Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1ce5aa3d-8ebe-4ba4-b174-db51e75f03e1.roa
File: 1ce5aa3d-8ebe-4ba4-b174-db51e75f03e1.roa (raw, json)
Hash identifier: HZYrNFaxHrps5LGwep+2PvVi7kKvxTWVe7YZi1OK/mQ=
Subject key identifier: 0A:22:0C:E0:E6:06:71:48:0E:5B:D6:A7:8C:D3:EB:D7:41:BB:26:8D
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 663B1B36EB1D25F1E87B77F3E67498AF43DA1AD4
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1ce5aa3d-8ebe-4ba4-b174-db51e75f03e1.roa
Signing time: Sat 05 Apr 2025 00:01:12 +0000
ROA not before: Sat 05 Apr 2025 00:01:12 +0000
ROA not after: Sat 10 May 2025 23:59:59 +0000
asID: 16509
IP address blocks: 143.168.0.0/16 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
66:3b:1b:36:eb:1d:25:f1:e8:7b:77:f3:e6:74:98:af:43:da:1a:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Apr 5 00:01:12 2025 GMT
Not After : May 10 23:59:59 2025 GMT
Subject: serialNumber=42fcf0e295eaf4f65d63d5208f6c497bef608406b72e1eea1aec325abbd538f3, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:a3:fc:ee:04:74:35:73:34:0e:8a:6a:56:67:
63:b7:0b:fc:63:82:e8:c2:7f:83:48:1c:3f:7d:35:
e4:03:89:88:56:af:ca:55:34:57:eb:e4:19:45:fa:
57:df:a5:34:ec:eb:4f:fa:39:70:c9:de:89:2c:f0:
47:37:9d:4a:c4:ff:bc:32:fb:99:d0:41:b1:34:1b:
7d:4a:50:56:0e:80:59:a3:2e:b7:15:12:dc:f0:36:
d3:8f:6e:e5:d9:5d:e7:53:7b:28:75:5d:e7:60:ca:
c7:d8:a9:2f:60:00:47:4d:a9:37:aa:3b:ca:d8:6a:
34:1a:0a:a8:18:da:20:0e:1f:9a:0a:2d:9c:31:6c:
a1:e1:ca:b2:b4:b8:ba:f2:50:1b:19:e9:2f:02:3e:
69:fe:5f:71:90:ae:06:56:33:02:29:1b:dc:29:54:
ad:f4:68:3a:aa:4c:3d:62:30:de:6d:56:78:0a:d9:
3c:de:c7:19:42:40:b1:53:d3:3f:42:38:40:80:21:
74:45:06:6f:57:af:16:e2:93:5c:48:76:bf:85:e0:
3d:34:64:80:4e:f4:ac:1f:19:e6:33:b8:19:ae:7b:
57:3e:eb:f0:f5:94:d5:c9:9c:bf:30:31:5f:16:64:
7a:cf:24:b0:63:89:e9:0f:8d:85:ee:00:56:9e:27:
e3:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:22:0C:E0:E6:06:71:48:0E:5B:D6:A7:8C:D3:EB:D7:41:BB:26:8D
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1ce5aa3d-8ebe-4ba4-b174-db51e75f03e1.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
143.168.0.0/16
Signature Algorithm: sha256WithRSAEncryption
05:3e:a9:4c:57:02:1a:95:f0:92:7e:20:c5:32:31:a8:6e:13:
43:56:01:a3:91:44:52:ef:3f:cf:4e:f7:14:34:e7:69:9f:9d:
4a:a7:32:97:ce:d5:17:2a:92:e6:4c:6c:ea:5b:f4:20:28:5e:
72:fa:e8:41:2c:1e:ee:6d:de:8a:9a:66:ce:4d:92:dc:85:d3:
9b:71:e0:a9:68:92:b8:0d:18:4a:49:63:c3:0d:a8:b9:a2:95:
d2:40:32:be:90:71:5e:0c:ce:f9:c8:de:82:0a:c6:35:6d:4b:
12:68:da:e3:7e:68:f4:e2:e3:c9:1c:53:2e:4c:50:b1:f2:e1:
95:ed:14:05:b8:38:e0:a1:1b:38:d5:c1:94:12:19:9f:bd:02:
af:ba:0a:c2:67:43:76:17:58:49:b4:36:dc:3c:6c:fc:10:aa:
c1:06:d7:03:38:8b:4f:68:d7:e1:4e:73:3a:a7:30:75:56:4c:
06:cf:e0:d2:75:aa:8d:3d:6a:61:ab:a9:50:db:eb:4f:1c:d7:
6e:c3:33:81:a4:7d:54:c4:c2:7d:cd:f4:eb:5e:25:0b:b1:96:
78:75:57:c4:21:f7:ab:75:09:76:b7:5d:0a:95:93:d6:9d:21:
fa:81:08:f2:46:4e:2b:7a:cf:ad:48:0d:14:c1:f1:ef:ca:66:
6d:2c:77:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 15 19:18:59 2025 by rpki-client on console.sobornost.net