4b:aa:0d:3e:05:ba:02:dc:b7:36:a9:0c:
e4:68:7f:7a:9d:31:06:f4:c3:54:68:ba:c6:29:12:6c:01:9b:
db:46:65:3e:4b:85:1b:ef:33:90:47:15:78:cd:01:89:b4:49:
61:46:1e:0a:e3:24:54:db:0f:8c:d0:ea:34:1a:9c:f0:8c:18:
34:82:c7:d4:66:b1:06:68:36:50:82:d1:2b:18:98:50:25:0e:
60:af:0a:07:fc:e6:cc:d3:c7:50:e0:9a:d0:e4:ec:32:7c:34:
8a:44:32:19:80:85:59:82:bd:d8:e2:0a:ed:ec:13:1f:8e:22:
47:07:ac:75:68:63:cc:d0:ec:50:b6:4e:af:d3:65:c7:2d:93:
61:ea:9a:7d:9c:72:9b:9f:b1:b0:1d:29:69:3d:5a:87:01:b3:
4e:b6:0b:31:3e:4f:1a:23:77:2a:2b:63:dd:39:12:7a:c0:d1:
6c:1a:3a:94:fb:2a:40:43:b0:f5:2f:87:c9:49:01:62:bc:82:
37:dc:2b:2f:ad:53:be:0b:bd:e0:16:65:45:17:0d:1c:05:22:
a6:20:ef:ed:3f:3e:bf:90:ce:ea:9b:af:d4:b8:28:5a:d9:c2:
2c:3d:ad:ae:a6:42:aa:b5:bb:a5:a0:3a:03:9f:e4:02:a2:4a:
dd:39:7c:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 15 19:18:57 2025 by rpki-client on console.sobornost.net