Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/263c986d-6d69-4baa-a444-e3885ce515f3.roa
File: 263c986d-6d69-4baa-a444-e3885ce515f3.roa (raw, json)
Hash identifier: ZW4IeC9EnaU+QwINIEgjV3BuLZVydGorZOgIvMElefs=
Subject key identifier: 9F:36:79:FA:B5:E7:79:76:81:3A:98:27:6A:C5:8E:97:E3:CD:54:E4
Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08
Certificate serial: 024873AD8145909DADDED16B9643A8EFBCB6DAD6
Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/263c986d-6d69-4baa-a444-e3885ce515f3.roa
Signing time: Tue 10 Dec 2024 00:00:00 +0000
ROA not before: Tue 10 Dec 2024 00:00:00 +0000
ROA not after: Tue 14 Jan 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2600:f0f0:5524::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
02:48:73:ad:81:45:90:9d:ad:de:d1:6b:96:43:a8:ef:bc:b6:da:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08
Validity
Not Before: Dec 10 00:00:00 2024 GMT
Not After : Jan 14 23:59:59 2025 GMT
Subject: serialNumber=7b55bd2ab6582164e909e114f7e21d17b5027710e74c9ce5701cafe8cb798927, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:f6:c3:9b:1f:1e:2a:a7:d9:c0:30:f2:f2:a4:
74:76:99:17:7d:45:42:13:de:5b:f7:14:bb:0f:8c:
b7:cf:47:69:2d:18:6f:1e:72:36:bb:c1:17:28:d8:
db:03:87:40:80:ed:73:a5:bf:85:83:89:54:24:dd:
e9:6f:fc:d0:fc:76:40:71:fe:c0:10:4b:71:a9:7b:
d5:57:0b:2b:77:10:14:95:ef:e3:1c:35:a2:b7:ca:
ae:27:93:ab:c1:82:e8:0b:92:bb:84:d7:30:89:bd:
ce:97:cb:3b:ec:28:d2:d8:be:89:e8:2b:b0:28:e7:
d3:8c:5f:f9:e8:75:72:62:ec:80:f6:ca:23:b0:8f:
3a:d7:23:20:45:df:e1:e0:99:99:cc:43:33:e4:d9:
36:e4:2e:68:90:a4:4e:e6:fe:f1:ea:fd:27:1f:08:
bb:40:e4:c2:6a:97:95:db:63:a2:b5:3c:31:4b:83:
77:40:a7:07:fc:92:d7:34:d8:e0:3c:0b:4e:60:2d:
39:13:69:e3:21:5f:50:73:a7:d1:aa:f4:13:c2:f6:
df:54:96:ce:3d:51:2f:b5:06:66:64:21:ad:7a:0d:
fa:e1:ac:4a:f8:85:50:8d:c4:d6:62:03:b1:31:9d:
7f:5f:f8:28:2d:90:51:f1:5d:09:69:c1:e6:0a:ee:
f2:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:36:79:FA:B5:E7:79:76:81:3A:98:27:6A:C5:8E:97:E3:CD:54:E4
X509v3 Authority Key Identifier:
keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/263c986d-6d69-4baa-a444-e3885ce515f3.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2600:f0f0:5524::/48
Signature Algorithm: sha256WithRSAEncryption
3b:f5:8f:99:7b:69:0e:6b:02:77:64:2e:4e:ac:cf:38:af:7d:
d1:b8:ff:2a:2b:90:6f:88:95:f0:24:07:6b:b2:15:c6:ab:bb:
98:8c:d1:32:52:ed:b0:c8:07:ba:13:7e:12:cb:36:a2:3b:7d:
4d:54:25:d1:dc:f7:32:38:af:17:0a:96:ae:48:36:50:10:84:
e7:2a:f3:7d:5b:52:07:41:a2:f6:46:3f:c3:27:97:33:56:5b:
1f:f5:df:93:30:de:40:e9:e8:a0:71:66:05:a6:9f:58:1d:dd:
01:d4:d9:b6:47:76:73:a3:3a:e8:1b:b5:45:26:94:5f:8f:e8:
75:9b:64:5b:90:c6:e7:98:79:72:fe:c3:d3:cf:e7:aa:3d:95:
d8:a6:5f:c8:f0:cf:f0:7c:d2:64:79:d7:63:f8:fe:38:2f:5a:
86:f9:b1:f1:bb:50:6a:5c:bc:aa:1f:39:fe:43:f2:42:db:e4:
8e:22:3e:7b:fa:61:5e:20:7d:cc:f4:2c:af:ec:74:87:8c:3a:
e8:c3:6b:3a:a8:fc:81:a2:54:39:40:ae:3c:de:da:fa:3d:86:
f5:33:ab:31:11:13:8f:ab:30:ca:9f:86:9a:57:f2:66:81:ba:
25:83:19:9a:ed:7d:d8:6d:f6:20:74:02:da:26:28:42:b7:fa:
ec:cd:52:f7
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Wed Dec 25 19:01:41 2024 by rpki-client on console.sobornost.net