Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c4e487e4-60ba-45b8-adcd-20a9ce2ba018.roa
File: c4e487e4-60ba-45b8-adcd-20a9ce2ba018.roa (raw, json)
Hash identifier: CkXK4fEo7nFpMVpmpI+MpRZYOuMK6KkSQT2nXtp+vfU=
Subject key identifier: 32:E2:46:7F:E3:2B:33:ED:95:EC:09:4B:BD:AC:EA:1A:32:58:6D:82
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 1BB68C7584036B75D60932154163EEE5DB45D3F4
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c4e487e4-60ba-45b8-adcd-20a9ce2ba018.roa
Signing time: Mon 31 Mar 2025 15:40:17 +0000
ROA not before: Mon 31 Mar 2025 15:40:17 +0000
ROA not after: Mon 05 May 2025 23:59:59 +0000
asID: 14618
IP address blocks: 54.25.67.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1b:b6:8c:75:84:03:6b:75:d6:09:32:15:41:63:ee:e5:db:45:d3:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Mar 31 15:40:17 2025 GMT
Not After : May 5 23:59:59 2025 GMT
Subject: serialNumber=60c94b6b81671ae978da47f6cdbbc6aa85cb66aba2d773075296c7b3109af1cf, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:5d:cd:c5:27:40:8c:63:91:29:20:b4:7e:8f:
37:98:1f:58:bb:79:5b:69:cb:2a:8b:f8:e7:37:f6:
06:6e:d9:a2:f3:ee:e2:47:56:60:8c:4a:2d:c7:3b:
05:6e:58:fd:ef:d4:da:e3:5d:87:18:92:d1:2d:6c:
52:31:45:3e:de:04:b1:0b:14:0a:9a:d0:8c:1f:6a:
9d:d2:2a:ee:49:90:18:2e:a3:20:85:70:a3:f7:07:
70:6b:0a:a2:15:19:02:07:d0:12:d7:99:8a:1b:4c:
77:12:06:ae:ff:20:4c:77:75:ec:cc:5d:7d:38:1d:
2c:92:96:74:29:2a:d5:ef:ad:e8:f1:2c:d8:b4:93:
b3:31:54:62:92:90:25:e9:4a:d2:a7:be:e9:c0:51:
49:60:32:4a:2d:c1:a9:0a:ce:ad:81:b6:7f:89:f5:
2d:1c:5e:4f:5c:1b:bf:d4:43:5a:de:41:ae:26:0c:
6b:82:b6:8f:9b:88:a8:0b:e0:48:41:39:38:46:9d:
a9:9b:3b:f7:ad:6a:84:83:ba:45:de:c3:6b:76:bb:
fb:45:65:26:be:f6:14:d0:6e:a2:ce:5e:d8:58:f0:
6a:25:99:0f:4d:08:26:13:1f:68:fe:c8:6d:51:37:
df:50:98:b9:62:7f:e1:4a:48:e2:1a:01:69:25:26:
2c:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:E2:46:7F:E3:2B:33:ED:95:EC:09:4B:BD:AC:EA:1A:32:58:6D:82
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c4e487e4-60ba-45b8-adcd-20a9ce2ba018.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
54.25.67.0/24
Signature Algorithm: sha256WithRSAEncryption
b1:90:05:a4:64:b7:a9:48:0f:e2:8a:6a:47:a7:94:3d:9c:af:
7e:a6:af:8b:3c:2f:98:88:3f:86:ae:55:c5:36:a6:49:eb:e5:
a1:99:f6:ff:9a:57:ba:8d:be:2f:59:ff:6f:8b:6e:35:ce:08:
