Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/7ef9d80d-500c-4762-aefe-0aa07f82b263.roa
File: 7ef9d80d-500c-4762-aefe-0aa07f82b263.roa (raw, json)
Hash identifier: cmcZ/l590eMH39yOSzMrtJt6CNtL3P0p3BbQiA2rEbk=
Subject key identifier: DB:86:8A:0B:C7:CD:FA:32:E6:24:93:16:22:BA:5B:CE:45:E2:F6:7F
Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08
Certificate serial: 5A73A80D24EA6075C224A3905DE74D005FD5320C
Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/7ef9d80d-500c-4762-aefe-0aa07f82b263.roa
Signing time: Mon 31 Mar 2025 18:50:20 +0000
ROA not before: Mon 31 Mar 2025 18:50:20 +0000
ROA not after: Mon 05 May 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2600:f0fb:e400::/40 maxlen: 40
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5a:73:a8:0d:24:ea:60:75:c2:24:a3:90:5d:e7:4d:00:5f:d5:32:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08
Validity
Not Before: Mar 31 18:50:20 2025 GMT
Not After : May 5 23:59:59 2025 GMT
Subject: serialNumber=2563fb95199173ae72a36fc0ba511719519c3c3563264210c2a6bf1ec6fd444a, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:b3:fc:dd:e9:48:e8:d0:97:7c:b2:83:7d:2d:
9e:32:54:f8:89:46:5b:85:b9:6f:2d:45:4c:9c:9a:
52:f3:e8:e6:64:a2:9f:c1:11:dc:9d:12:ed:37:2d:
b8:fd:19:1c:60:01:1b:f3:76:a0:8e:8a:74:79:af:
54:95:55:47:d4:4d:ea:5c:e1:2e:fa:a7:30:42:ed:
cd:ad:93:63:c6:7c:6f:f2:3d:fa:74:6e:99:df:56:
02:79:05:de:41:53:62:3b:87:99:c9:bd:36:bc:e9:
29:fc:d0:b8:b1:4f:e5:60:1e:fb:07:89:9a:0a:c1:
6f:ea:f3:50:72:55:fe:35:e0:f5:a3:90:40:b2:e8:
f4:4f:99:62:99:0b:b4:9b:ff:c3:04:5a:46:31:bf:
ea:80:ad:0a:18:f4:df:0a:9e:da:11:59:15:b5:dd:
e8:c5:37:4d:af:2b:5d:61:27:75:27:73:fa:ac:b8:
77:b1:9a:ea:37:a0:24:76:79:67:a4:54:43:98:d8:
17:51:d1:48:97:e4:a4:de:05:ac:fa:88:78:dd:b5:
1f:ca:0b:1e:ec:3a:10:1c:99:8e:d3:aa:2f:f9:4d:
d0:63:4f:ac:ba:94:21:6f:89:19:66:b5:03:c5:fd:
c6:80:e5:0f:1d:19:3a:53:b7:4b:8a:c4:33:02:51:
1a:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:86:8A:0B:C7:CD:FA:32:E6:24:93:16:22:BA:5B:CE:45:E2:F6:7F
X509v3 Authority Key Identifier:
keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/7ef9d80d-500c-4762-aefe-0aa07f82b263.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2600:f0fb:e400::/40
Signature Algorithm: sha256WithRSAEncryption
84:5c:fd:32:76:a1:00:f3:cf:a9:15:80:b7:a5:d0:45:d9:91:
f0:ec:6b:70:43:75:66:ee:c7:6c:04:bf:39:e0:13:ff:3e:dc:
68:81:e1:1f:34:4b:e3:73:78:fa:84:14:ee:d7:d1:7f:e4:9c:
d1:40:2a:ac:b7:57:fc:75:95:b1:15:ad:26:8c:b1:b9:f4:7f:
7a:e6:dd:73:ea:bc:1e:70:23:ee:c5:fe:a2:83:3e:a7:f0:a0:
cf:25:8b:1d:e1:01:d1:0d:0f:c5:dc:1f:6c:53:a4:2b:56:e1:
af:1c:0a:a4:24:4b:d0:99:37:b9:f8:58:e1:b8:8e:8f:35:05:
cc:04:f7:b9:f3:dd:ce:60:d2:ac:0d:e2:e8:9e:fd:5a:78:19:
29:61:0f:2c:dc:bf:68:13:69:5a:10:19:95:4d:ec:c1:b1:b7:
5b:d6:ec:09:79:c4:bc:18:0d:45:3d:04:5b:13:ec:82:24:5a:
49:b5:aa:20:02:33:41:5a:d2:89:45:24:a0:c4:f2:4a:23:b9:
2f:ef:e0:32:4a:c9:93:1c:45:4c:a6:3a:4d:30:02:66:fc:93:
df:eb:53:0a:07:22:b5:57:5a:72:02:a6:4b:78:15:9d:48:03:
72:6e:17:e5:79:e4:40:bc:5b:46:14:ad:84:99:c4:d8:73:81:
69:2f:1b:f6
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Wed Apr 16 02:26:36 2025 by rpki-client on console.sobornost.net