Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/500a3cf1-3f40-4339-812a-4cafda9ec993.roa
File: 500a3cf1-3f40-4339-812a-4cafda9ec993.roa (raw, json)
Hash identifier: IgsBUfRs6xNhCzqS6ALz8S415TnbzSNrIyKvfxj0u0s=
Subject key identifier: 8B:29:79:36:47:6C:E9:00:64:29:D8:B1:9E:6A:5A:76:57:01:6F:34
Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08
Certificate serial: 60A7CF8146016883E216D076484D245E5DBD7278
Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/500a3cf1-3f40-4339-812a-4cafda9ec993.roa
Signing time: Wed 11 Dec 2024 00:00:00 +0000
ROA not before: Wed 11 Dec 2024 00:00:00 +0000
ROA not after: Wed 15 Jan 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2600:f0f0:5539::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
60:a7:cf:81:46:01:68:83:e2:16:d0:76:48:4d:24:5e:5d:bd:72:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08
Validity
Not Before: Dec 11 00:00:00 2024 GMT
Not After : Jan 15 23:59:59 2025 GMT
Subject: serialNumber=213d47d2be20a77802bf3fd7a4707022b7c64afd3a172f215d1f0bd593daa995, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:6e:97:7d:c2:61:ab:20:17:74:af:43:89:9c:
57:52:ed:8f:59:55:5c:ed:85:0f:85:78:28:4c:38:
71:ed:70:6b:22:b8:02:13:63:94:ef:cb:fd:90:10:
5f:9d:2a:c2:21:e5:1c:c6:b9:5b:1e:e2:2e:10:a3:
34:9a:8f:87:8f:66:71:7d:d6:b4:b7:c0:65:da:e9:
a2:4c:80:95:53:27:31:7d:71:57:9f:69:8a:85:10:
7a:f8:14:44:6a:4a:85:7c:39:21:be:ae:ab:f4:d3:
5f:1a:dd:01:04:80:5c:c5:dd:e9:8f:0a:c3:b9:c0:
a0:a2:fb:3a:e8:32:b6:87:c0:6c:b3:d6:95:2f:f9:
c6:08:5c:2c:1b:ab:f9:3f:cc:3c:24:6e:fc:d8:0d:
8d:22:e7:79:b2:4f:fe:a8:79:46:05:9a:16:37:fa:
93:a8:a6:12:93:e2:34:22:12:25:7e:17:55:89:06:
86:26:64:72:04:8c:82:bf:dd:81:64:38:55:d7:ae:
be:66:b4:7e:78:7f:c4:0b:33:01:4e:8d:df:f1:5a:
4b:fc:7b:af:12:0d:33:9d:4a:39:83:6a:ca:45:3b:
52:36:34:16:fc:67:cc:37:03:38:e5:f9:5f:cd:f5:
bc:a4:00:3a:2e:0d:d3:9c:9c:0d:d0:12:00:82:79:
b3:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:29:79:36:47:6C:E9:00:64:29:D8:B1:9E:6A:5A:76:57:01:6F:34
X509v3 Authority Key Identifier:
keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/500a3cf1-3f40-4339-812a-4cafda9ec993.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2600:f0f0:5539::/48
Signature Algorithm: sha256WithRSAEncryption
11:02:76:63:ec:40:7d:18:00:9d:a3:12:50:4f:70:83:a2:13:
fd:3f:b8:11:50:13:c4:1c:44:80:33:c2:eb:79:81:7b:ae:eb:
95:8a:25:b7:9a:0d:5e:80:d4:96:c5:7d:68:c0:8d:10:41:e1:
3e:3b:8c:f3:eb:bd:90:f4:f9:d3:db:27:a5:59:99:21:da:8f:
a4:b5:6c:24:b1:6f:10:39:5c:13:e5:2e:06:e2:19:e8:b9:78:
8a:e7:17:eb:64:c2:7e:63:3c:67:6c:47:59:ff:ce:94:06:8b:
fa:21:8b:81:0d:cf:a0:ba:15:ca:7b:7f:e0:52:b6:fd:23:fd:
3c:6d:11:43:59:97:9a:3e:7c:b9:cb:f4:8d:e1:16:bb:8e:4c:
28:41:2f:9f:5f:1e:1e:e9:de:7c:4c:d9:a9:4a:30:b0:f9:21:
1a:37:0e:1b:43:a4:fb:04:42:50:1f:94:75:62:d2:e8:da:c1:
c2:8c:1b:d5:4d:14:fe:c6:70:50:be:14:5f:fe:3d:35:52:97:
7d:b7:46:b9:cb:a3:7e:fd:a4:89:8c:ea:60:1f:01:a0:d5:28:
70:fa:f5:90:b8:91:f8:a5:9c:e3:40:23:16:4b:51:b6:4b:52:
78:43:51:3d:b4:88:f9:0d:70:28:78:08:5e:f5:47:cc:ef:cd:
a2:4d:c1:8b
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Wed Dec 25 19:01:41 2024 by rpki-client on console.sobornost.net