Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ae676a97-17e8-43c8-b032-522076c501aa.roa
File: ae676a97-17e8-43c8-b032-522076c501aa.roa (raw, json)
Hash identifier: 92EqVL8If+AY8pUamRome3Om8DRABIyTty7ewhril14=
Subject key identifier: B9:68:83:DA:26:9B:9C:96:03:52:05:2E:FD:26:DD:EC:4B:7B:73:D6
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 6C3856C8C0CC982C5AA695FBF14C9F3BF14D48
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ae676a97-17e8-43c8-b032-522076c501aa.roa
Signing time: Mon 31 Mar 2025 15:51:50 +0000
ROA not before: Mon 31 Mar 2025 15:51:50 +0000
ROA not after: Mon 05 May 2025 23:59:59 +0000
asID: 16509
IP address blocks: 70.224.192.0/18 maxlen: 18
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6c:38:56:c8:c0:cc:98:2c:5a:a6:95:fb:f1:4c:9f:3b:f1:4d:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Mar 31 15:51:50 2025 GMT
Not After : May 5 23:59:59 2025 GMT
Subject: serialNumber=6cc3f5ae764ab5695d1ff4f75cee96cf6433c7af56afe4ccc4a5350c9314d717, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:33:9a:02:31:14:98:8b:ba:ec:bf:e9:9a:2e:
da:08:2a:0d:4c:5b:88:38:0d:c9:46:ac:c0:78:3e:
b3:4d:d8:e3:10:3b:b1:0a:58:fd:ee:35:86:37:d5:
55:60:26:05:1f:a4:ef:c4:9b:b7:c1:d7:6c:f3:4d:
f9:1e:45:cf:9e:1d:6b:8e:36:db:62:b2:7a:ff:b4:
bb:da:85:ec:ce:42:ed:58:cc:dc:45:fe:8d:98:e8:
83:cf:2d:0b:f8:8b:00:66:67:15:9b:cc:d9:24:7f:
1e:50:91:de:54:4a:5d:13:b8:95:64:94:ac:ac:35:
b4:d3:c8:8e:f1:42:29:bc:1e:f3:a8:db:a8:4f:f5:
99:3d:4e:f2:4f:5a:5e:9c:f6:a2:94:60:95:c2:34:
87:70:20:31:3a:b4:fc:23:a1:83:bd:1b:29:21:30:
61:48:9b:34:c5:80:08:1b:f7:7c:9d:c0:6a:15:93:
be:8d:a1:d4:a0:89:3c:e0:20:79:81:fd:fb:9a:b6:
fb:9e:2b:d6:7d:39:ec:f3:3c:75:95:5b:41:1a:e4:
e7:f3:c5:2b:ce:5d:fb:f3:7c:d5:ca:0b:27:90:47:
67:3d:f5:e8:85:6b:ca:4f:7b:e9:21:60:9b:af:51:
ef:ca:7b:14:d9:ae:23:50:7e:0a:01:eb:5b:11:1f:
20:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:68:83:DA:26:9B:9C:96:03:52:05:2E:FD:26:DD:EC:4B:7B:73:D6
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ae676a97-17e8-43c8-b032-522076c501aa.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
70.224.192.0/18
Signature Algorithm: sha256WithRSAEncryption
41:36:3c:83:e2:c7:51:12:2e:d0:9c:10:06:12:fb:5d:b2:6a:
a5:26:14:a3:af:51:92:5d:7a:90:bf:c1:33:e0:5a:6f:98:c7:
4c:39:a4:db:ca:2e:78:1d:2a:79:2c:88:94:6e:94:14:5b:46:
ce:90:63:5f:98:fb:b0:4b:5b:b3:ab:dc:5d:ef:3a:33:7c:66:
b4:fb:48:d0:8b:a5:90:72:b0:c0:2d:ab:ee:36:ce:38:e5:8b:
a2:ce:04:87:3a:08:03:d8:86:09:58:e6:e7:c5:70:ea:8c:62:
bf:f8:21:c3:57:1a:a0:26:c2:02:d4:fc:da:77:3d:d3:24:45:
32:e5:db:40:a1:b8:8f:97:f4:25:21:fd:33:2c:a6:c0:c8:bf:
f9:46:31:3f:60:fc:63:b8:7a:71:f1:47:99:02:64:58:9f:35:
ef:53:08:e2:d9:75:1d:61:24:fb:7c:8d:54:a7:de:ac:40:59:
23:44:63:49:9c:4d:65:bd:81:37:8f:82:7b:77:a1:33:63:59:
41:ec:e9:38:4b:be:c7:06:07:3c:90:39:64:69:ac:0f:da:ef:
2e:9e:71:1d:c5:20:0d:d9:26:c1:39:a4:0b:43:2c:84:36:8e:
84:40:75:7c:8a:f4:f0:93:5f:8e:d0:2d:09:b4:7c:91:03:eb:
60:86:0d:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 15 19:19:17 2025 by rpki-client on console.sobornost.net