Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e0677c68-3681-4e3c-b63a-e2dfdd5e0779.roa
File: e0677c68-3681-4e3c-b63a-e2dfdd5e0779.roa (raw, json)
Hash identifier: b/ptBWrXWMhFZ6PZEuyyLPU3roj/GayFGXyTqnWIVRs=
Subject key identifier: 7A:92:27:08:DD:C2:4B:68:A8:E4:4F:7B:69:13:ED:84:91:CE:17:68
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 4BCB2BFF8893EAE1649E9471B32E9DC75A536CF4
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e0677c68-3681-4e3c-b63a-e2dfdd5e0779.roa
Signing time: Fri 11 Apr 2025 00:11:19 +0000
ROA not before: Fri 11 Apr 2025 00:11:19 +0000
ROA not after: Fri 16 May 2025 23:59:59 +0000
asID: 14618
IP address blocks: 64.252.125.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4b:cb:2b:ff:88:93:ea:e1:64:9e:94:71:b3:2e:9d:c7:5a:53:6c:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Apr 11 00:11:19 2025 GMT
Not After : May 16 23:59:59 2025 GMT
Subject: serialNumber=e555c9c264e77c01b89c4c2be41d387ffb50821f9e13e1bc8f5c708458507f0e, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:a1:39:7e:e3:08:d7:59:30:34:59:46:6c:09:
b3:48:10:39:87:f6:7a:81:00:d5:7d:27:0a:5a:64:
d5:b5:ec:5d:5d:11:90:86:51:00:8e:f3:12:66:46:
b2:2c:6c:32:3c:46:e0:30:a8:2c:5b:6e:c7:f3:a4:
7d:ce:04:c7:b0:dd:57:03:ea:e6:21:7b:b3:78:a4:
50:52:fb:9a:32:94:42:4c:dd:2f:7d:60:86:7f:6c:
39:00:2d:95:a9:3d:f7:c6:70:f7:5e:21:1b:ee:4c:
93:7c:3d:cd:a1:41:be:cc:be:00:fd:63:b2:f6:3f:
c8:5c:19:28:d3:bc:5d:35:74:49:ed:24:e9:9c:9b:
3e:89:16:ab:32:6a:b2:24:e0:b8:b3:6e:22:64:8f:
58:dd:59:8b:16:e0:7b:57:ac:3b:d5:b7:e5:61:9d:
ac:5f:03:ea:4b:0c:c3:e4:1c:a2:a4:82:31:7f:dd:
65:f2:a6:f3:f7:c0:0b:8d:38:86:41:82:7e:5b:7d:
7a:34:9f:33:98:96:0b:1f:9b:20:cb:aa:f3:d3:da:
93:67:99:89:81:ce:48:e1:05:3a:09:ab:68:5a:9b:
00:cc:25:3f:0d:da:7c:bd:38:d7:d0:77:7d:8b:8c:
68:ce:e3:a0:bf:14:6e:59:2f:51:35:fc:13:dd:f4:
1a:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:92:27:08:DD:C2:4B:68:A8:E4:4F:7B:69:13:ED:84:91:CE:17:68
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e0677c68-3681-4e3c-b63a-e2dfdd5e0779.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
64.252.125.0/24
Signature Algorithm: sha256WithRSAEncryption
14:6c:03:3f:17:78:fa:39:1d:65:e4:85:bd:88:1a:4a:4f:34:
4e:2b:e6:83:e9:31:17:7c:a3:c7:71:22:ee:20:9d:af:94:3c:
d0:45:a6:b2:d6:de:c0:e1:3b:3c:1d:97:96:a6:c2:dc:b7:48:
be:0d:fd:e9:01:29:c4:5e:49:b9:78:a5:42:ed:c8:c0:48:4d:
4f:c3:27:69:af:9a:23:6a:11:c7:c7:9e:b8:12:ae:da:a6:2a:
ca:74:de:70:01:a4:71:6d:03:93:87:87:13:14:37:89:24:b6:
8d:0d:fe:7d:f4:14:57:27:65:f1:6b:64:4b:3a:9e:1d:dc:20:
f1:3c:cf:2e:10:6b:78:22:22:05:82:a1:6e:7e:4d:41:a8:ff:
41:08:a8:6a:32:2a:9f:34:f2:36:f3:a5:a8:9f:ba:4a:13:9e:
38:65:2c:51:d9:23:14:18:1d:6e:7b:0e:bd:a7:cd:bd:92:0d:
87:87:eb:84:63:ca:24:04:59:93:44:19:d8:9e:fb:26:67:ff:
25:7c:eb:9a:b2:8a:91:29:2f:fb:f6:86:db:73:bb:f0:1f:22:
bf:9a:90:72:83:f8:e6:ec:30:20:7e:a6:36:dd:e9:d6:18:7f:
97:8a:07:84:1c:0d:2c:18:d5:aa:41:24:27:89:cb:2a:11:66:
fa:84:db:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 15 19:19:23 2025 by rpki-client on console.sobornost.net