Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/639097d5-f9bb-4b92-adec-86468a0d59da.roa
File: 639097d5-f9bb-4b92-adec-86468a0d59da.roa (raw, json)
Hash identifier: Vy2qTmKsfa3VgAa3RFT8pQr7GtI4wHTDXq6gOwIT1dI=
Subject key identifier: 73:7F:D4:36:6D:2F:D8:07:29:D6:CB:BC:28:A2:AA:32:70:2C:77:9C
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 4306E6E473508FB3882A731F2D951D9928342E8A
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/639097d5-f9bb-4b92-adec-86468a0d59da.roa
Signing time: Mon 31 Mar 2025 18:37:10 +0000
ROA not before: Mon 31 Mar 2025 18:37:10 +0000
ROA not after: Mon 05 May 2025 23:59:59 +0000
asID: 16509
IP address blocks: 1.178.0.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
43:06:e6:e4:73:50:8f:b3:88:2a:73:1f:2d:95:1d:99:28:34:2e:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Mar 31 18:37:10 2025 GMT
Not After : May 5 23:59:59 2025 GMT
Subject: serialNumber=f3f90b4e238a72baa23637820d0ac86fb32e0a4be404e79101a9d2518cabc6b7, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:e9:bd:d7:d1:c3:0b:4b:85:93:34:ca:89:64:
78:e9:a5:dd:f3:5b:b1:d9:a9:f5:86:fe:c7:ac:a5:
56:77:1d:4f:0e:d2:2f:29:24:91:09:07:ff:02:a7:
14:75:4a:06:92:73:0c:3e:e3:70:0f:b4:27:5d:b3:
92:83:fa:6d:54:13:31:53:03:4d:24:90:b7:31:c4:
96:40:62:ec:34:eb:c4:b7:02:70:b1:f3:1d:c8:d8:
23:f1:2b:64:b5:23:52:92:58:39:0d:0f:57:95:72:
76:1f:e5:6f:46:f3:62:e7:e6:d9:14:64:87:a3:f7:
4a:84:b4:d3:50:64:d4:b6:a0:86:79:cf:9a:43:5c:
07:02:8b:f1:9f:c5:35:2d:97:25:f4:9f:4a:08:9f:
9d:5b:03:6e:39:9e:90:bf:42:22:18:69:35:58:54:
de:54:a8:99:47:a8:84:ca:e9:a9:08:2c:e7:e8:8c:
0a:d6:24:35:7a:ee:b5:2c:51:d0:f3:37:2e:b5:9b:
e2:6e:33:c9:2b:a7:7e:db:55:b5:76:68:b5:e4:a6:
77:7e:38:54:dc:a3:ee:79:b9:07:5a:94:5a:bf:f8:
e9:9f:ae:e2:57:64:6f:37:b1:c6:c2:86:36:ae:16:
bf:1a:5e:58:3e:50:24:f2:a8:bb:1b:c0:ac:b8:de:
50:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:7F:D4:36:6D:2F:D8:07:29:D6:CB:BC:28:A2:AA:32:70:2C:77:9C
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/639097d5-f9bb-4b92-adec-86468a0d59da.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
1.178.0.0/24
Signature Algorithm: sha256WithRSAEncryption
38:0e:71:3b:07:32:ff:a2:97:54:71:b5:39:4a:11:2b:49:49:
08:bf:db:f4:6b:36:e4:01:93:fb:28:79:73:ae:79:f7:91:25:
a7:cb:ab:42:f1:0d:81:77:8e:31:53:30:16:66:e7:01:44:8a:
21:e1:fd:93:a5:fe:16:05:2b:23:08:ec:ef:dd:8f:bc:4c:51:
99:52:87:d5:5e:c3:0f:45:f1:51:51:fb:51:9e:c0:93:c3:49:
a7:fa:1b:fe:e5:5b:f3:78:c0:5d:92:d8:97:f3:7a:d7:76:1c:
78:a4:00:20:64:0d:47:e2:0a:b6:7e:28:80:9f:0d:4e:9b:b4:
ee:29:d5:14:1f:4b:10:f9:c5:76:5f:65:97:c1:fc:20:f2:7e:
22:34:20:8c:13:17:b6:e9:ab:d1:00:da:04:25:20:02:57:0c:
93:c0:f6:3b:72:e2:23:90:6f:55:46:1e:41:c8:65:74:32:b6:
35:b4:62:00:9a:c2:de:81:96:aa:78:9b:b6:60:52:d8:8f:dd:
b0:58:f8:60:66:83:6e:96:0e:03:44:85:25:b9:6f:b3:c5:7a:
44:da:af:80:50:91:cc:cc:42:be:f7:a7:62:42:3f:74:b9:24:
2e:f4:f9:b2:16:9b:59:84:cd:ae:9f:35:c0:9a:cf:4e:37:3d:
da:9c:77:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 15 19:19:07 2025 by rpki-client on console.sobornost.net