Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/677448d3-c998-4825-9df7-dd9ac11a3c19.roa
File: 677448d3-c998-4825-9df7-dd9ac11a3c19.roa (raw, json)
Hash identifier: QKhuJP+GvL5JhqJT7M0lcP9rBWGCLJGC6PvXMNbEPqM=
Subject key identifier: 83:39:2E:C9:FC:B3:B2:F5:0F:1A:D3:17:C3:3B:8C:FA:38:46:93:02
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 7B30224D457668D066C8305433FAC7FDCC47F9C2
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/677448d3-c998-4825-9df7-dd9ac11a3c19.roa
Signing time: Sat 29 Mar 2025 00:40:10 +0000
ROA not before: Sat 29 Mar 2025 00:40:10 +0000
ROA not after: Sat 03 May 2025 23:59:59 +0000
asID: 14618
IP address blocks: 161.178.128.0/19 maxlen: 19
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7b:30:22:4d:45:76:68:d0:66:c8:30:54:33:fa:c7:fd:cc:47:f9:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Mar 29 00:40:10 2025 GMT
Not After : May 3 23:59:59 2025 GMT
Subject: serialNumber=c9e0535f35f64bdd458874a49ea3bd319602c36cc5e57f75c3641e05b0300635, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:3f:7b:6a:06:55:fe:fe:8b:7c:c9:15:3b:d8:
37:2f:51:33:f1:d4:92:6b:5a:ec:35:b4:92:16:54:
6e:2e:85:f0:06:04:8a:e8:7c:07:70:da:e5:ae:bc:
3c:85:ea:c2:05:37:dd:ef:3e:aa:e3:23:74:df:55:
25:14:05:f3:2f:ff:70:84:72:cd:1f:fc:04:4e:91:
5e:fa:be:b5:87:2f:45:92:86:08:44:8b:57:a8:bd:
17:16:3d:56:ec:53:a4:e2:63:7d:6e:69:cb:1c:be:
6d:c0:14:39:db:5b:d7:b0:87:6a:cd:ff:99:d8:a0:
40:6c:d0:c1:bb:1a:94:15:24:ce:4c:d6:53:12:c8:
82:ca:ea:77:50:06:a2:e6:19:81:e4:40:5b:a6:87:
0b:6d:a1:de:87:bb:c1:ec:d2:ea:5b:6b:a7:5d:b2:
da:65:7c:37:38:2a:a0:71:0f:49:0f:c0:f0:21:e1:
8d:f9:38:21:75:7c:91:ad:a8:43:eb:49:15:32:d6:
34:eb:86:fc:7e:81:a8:23:80:a2:10:da:17:55:34:
30:95:24:5a:5f:8a:fe:60:dc:21:a8:7b:e1:90:2f:
70:f4:2e:5f:82:c6:b6:f3:0f:92:5c:e2:3d:de:50:
6f:6d:e1:96:8f:cc:b4:79:68:9c:7e:5c:c2:a4:d9:
98:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:39:2E:C9:FC:B3:B2:F5:0F:1A:D3:17:C3:3B:8C:FA:38:46:93:02
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/677448d3-c998-4825-9df7-dd9ac11a3c19.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
161.178.128.0/19
Signature Algorithm: sha256WithRSAEncryption
36:8c:ac:fe:fd:90:c7:15:ac:05:0a:e7:99:5a:d0:92:ef:54:
af:80:5a:b9:a0:a9:c5:4a:ab:79:ac:fe:95:39:a1:ec:aa:be:
4b:57:cf:73:ab:8d:46:aa:69:78:fd:02:08:59:93:76:2f:9d:
fa:23:76:fb:42:e8:33:c2:cc:e6:32:a8:1c:c6:15:fc:b5:6f:
6b:0c:d9:cb:c1:c2:41:66:8c:c5:35:da:c7:73:7b:d7:7b:30:
3e:17:5a:51:aa:64:63:5e:59:18:b9:d6:e9:eb:63:cf:fb:ae:
c2:2c:83:2c:08:69:4c:2b:dd:cf:02:59:7a:69:52:7f:7d:30:
b6:0e:57:25:b3:74:92:b1:87:36:c5:1a:91:7d:18:f8:23:f2:
e1:c1:b4:0d:f1:5d:c1:3f:4a:cc:4a:21:24:98:52:28:5f:97:
03:d4:7e:e5:1e:4d:81:25:8d:b8:f5:7e:25:a3:16:8d:7f:03:
04:78:c1:2f:e4:6d:25:65:bf:61:e9:99:65:66:fa:5c:0e:11:
14:83:50:5a:02:f6:a6:96:f0:05:ab:e5:55:48:4c:cc:8a:1a:
e1:55:26:cb:63:20:09:11:14:9e:9c:5d:7f:4d:e3:e4:3e:53:
a0:d3:64:62:af:2c:72:b3:42:9d:b5:7e:f2:4f:3e:38:1a:bb:
cc:e9:22:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 15 19:19:08 2025 by rpki-client on console.sobornost.net