Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f35aa982-4508-48f5-9aee-d528e96cd9dc.roa
File: f35aa982-4508-48f5-9aee-d528e96cd9dc.roa (raw, json)
Hash identifier: 2zbVj0ujmI33LTZd59zRE+Bu/CYO7409yuIuB2D3tNU=
Subject key identifier: 10:E0:38:99:EE:FF:EE:6E:FA:28:FA:B6:92:BC:0D:FE:9C:08:FD:43
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 61E937EB807BAB9DAE8263E044DA28799860D41A
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f35aa982-4508-48f5-9aee-d528e96cd9dc.roa
Signing time: Tue 15 Apr 2025 00:11:48 +0000
ROA not before: Tue 15 Apr 2025 00:11:48 +0000
ROA not after: Tue 20 May 2025 23:59:59 +0000
asID: 16509
IP address blocks: 216.26.0.0/18 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
61:e9:37:eb:80:7b:ab:9d:ae:82:63:e0:44:da:28:79:98:60:d4:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Apr 15 00:11:48 2025 GMT
Not After : May 20 23:59:59 2025 GMT
Subject: serialNumber=ed9a59d430465f7df41aa7594e76ba9d83983037a9b9ac19ca4c3aa3bced1782, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:d2:25:91:d6:3a:fc:f5:07:12:b0:41:eb:a0:
ae:da:8c:4b:eb:37:ad:7b:64:47:6c:6b:f1:d7:7f:
c4:7d:9f:07:ae:aa:3b:20:4f:43:a1:66:86:97:78:
35:c3:2f:33:f5:b0:1b:74:8a:f2:2c:94:d3:84:60:
07:c4:9d:0e:9c:c8:a1:05:4a:ee:e0:88:58:57:04:
0f:ec:29:a5:11:91:ac:a2:59:06:a1:c2:99:a0:3e:
4a:8e:c1:be:8a:d2:78:b1:ad:3e:c7:dc:40:29:35:
6c:07:3d:2d:97:eb:54:34:09:d8:b3:33:f6:f7:6f:
4b:09:7f:c2:26:04:1f:94:dd:6e:76:c8:6e:c2:5a:
f4:3a:f7:b9:18:32:6d:e4:67:5e:4b:10:cd:00:cb:
ef:93:22:5c:54:a7:b2:ff:8b:26:d8:e8:41:48:1a:
2e:3e:23:31:53:a4:b3:a0:1f:e9:f8:4c:26:aa:a4:
b3:ee:d0:27:bd:1a:6e:75:ba:a3:6a:60:80:3f:46:
89:aa:bc:8e:5d:3c:90:53:41:f7:2c:ca:39:92:30:
8d:81:7e:ee:9d:6b:d1:34:45:c4:b9:d2:95:34:4e:
13:c4:0c:bd:66:7b:fc:51:16:04:30:59:89:18:f2:
ae:b5:0a:4a:44:49:df:ec:ff:73:de:b6:7d:1c:c3:
db:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:E0:38:99:EE:FF:EE:6E:FA:28:FA:B6:92:BC:0D:FE:9C:08:FD:43
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f35aa982-4508-48f5-9aee-d528e96cd9dc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
216.26.0.0/18
Signature Algorithm: sha256WithRSAEncryption
5c:68:51:a8:3f:8f:39:ca:3d:65:06:90:5e:65:aa:9b:c1:93:
a6:d0:e6:64:51:55:6d:a4:6a:38:89:1b:be:18:d8:28:76:9f:
30:10:c1:66:5b:49:26:74:25:43:b7:e7:77:3d:56:be:5b:57:
6a:5a:9e:ea:66:9f:d7:17:2c:fc:ad:d5:43:16:cf:8d:51:a9:
66:74:6c:b0:fd:4a:e1:12:64:0e:8c:8d:3f:87:bc:2a:aa:52:
8e:86:1e:56:ec:89:81:ae:7f:34:bb:7e:f1:99:f5:32:e1:11:
8e:35:25:18:a4:aa:9f:9f:5f:2e:cd:87:ca:43:3e:31:42:05:
14:53:8f:35:5b:6b:02:c0:16:69:21:1f:87:12:6d:32:0e:a5:
ff:17:b4:3f:bb:4c:c6:53:48:46:51:55:45:9a:00:4c:48:ab:
80:73:21:8e:bf:c4:cf:f0:dc:38:bb:6b:c5:ab:c3:c3:48:4d:
c5:d6:8f:36:7d:bd:83:60:a7:72:2e:da:3b:f6:bb:f3:f1:cd:
f5:36:bf:68:15:c2:79:a7:0b:e2:39:cd:48:e9:47:76:40:62:
de:36:2a:1c:2b:95:8e:84:74:18:b8:49:e1:b7:fa:07:68:b9:
7b:97:23:a3:7e:8c:78:94:d1:2e:95:4c:62:74:31:b9:3c:d3:
55:f6:9a:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 15 19:19:25 2025 by rpki-client on console.sobornost.net