Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/0fd90883-20eb-4a41-834d-178df78fdcf2.roa
File: 0fd90883-20eb-4a41-834d-178df78fdcf2.roa (raw, json)
Hash identifier: rex5KbBtkVd7T9wnn1xdyYgWPlKPMfRwwgATfPICTio=
Subject key identifier: 4E:EC:DC:9D:9C:CD:22:2A:32:8B:B4:BD:EE:9B:C7:C0:3E:60:55:B5
Certificate issuer: /CN=c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2
Certificate serial: 7570A9CD1C9B83E1ECF0A8794D4C4A063C997259
Authority key identifier: 1E:5F:2D:62:F8:5A:D2:84:D4:D1:89:25:6B:88:69:E8:E9:11:28:38
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/0fd90883-20eb-4a41-834d-178df78fdcf2.roa
Signing time: Tue 10 Dec 2024 00:00:00 +0000
ROA not before: Tue 10 Dec 2024 00:00:00 +0000
ROA not after: Tue 14 Jan 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2606:f40:9000::/39 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
75:70:a9:cd:1c:9b:83:e1:ec:f0:a8:79:4d:4c:4a:06:3c:99:72:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2
Validity
Not Before: Dec 10 00:00:00 2024 GMT
Not After : Jan 14 23:59:59 2025 GMT
Subject: serialNumber=7c173348dd9183981c2d68bad3d4a67b547472d073aa56ab6f160e560c1c39f0, CN=8f95e4d1-f14f-4d61-ae00-67e047d2f102
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:3e:7b:52:9f:02:10:f9:45:02:e9:31:6d:94:
03:c9:4f:be:7b:70:b2:16:28:05:c4:85:6c:99:a4:
51:d5:54:5b:c2:16:45:96:3e:06:6e:36:e5:7d:d4:
ce:31:23:0b:eb:12:15:e2:3b:94:2e:2d:d0:ab:f7:
92:68:56:c0:5f:3d:59:ff:4a:bc:bf:5d:ee:27:28:
06:ad:55:4a:f7:f1:83:29:d8:7e:05:05:dd:35:b4:
5e:dd:56:12:1b:41:22:de:87:7b:11:40:f0:5a:5e:
c1:9a:2e:34:2e:4e:a7:45:bc:f5:88:1b:26:68:87:
2f:26:3f:5c:68:8e:a4:67:d7:e7:bd:9f:33:71:11:
2c:b5:39:43:91:19:bc:3f:72:9a:78:f0:2a:29:9c:
15:a5:58:6a:08:7e:0c:54:65:36:e0:4a:d0:b8:69:
67:b4:1f:77:c3:13:e3:8f:ff:d2:16:a1:2b:34:3f:
25:ab:2b:80:45:1d:07:2c:7e:e2:89:90:28:c8:8d:
52:d0:f6:b4:c8:77:f4:9b:a8:5b:11:4c:82:2b:34:
9f:c0:9c:6d:70:4a:3b:0c:1f:21:e1:ce:83:d9:79:
1e:72:fe:38:90:74:93:08:97:62:dc:fe:ca:31:7f:
ff:ed:7f:10:32:f2:9f:e8:de:e5:ed:2f:c8:87:0c:
91:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:EC:DC:9D:9C:CD:22:2A:32:8B:B4:BD:EE:9B:C7:C0:3E:60:55:B5
X509v3 Authority Key Identifier:
keyid:1E:5F:2D:62:F8:5A:D2:84:D4:D1:89:25:6B:88:69:E8:E9:11:28:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/0fd90883-20eb-4a41-834d-178df78fdcf2.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/HwZxfSr2LjgJByCEw6-PSJSOQOI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2606:f40:9000::/39
Signature Algorithm: sha256WithRSAEncryption
b8:ff:d9:3e:f4:3d:62:8d:b5:5e:d1:cf:e9:5e:c5:b5:18:0e:
fb:87:f9:5e:06:f1:ca:69:ef:6f:c5:43:08:3b:26:93:32:b1:
ee:17:2d:9a:a2:b7:0c:c5:e0:c3:23:91:0f:21:d1:f6:6c:a3:
df:76:3a:cc:74:56:e7:dd:5a:05:82:83:14:f6:f2:f1:7f:ee:
8c:fd:a8:b4:9d:01:76:98:c2:01:00:37:d0:99:ac:03:94:6c:
59:fb:75:f8:57:df:69:88:63:19:08:e7:4d:47:8a:ec:be:e0:
e0:da:cd:44:ad:b5:2e:58:0a:dc:c2:48:2e:98:b5:bd:8a:18:
e3:40:d7:a1:60:7f:c0:43:ef:cd:15:82:62:df:c7:f6:df:61:
3e:46:5b:18:0e:65:e4:91:ee:13:60:f7:4a:cb:74:3d:c7:b7:
72:2a:c1:55:1a:5e:47:61:6c:83:30:0e:a6:13:87:34:eb:37:
92:40:be:66:9b:e2:54:a6:d0:89:4d:82:13:f9:b7:4e:59:1c:
05:c5:0c:1c:7b:b3:12:f1:fb:dc:da:51:e3:8e:57:b4:a9:14:
e0:f8:bb:1c:11:fd:a6:28:5d:54:22:4d:14:37:ee:77:89:d1:
e1:0f:c1:48:4d:2f:e3:48:25:23:7e:8a:b5:b2:bc:6e:a2:2a:
f4:b0:0b:39
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Wed Dec 25 19:01:41 2024 by rpki-client on console.sobornost.net