Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/67e63d4f-5384-4d7d-a543-82f23b8f1dca.roa
File: 67e63d4f-5384-4d7d-a543-82f23b8f1dca.roa (raw, json)
Hash identifier: vAwDqVE2UlE3LMtYqGnmu+SazBwEMCwEPvdidU1CWgk=
Subject key identifier: 8F:D6:00:BE:B9:C3:F2:24:34:64:37:14:77:CC:FB:56:F7:35:E5:64
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 590FA97B6731B4DE68824E546172A908C0817E24
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/67e63d4f-5384-4d7d-a543-82f23b8f1dca.roa
Signing time: Tue 15 Apr 2025 00:32:05 +0000
ROA not before: Tue 15 Apr 2025 00:32:05 +0000
ROA not after: Tue 20 May 2025 23:59:59 +0000
asID: 16509
IP address blocks: 99.151.185.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
59:0f:a9:7b:67:31:b4:de:68:82:4e:54:61:72:a9:08:c0:81:7e:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Apr 15 00:32:05 2025 GMT
Not After : May 20 23:59:59 2025 GMT
Subject: serialNumber=95749a2e39198ffeff1e96522a2545083368c42a7678deed13f7440bec9f648f, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:ff:c6:4b:82:94:4b:65:c9:81:1e:63:54:02:
18:eb:03:39:58:b5:4a:20:84:da:b5:72:56:00:bd:
a8:c7:34:e3:cd:81:1f:30:30:a5:5a:e7:42:8c:66:
1a:c1:d0:83:8f:b7:b3:b7:fc:6f:35:29:df:b2:c4:
f1:4a:b5:da:d4:7a:01:ec:0a:26:37:a9:ad:84:e8:
a8:68:9c:a0:3b:01:da:3a:d9:32:cc:61:f9:f7:d2:
2c:f6:b1:de:83:6c:27:56:c0:7e:73:a7:87:a8:6b:
51:73:cd:32:68:60:88:3a:c5:80:65:31:6c:64:a1:
ea:af:1f:d3:42:64:b6:50:72:5d:6c:91:99:5f:87:
bd:50:1f:7e:b2:c8:38:f5:1b:f3:dc:2d:4b:e6:4b:
79:28:27:c2:e5:a4:d4:24:20:3a:54:21:23:0f:d4:
c4:67:4b:5b:ed:52:ba:b9:82:b7:2b:c7:3a:21:3b:
3e:0b:e1:68:51:84:90:98:e9:56:7b:38:04:89:f4:
95:4a:ef:15:fc:67:91:3e:9c:ef:ca:0e:b9:5f:47:
03:d5:61:94:98:6c:53:dd:c7:af:6b:33:af:64:6c:
8c:c8:de:6d:e3:7c:38:ce:04:ca:f0:4f:1e:80:3b:
2a:42:b6:c3:29:ce:d0:72:18:f9:81:75:21:40:82:
2b:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:D6:00:BE:B9:C3:F2:24:34:64:37:14:77:CC:FB:56:F7:35:E5:64
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/67e63d4f-5384-4d7d-a543-82f23b8f1dca.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
99.151.185.0/24
Signature Algorithm: sha256WithRSAEncryption
33:fb:5d:64:a9:49:56:02:fc:96:5d:68:71:65:13:37:04:41:
b2:d8:d7:ad:bf:3c:23:8f:d0:08:d5:15:de:62:39:95:ec:43:
ba:55:4c:b8:50:6e:dc:6a:f4:a6:dc:2b:e3:ee:72:76:20:bd:
df:69:30:d4:8c:94:16:b1:04:03:ba:d7:a4:e4:b1:f7:c1:ef:
16:9c:19:c0:18:fc:90:28:2d:c8:49:7e:ac:2c:ca:3f:13:3a:
05:ae:1d:d1:ab:f6:05:97:a8:4c:73:1a:95:19:e7:1d:78:22:
c0:d0:5c:46:30:cb:a2:31:d5:37:17:99:57:15:b6:a1:4f:cd:
18:c7:43:9d:9f:e4:2a:d1:3d:67:bd:e9:eb:2c:9d:39:ee:6c:
ee:b9:b3:e4:a4:c4:86:3a:e1:d2:7e:fb:d6:32:11:1a:2d:85:
5f:cf:65:72:98:83:9d:09:1e:d0:a6:00:64:93:92:a9:ee:f3:
04:ef:93:0c:da:68:16:38:61:3f:b7:15:49:a6:46:48:36:e9:
2b:98:1e:ef:af:65:b2:c6:2c:5e:a1:b6:46:9c:06:28:49:33:
96:8f:f0:25:6c:1c:76:ab:fb:f1:a7:74:f2:a1:88:04:fd:85:
60:2e:11:ce:22:00:6a:6d:1f:50:c8:ed:9c:d8:09:31:61:1f:
a3:d0:9f:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 15 19:19:08 2025 by rpki-client on console.sobornost.net