e9:93:f5:89:a2:f6:4e:3e:c1:ef:71:ed:b3:ff:6c:72:1d:46:
69:20:9a:57:b6:bb:32:ac:ff:b5:ee:c5:59:85:1c:e1:9c:07:
12:62:06:81:17:54:01:5c:87:07:84:6e:4b:bc:97:62:d2:13:
0d:6b:54:04:d8:e1:32:21:c2:46:4e:09:ff:58:bc:65:e0:5b:
a9:3b:ad:c1:d5:ab:55:8c:c0:a8:a0:fa:56:70:83:73:c2:dd:
6b:22:e6:0f:d8:6d:fb:4f:ee:90:e3:07:69:cc:f3:cb:ed:a3:
56:df:f9:e2:15:fb:a7:b1:6d:c9:70:1e:56:80:2b:1a:09:ae:
8c:be:22:8a:02:79:fb:b2:97:1b:9f:51:ce:6c:8a:32:b6:24:
9a:62:12:7d:e8:9f:bd:0c:42:dc:1a:6b:bf:1c:7b:19:1b:73:
24:31:9b:61:83:d4:b6:b3:1e:4c:35:be:18:c0:4f:5c:cd:06:
62:c1:1f:fb:f9:bb:94:94:8c:07:0c:1f:ad:06:03:13:51:1a:
0e:1e:b6:04
-----BEGIN CERTIFICATE-----
MIIF+DCCBOCgAwIBAgIUG7aMdYQDa3XWCTIVQWPu5dtF0/QwDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi
MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMzMxMTU0MDE3WhcNMjUwNTA1MjM1OTU5
WjB6MUkwRwYDVQQFE0A2MGM5NGI2YjgxNjcxYWU5NzhkYTQ3ZjZjZGJiYzZhYTg1
Y2I2NmFiYTJkNzczMDc1Mjk2YzdiMzEwOWFmMWNmMS0wKwYDVQQDEyRiMjVjOTcw
Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQCsXc3FJ0CMY5EpILR+jzeYH1i7eVtpyyqL+Oc39gZu2aLz
7uJHVmCMSi3HOwVuWP3v1NrjXYcYktEtbFIxRT7eBLELFAqa0Iwfap3SKu5JkBgu
oyCFcKP3B3BrCqIVGQIH0BLXmYobTHcSBq7/IEx3dezMXX04HSySlnQpKtXvrejx
LNi0k7MxVGKSkCXpStKnvunAUUlgMkotwakKzq2Btn+J9S0cXk9cG7/UQ1reQa4m
DGuCto+biKgL4EhBOThGnambO/etaoSDukXew2t2u/tFZSa+9hTQbqLOXthY8Gol
mQ9NCCYTH2j+yG1RN99QmLlif+FKSOIaAWklJiwZAgMBAAGjggKxMIICrTAdBgNV
HQ4EFgQUMuJGf+MrM+2V7AlLvazqGjJYbYIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD
Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04
ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw
MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3
MjVjMDQyOTQyL2M0ZTQ4N2U0LTYwYmEtNDViOC1hZGNkLTIwYTljZTJiYTAxOC5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz
LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBAA2GUMwDQYJKoZIhvcNAQELBQADggEBALGQBaRkt6lID+KKakenlD2cr36m
r4s8L5iIP4auVcU2pknr5aGZ9v+aV7qNvi9Z/2+LbjXOCOmT9Ymi9k4+we9x7bP/
bHIdRmkgmle2uzKs/7XuxVmFHOGcBxJiBoEXVAFchweEbku8l2LSEw1rVATY4TIh
wkZOCf9YvGXgW6k7rcHVq1WMwKig+lZwg3PC3Wsi5g/YbftP7pDjB2nM88vto1bf
+eIV+6exbclwHlaAKxoJroy+IooCefuylxufUc5sijK2JJpiEn3on70MQtwaa78c
exkbcyQxm2GD1LazHkw1vhjAT1zNBmLBH/v5u5SUjAcMH60GAxNRGg4etgQ=
-----END CERTIFICATE-----
Generated at Tue Apr 15 19:19:20 2025 by rpki-client on console.sobornost.net