Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c8d91306-246c-473f-994d-c6a2c60ac615.roa
File: c8d91306-246c-473f-994d-c6a2c60ac615.roa (raw, json)
Hash identifier: CHC1+LRVpQyMnFcokOdQ46Mh6ZU7ulRfW7rsq64KO9g=
Subject key identifier: 67:07:E6:4F:BA:14:9C:E3:EB:B3:AF:80:9E:21:00:CF:DF:00:A9:F0
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 4CCD8324CA85497F5083E076DA1CEA66375A48
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c8d91306-246c-473f-994d-c6a2c60ac615.roa
Signing time: Sat 12 Apr 2025 00:21:53 +0000
ROA not before: Sat 12 Apr 2025 00:21:53 +0000
ROA not after: Sat 17 May 2025 23:59:59 +0000
asID: 16509
IP address blocks: 50.16.176.0/21 maxlen: 21
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4c:cd:83:24:ca:85:49:7f:50:83:e0:76:da:1c:ea:66:37:5a:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Apr 12 00:21:53 2025 GMT
Not After : May 17 23:59:59 2025 GMT
Subject: serialNumber=89178d23d32c3683d623713666beb8ddb6b139d24058fbea57abd4ab3b4f5894, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:cb:ca:04:cf:78:73:71:41:fe:78:1c:7e:81:
07:a2:f0:9b:cb:52:f2:fd:b9:09:61:b3:b1:4b:2a:
a4:55:a1:1f:e9:a3:f5:e1:fb:dd:44:15:52:35:88:
3e:98:a6:76:b9:cf:cd:39:d6:ff:5b:d5:13:f3:de:
06:6a:81:03:ef:b3:e8:70:44:3d:a7:e7:08:17:43:
71:fa:7b:d3:22:27:93:45:63:96:2d:77:84:e5:de:
d3:77:6f:c5:38:6f:e3:d2:7d:e3:76:1f:7f:6d:0a:
0f:66:3d:a4:ff:db:c7:49:f9:bc:b8:be:0a:56:8d:
df:0e:e6:b5:72:5b:c9:93:66:04:81:ef:ad:3a:49:
cf:cc:12:7b:69:d2:70:c0:e2:60:cb:df:70:e2:b9:
c9:89:99:e1:c4:b0:28:04:08:d2:a9:62:cb:01:56:
46:d9:9c:ed:cb:12:4c:be:1b:d8:19:00:12:e1:9c:
7e:ed:ca:24:60:25:68:87:d4:d6:57:88:15:5c:d4:
bf:4d:aa:7b:0f:90:27:03:4b:29:ba:0b:60:12:6e:
28:76:c1:d1:59:41:7d:5e:5e:2c:11:e8:00:aa:70:
85:94:f5:fd:87:8f:6e:18:af:c3:30:e3:4e:7d:c1:
34:75:b6:26:85:9a:24:e2:de:58:b7:6f:e6:bd:02:
77:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:07:E6:4F:BA:14:9C:E3:EB:B3:AF:80:9E:21:00:CF:DF:00:A9:F0
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c8d91306-246c-473f-994d-c6a2c60ac615.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
50.16.176.0/21
Signature Algorithm: sha256WithRSAEncryption
a1:03:cf:82:5d:4b:d4:97:77:99:9d:f1:c9:9f:40:fe:bd:ac:
b1:b7:11:86:e6:5b:79:23:55:61:02:e0:4c:ae:b1:11:89:d3:
d9:b6:71:6e:c8:da:39:ef:6a:0e:54:97:44:3d:92:b6:44:3a:
c0:76:40:be:41:67:62:3b:16:cf:9e:6d:8e:7f:8a:ca:0e:42:
3e:51:87:47:e8:50:61:e2:88:df:d8:6f:36:57:78:28:f2:1a:
24:72:c4:0c:03:14:b7:f3:f3:d9:65:e7:32:1b:a0:be:9d:44:
02:b3:29:71:8a:91:0e:2c:5b:5a:7f:bd:2f:b3:00:43:dc:5f:
94:09:69:c9:1c:d2:16:29:2b:8c:9a:44:e1:02:65:16:ec:93:
a0:e2:64:08:6a:28:21:55:33:c0:12:e0:a1:83:b8:66:f1:69:
34:5d:d9:c3:6b:d4:ae:aa:4d:03:aa:61:70:3a:b3:ce:55:6c:
fe:83:8b:3e:dd:56:2c:72:39:17:98:a1:d9:5c:a8:29:a0:93:
99:a0:5d:77:c6:64:7a:aa:1b:71:68:f5:a8:e5:1e:5a:99:56:
eb:77:25:9e:2c:46:5b:5e:70:fd:37:7e:7a:7d:1a:0a:a5:99:
b2:69:10:24:f5:02:cb:37:02:d7:f5:d3:e0:0e:b7:74:2c:65:
e7:29:96:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 15 19:19:21 2025 by rpki-client on console.sobornost.net