Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1432a9a7-007c-46b8-8341-81804983fe16.roa
File: 1432a9a7-007c-46b8-8341-81804983fe16.roa (raw, json)
Hash identifier: vUkcrm++FAxfjGZwXZ/PJC/QJkRJJ2FzlahTykxukZc=
Subject key identifier: 4D:A6:9A:C3:EC:76:94:B9:6F:9D:58:70:46:4D:BD:04:EB:16:3A:83
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 4DD159DB66785BCD034B0411F7BFDFD3B469DCF5
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1432a9a7-007c-46b8-8341-81804983fe16.roa
Signing time: Wed 02 Apr 2025 00:10:23 +0000
ROA not before: Wed 02 Apr 2025 00:10:23 +0000
ROA not after: Wed 07 May 2025 23:59:59 +0000
asID: 16509
IP address blocks: 16.61.0.0/16 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4d:d1:59:db:66:78:5b:cd:03:4b:04:11:f7:bf:df:d3:b4:69:dc:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Apr 2 00:10:23 2025 GMT
Not After : May 7 23:59:59 2025 GMT
Subject: serialNumber=f69e89b7e95d9a0caeaadf25a2a49bad41ff0fc929ec1fbd7ba0c9908be88ef4, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:f0:13:6e:45:b7:2e:65:e6:ef:f4:ef:66:67:
99:be:fa:69:63:f7:83:ba:80:82:ee:d8:0c:53:15:
ad:07:8e:5b:f9:91:26:65:c4:ac:50:70:a0:21:4b:
3b:57:a3:32:7a:dd:66:8a:e9:f6:93:95:24:e9:e3:
c5:a1:8f:ca:e2:1c:82:9a:01:e6:57:1e:a8:a9:42:
2e:8b:c5:93:72:fa:e0:62:ea:b9:5d:8a:f6:25:10:
fc:cc:d6:9d:85:d4:b7:0e:d7:bc:48:b2:2e:05:1a:
dc:f4:51:75:2a:7f:33:94:31:1f:93:3f:b3:07:7b:
f2:a4:75:7c:80:3d:43:91:56:b8:9f:00:d4:66:4e:
da:59:7a:b4:73:ec:62:77:7b:2c:3f:e6:e2:45:dd:
81:cb:55:93:37:05:5d:97:50:18:34:24:b7:62:6d:
24:09:9c:d4:31:e8:4c:85:96:e1:de:c5:34:e9:54:
33:bd:a7:86:73:5a:c6:80:5a:04:32:1d:7a:c5:8e:
4e:02:fb:2e:14:c9:ce:05:6c:ae:d7:f9:09:0a:75:
b4:72:fc:5b:90:43:52:60:8e:c4:fd:3e:1e:40:7e:
3e:fe:6d:50:4e:0b:a2:4d:9e:0a:3c:a9:49:0a:97:
09:6c:96:36:d0:ef:9b:f0:0f:34:a0:db:44:9f:1d:
d5:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:A6:9A:C3:EC:76:94:B9:6F:9D:58:70:46:4D:BD:04:EB:16:3A:83
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1432a9a7-007c-46b8-8341-81804983fe16.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
16.61.0.0/16
Signature Algorithm: sha256WithRSAEncryption
aa:e5:9c:81:d0:df:dd:cb:05:e4:80:38:1d:aa:e0:c2:6a:ed:
fc:53:6b:c4:d3:80:b7:c6:11:87:52:8b:ef:70:2b:fd:e3:1e:
27:2f:76:12:3d:12:0e:c1:76:63:62:09:d4:cf:dd:de:d5:22:
57:72:60:5c:f4:e6:b3:69:f4:58:55:77:db:69:03:86:fc:16:
16:5c:f3:55:8f:e6:d5:cd:d2:02:c0:37:1f:2e:56:4f:3e:42:
d9:a7:47:51:45:86:d4:0c:8c:d9:76:0e:17:22:3e:1c:47:89:
77:a4:9c:3d:ae:24:bd:3e:ef:26:0d:f3:15:e4:75:86:e3:99:
3e:c3:66:82:f7:22:80:f0:67:15:05:9c:21:af:38:43:78:80:
3d:e6:02:c8:d8:0f:47:2c:86:c5:d9:18:60:06:6b:07:54:fb:
2a:90:20:02:0a:89:d2:89:2c:44:f0:0f:16:0f:32:4b:a7:c3:
16:14:0b:96:12:38:f8:35:d1:67:4f:79:11:d4:b1:eb:4c:74:
ea:d4:02:0c:8e:e2:f4:af:ce:5f:44:d2:f6:ab:3d:70:55:bf:
9b:ab:86:9a:f1:87:7a:b5:50:f7:e8:e7:3e:74:d9:b0:09:84:
0f:85:a0:66:bf:83:50:77:00:54:00:4f:d6:ea:98:dd:70:0d:
37:8c:49:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 15 19:18:58 2025 by rpki-client on console.sobornost.net