Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b0cdb99c-80ae-4cab-9dda-4da4b37568c7.roa
File: b0cdb99c-80ae-4cab-9dda-4da4b37568c7.roa (raw, json)
Hash identifier: UfkXp8+hMP7BcBNsjL3ZdeJ9p+5/dWkGj06XRreYUE0=
Subject key identifier: 46:39:F6:4B:36:01:28:1F:20:CA:07:A1:AB:58:86:0E:97:DA:E6:79
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 6B2263658568ADEB48E014F2B3D681D89B984BA6
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b0cdb99c-80ae-4cab-9dda-4da4b37568c7.roa
Signing time: Sat 29 Mar 2025 00:30:19 +0000
ROA not before: Sat 29 Mar 2025 00:30:19 +0000
ROA not after: Sat 03 May 2025 23:59:59 +0000
asID: 14618
IP address blocks: 107.20.0.0/14 maxlen: 14
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6b:22:63:65:85:68:ad:eb:48:e0:14:f2:b3:d6:81:d8:9b:98:4b:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Mar 29 00:30:19 2025 GMT
Not After : May 3 23:59:59 2025 GMT
Subject: serialNumber=8c71ebca918795c7917db36942188d7899d868fb5a08e477e22416113d4ab23c, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:69:aa:b0:e7:95:20:be:cd:df:24:1b:18:7f:
af:3e:e6:96:3d:3e:ba:f7:38:80:21:e5:dc:51:aa:
db:ff:cb:11:3d:aa:cb:7d:86:4b:05:f8:8e:07:6f:
62:f1:aa:76:68:b5:4a:34:09:b6:d7:fd:cb:73:62:
4c:da:6c:4c:1f:56:ad:84:d0:de:2c:17:65:cc:bf:
5f:24:3c:64:ad:45:ed:4c:55:e2:2a:be:6f:19:5e:
d5:2f:db:70:ea:90:13:98:e5:ce:b1:d4:fc:8d:ca:
22:ec:c6:3b:36:73:de:3a:1d:f0:e0:f9:f6:93:c4:
3a:00:cb:54:19:37:41:83:a0:90:30:03:d7:7c:3b:
d6:6d:4d:3a:d7:aa:64:db:e7:73:e6:f3:71:8d:dd:
68:b6:73:cb:02:da:31:83:64:02:8c:b2:34:83:eb:
7b:52:b7:e7:9b:c8:2e:96:9f:ce:f6:01:da:27:f0:
23:d4:f5:fa:11:0e:3e:9c:83:4d:a5:18:df:7f:b9:
0a:7a:37:95:02:ef:d8:ae:05:5e:62:e8:f7:1b:a8:
4a:d0:fc:72:5c:ee:fc:4a:08:1c:08:b8:fa:f9:11:
1f:10:f5:e4:03:88:b4:28:a0:db:83:c7:cb:a8:4f:
16:b9:6a:f8:5b:7a:7c:ac:bd:08:08:cf:12:1a:7d:
7c:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:39:F6:4B:36:01:28:1F:20:CA:07:A1:AB:58:86:0E:97:DA:E6:79
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b0cdb99c-80ae-4cab-9dda-4da4b37568c7.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
107.20.0.0/14
Signature Algorithm: sha256WithRSAEncryption
25:91:b3:b3:fa:f4:0b:1c:06:01:16:e2:77:c0:d4:c3:83:63:
df:54:21:64:d2:46:85:7c:3e:03:e3:c8:a8:6f:7a:cd:85:48:
cd:13:59:75:96:9d:1f:db:08:f1:d3:9c:69:54:f4:c1:03:44:
95:02:a3:d9:ef:33:63:ff:65:bf:05:13:f4:86:eb:57:22:87:
a7:f8:08:e6:ac:a7:49:24:ba:ff:fa:26:4a:fd:9d:57:46:25:
1c:8d:b7:32:51:9d:99:41:44:74:d5:99:15:4d:c5:5b:be:59:
17:82:0b:01:f3:02:5e:5f:42:2a:12:ba:9b:dd:38:09:c1:22:
f5:e4:38:38:0d:c0:4d:94:a6:96:a1:4a:2c:27:1f:34:fe:2b:
9d:1a:15:e9:ae:fa:58:9b:dc:01:a2:83:77:5d:d9:1a:a6:1b:
ff:51:c3:1c:47:a6:6b:b0:71:97:62:07:ad:4e:e6:de:55:1e:
57:37:aa:0a:5f:06:06:ed:71:3d:65:cb:da:2a:ba:2c:f7:ae:
a5:87:f8:e6:0c:24:a2:ee:03:37:d6:ae:d0:9d:d4:a4:60:8f:
36:b6:bd:69:7c:1b:81:81:a5:3d:74:88:cf:85:db:ec:82:6e:
81:5f:f1:70:31:0f:0e:b9:fc:be:a8:59:6c:58:d4:8e:81:97:
2b:be:1a:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 15 19:19:18 2025 by rpki-client on console.sobornost.net