Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f7d3394b-0106-4440-8092-0e7ea99fde28.roa
File: f7d3394b-0106-4440-8092-0e7ea99fde28.roa (raw, json)
Hash identifier: iViecU6lPLYwYP6mYsGFZSFwRsOQNco9SAm8grQ8ZmU=
Subject key identifier: 6F:34:48:BB:1B:9A:E3:1D:62:46:FB:47:0D:7A:75:88:51:1D:56:3E
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 0F18C19BB6DBB2E709B8A037D3B317F34977847C
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f7d3394b-0106-4440-8092-0e7ea99fde28.roa
Signing time: Wed 02 Apr 2025 00:11:20 +0000
ROA not before: Wed 02 Apr 2025 00:11:20 +0000
ROA not after: Wed 07 May 2025 23:59:59 +0000
asID: 16509
IP address blocks: 23.228.192.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0f:18:c1:9b:b6:db:b2:e7:09:b8:a0:37:d3:b3:17:f3:49:77:84:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Apr 2 00:11:20 2025 GMT
Not After : May 7 23:59:59 2025 GMT
Subject: serialNumber=1ce1a5e691a653412f657ffb60a508de677bfe9f047eda257b4f5ed1ef56d643, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:e5:fe:f6:43:0a:3d:87:6f:13:c2:a4:85:77:
1b:01:53:a8:3c:06:36:3e:04:d6:1d:87:74:85:92:
30:e1:f5:8e:0d:f1:23:3c:ae:9d:06:bb:79:90:6f:
94:8c:5f:e8:34:4b:9a:c1:7d:cc:92:6d:20:0b:7d:
d3:7d:b9:1b:21:af:e0:28:e7:25:de:8b:d1:74:5a:
ca:e7:cd:19:b0:23:44:21:18:d7:c0:51:b5:7f:2f:
f6:d6:bc:6a:9a:32:d9:74:6d:4d:c8:e9:e9:b0:01:
d7:1b:e5:af:e0:7b:ab:9a:53:84:99:4f:4c:11:2e:
5a:b9:51:d0:75:27:0b:c5:af:86:d8:40:6e:51:37:
c6:2d:13:e3:c9:0a:f9:1b:ab:8e:24:11:42:c4:00:
f0:62:9c:dc:9a:36:cc:fe:9d:90:3e:cf:a4:05:a3:
ec:2d:3e:b7:5f:5a:ce:81:df:bc:ed:71:33:12:05:
eb:bd:21:62:61:cc:e1:54:ab:a6:fc:d5:94:fa:9e:
ac:65:e3:d4:0b:fc:f1:98:bb:83:09:ad:e8:61:7c:
94:b0:ab:2b:ab:01:0e:9d:6d:91:ee:50:96:08:8f:
16:b4:39:c2:11:bc:40:42:16:c9:a2:6b:38:7d:31:
8f:50:75:45:af:ff:22:62:01:d5:71:92:45:ef:06:
87:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:34:48:BB:1B:9A:E3:1D:62:46:FB:47:0D:7A:75:88:51:1D:56:3E
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f7d3394b-0106-4440-8092-0e7ea99fde28.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
23.228.192.0/24
Signature Algorithm: sha256WithRSAEncryption
07:f0:b8:0e:c3:37:6f:5f:87:b5:47:a9:c7:61:63:77:c5:89:
b3:ad:d0:d7:b2:be:ad:43:e8:36:b1:be:ca:6a:9d:b3:fc:2d:
01:8c:7d:de:0b:9b:3a:f0:33:db:3f:27:41:3f:43:4a:c9:03:
bc:39:e9:17:57:a6:40:2c:76:11:0a:5b:23:95:c0:47:7e:8c:
37:37:02:5a:68:5c:a3:9e:56:b2:09:bf:e4:92:65:64:a2:f9:
ab:95:0e:28:1a:7e:ad:57:87:58:fb:d7:04:90:33:fd:78:77:
e2:24:83:29:a3:66:e1:42:a7:5c:0a:4c:66:6a:65:f5:f0:ca:
c9:be:f3:3c:52:68:0a:5d:96:d0:f8:67:08:24:67:f0:a7:1e:
68:7d:c8:33:24:ea:ed:8c:d3:b4:82:c7:a5:09:e3:ff:fe:f6:
ce:4c:76:48:78:76:40:e5:c8:37:4f:4e:da:b2:19:62:4e:89:
14:56:0c:6d:e5:3f:78:d1:a4:72:9c:b2:56:b9:9a:32:9e:9f:
11:20:76:d8:2c:32:f5:86:bb:2c:8a:ca:84:03:5e:80:0b:7d:
11:dd:78:a2:aa:11:d5:9c:83:74:28:94:80:d1:be:bf:6e:ae:
cf:e2:62:df:dd:65:cf:2c:ea:67:ef:fd:1b:78:81:68:e9:2c:
b7:60:e5:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 15 19:19:25 2025 by rpki-client on console.sobornost.net