Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ac285f19-324f-4769-988a-0b6c67139e64.roa
File: ac285f19-324f-4769-988a-0b6c67139e64.roa (raw, json)
Hash identifier: C81hBrhyFHnKBiHv3uDn6z4xIUxPBSo4ZN8A+/HVj/Y=
Subject key identifier: E4:F2:88:FD:A8:BD:4C:62:E6:45:6C:6A:23:0F:E8:A2:70:2F:9E:ED
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 42FCAE0144D5768C185F5E1358BE5160CE4504C7
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ac285f19-324f-4769-988a-0b6c67139e64.roa
Signing time: Mon 31 Mar 2025 15:41:20 +0000
ROA not before: Mon 31 Mar 2025 15:41:20 +0000
ROA not after: Mon 05 May 2025 23:59:59 +0000
asID: 16509
IP address blocks: 54.116.0.0/15 maxlen: 15
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
42:fc:ae:01:44:d5:76:8c:18:5f:5e:13:58:be:51:60:ce:45:04:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Mar 31 15:41:20 2025 GMT
Not After : May 5 23:59:59 2025 GMT
Subject: serialNumber=2a81ad1a2d9d7cc60eb23fbec3806f555d48fbb8843be47ff4c48e00c1f030b1, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:af:74:aa:6f:93:ba:12:d0:f8:fb:ce:90:6a:
c1:14:2b:5b:90:ce:da:36:8c:73:73:1e:ef:d8:a0:
50:1b:2d:fb:5a:d6:f7:07:26:d4:95:04:ef:d1:90:
d2:f3:29:8a:f0:8d:60:5d:cd:c9:ea:f5:95:05:de:
9a:c1:a4:fb:d0:e2:84:c6:4d:df:d2:68:53:5c:aa:
5e:2b:39:a0:56:3b:4d:ba:a5:c9:07:44:5a:14:91:
51:34:51:a5:3a:61:9e:16:7c:6e:3d:0c:c1:34:b2:
3a:72:f8:d7:8e:1d:8a:ec:e6:89:7b:55:ec:75:2c:
5e:5f:c6:c2:f4:65:c8:bb:15:d5:67:99:ce:82:a9:
1d:da:3b:9e:d8:cb:62:d6:34:db:4b:85:38:0e:4f:
f7:23:07:0b:39:59:44:43:52:57:3a:96:75:6e:58:
f4:db:fa:81:45:dc:a1:6a:79:ae:67:8c:26:ab:2d:
39:70:25:0d:be:ce:0a:3e:27:ca:fd:7e:ec:72:da:
ac:2f:86:2d:18:06:a3:5e:7c:3f:c5:d8:e7:6e:29:
ac:68:e7:8a:5e:25:a9:d5:b0:ac:07:3e:8f:6a:be:
cc:4b:c8:6e:e6:60:c5:bd:b0:bc:3e:d3:c4:70:8d:
6d:3d:36:5b:cf:d4:9f:d4:ac:16:15:7f:5b:9f:f3:
5c:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:F2:88:FD:A8:BD:4C:62:E6:45:6C:6A:23:0F:E8:A2:70:2F:9E:ED
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ac285f19-324f-4769-988a-0b6c67139e64.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
54.116.0.0/15
Signature Algorithm: sha256WithRSAEncryption
d8:29:53:ba:83:b6:01:c6:94:ce:68:e3:7c:3f:7e:f8:f4:c9:
7f:8e:09:c8:2e:82:27:dd:35:75:d7:f8:22:5d:66:2c:a8:e6:
4a:5c:0f:1d:8c:03:9f:6a:f0:28:2f:46:5b:2d:06:f7:90:b4:
b3:18:bd:85:fa:12:bc:82:8b:c9:30:0c:9e:1e:df:8b:68:e1:
47:72:9a:f5:73:b8:67:b7:26:8d:99:6c:41:04:9c:10:23:b2:
8a:8f:3c:41:e3:66:95:2a:3a:7e:4b:85:cf:a6:86:d7:0d:bb:
6b:6e:96:91:96:59:6c:17:67:bd:95:b3:fb:7e:53:ac:72:35:
27:3b:4f:99:87:13:ce:23:bf:93:e0:a4:56:32:95:49:c4:12:
3c:13:48:ea:d4:17:51:75:bf:49:fa:ce:23:a0:51:4d:7a:b9:
a2:67:ca:e3:7b:87:86:cc:fc:d9:f6:22:1f:bc:52:28:8c:ec:
b6:ac:3e:b4:65:48:8c:18:9d:f3:69:6f:8b:b0:2d:f8:36:0c:
80:db:b1:d2:f3:13:bd:da:ed:f9:43:98:1c:99:5d:fa:e7:56:
e4:00:11:98:fc:28:c8:89:0b:fa:46:2f:a7:58:37:0f:c7:dc:
36:86:2f:e0:11:0c:e6:b0:49:57:8c:18:c8:9c:1c:d0:ae:2b:
60:79:01:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 15 19:19:17 2025 by rpki-client on console.sobornost.net