Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/b711b513-e0f0-4a59-a188-036dda4ade5a.roa
File: b711b513-e0f0-4a59-a188-036dda4ade5a.roa (raw, json)
Hash identifier: vVp+p7xNLRzTTRYcs3geIevRCY6d//xINv3UoJfES9E=
Subject key identifier: 21:F1:5D:B9:8A:EE:80:40:E9:47:CE:56:5F:7B:AE:13:3B:66:FB:28
Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08
Certificate serial: 4040B8708B308975E164410E4A330F379516CEA0
Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/b711b513-e0f0-4a59-a188-036dda4ade5a.roa
Signing time: Mon 31 Mar 2025 18:50:16 +0000
ROA not before: Mon 31 Mar 2025 18:50:16 +0000
ROA not after: Mon 05 May 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2600:f0fb:ef00::/40 maxlen: 40
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
40:40:b8:70:8b:30:89:75:e1:64:41:0e:4a:33:0f:37:95:16:ce:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08
Validity
Not Before: Mar 31 18:50:16 2025 GMT
Not After : May 5 23:59:59 2025 GMT
Subject: serialNumber=fd53ccdce57e5174645884c1311e77843d5c432ec2763cdc96e4b33a5ca1e18c, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:4c:c3:14:6b:6b:8c:8c:46:3e:bf:7d:64:32:
bf:77:58:0b:8a:ba:33:c6:ea:e8:52:dc:00:c7:a4:
ca:39:ea:70:3e:d2:b2:1a:b9:47:4e:09:01:ec:ad:
25:b3:79:1e:7a:4a:94:c8:bd:0d:f8:3c:c6:71:0c:
77:02:e0:7e:fd:0d:9b:d4:36:76:56:a4:93:6f:ed:
ed:07:92:77:15:a5:8b:31:c3:16:80:16:86:ca:e9:
62:16:22:4e:3a:d6:b4:68:a0:2a:58:18:6c:08:10:
cb:b8:d7:b7:f3:74:ae:6c:32:73:a1:32:ec:91:b6:
d1:bd:ac:91:42:76:f1:ad:ad:0e:f8:0b:8c:0f:8f:
e9:ed:be:7c:9e:53:a1:a9:cf:1c:e7:23:27:e9:b2:
0b:b7:77:70:cc:33:5f:76:80:14:a5:f2:0e:e0:43:
0a:b3:8c:13:3d:0a:f9:fa:ae:15:57:7d:5c:42:8e:
8f:0b:05:db:33:14:5f:55:52:6f:16:e9:5f:a8:25:
13:71:3a:e2:eb:78:db:13:a7:4d:f7:58:2c:33:f9:
d4:83:ea:de:89:bb:23:3c:fd:27:70:b6:82:04:bb:
72:e2:18:f8:4b:b6:c4:5d:a6:8a:1b:d1:5e:57:00:
27:2b:95:bb:1d:60:7d:73:40:cd:9d:3a:22:43:6d:
32:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:F1:5D:B9:8A:EE:80:40:E9:47:CE:56:5F:7B:AE:13:3B:66:FB:28
X509v3 Authority Key Identifier:
keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/b711b513-e0f0-4a59-a188-036dda4ade5a.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2600:f0fb:ef00::/40
Signature Algorithm: sha256WithRSAEncryption
5d:5f:76:16:1b:9d:dc:c2:b8:4e:b8:fa:68:f6:71:99:7c:44:
76:a1:0f:e1:a7:0c:f8:f0:ee:e8:95:ac:ef:45:f0:7e:df:0e:
fa:cf:e1:f7:fb:be:37:04:88:5e:5d:39:cf:e5:56:42:1f:78:
fe:ba:87:35:ff:ca:99:b9:e0:6e:50:00:10:09:48:c8:92:67:
d9:d5:ca:00:4e:89:31:fd:24:e1:d5:92:23:81:8b:9a:17:d4:
1a:44:ed:8c:4a:6c:6d:47:47:dd:bf:ae:2a:c6:fc:c2:13:1a:
e1:bd:ca:93:ed:ad:1d:87:41:9e:e1:51:96:fa:69:7d:b2:91:
cb:82:c8:d8:29:82:4f:df:d2:63:33:39:88:54:42:c0:21:2f:
d6:73:96:7f:6f:a0:d3:96:bf:3b:13:ab:de:7a:41:06:a1:dc:
a0:28:a5:51:f8:3f:a4:bd:1b:ad:2a:aa:6d:35:30:48:2c:3d:
65:24:da:b0:86:bb:fd:4f:9c:7f:4c:a7:e0:69:fe:44:d4:e1:
e7:8a:6b:d8:3d:32:b2:85:90:76:6e:19:f3:10:e2:df:73:0e:
ce:ae:f5:8e:cb:30:61:0c:40:16:8c:92:08:2e:e6:4b:22:18:
b0:fd:46:a8:5a:1a:94:e7:87:31:d9:4e:43:85:2d:bc:0d:c9:
3a:b4:a6:a0
-----BEGIN CERTIFICATE-----
MIIF+jCCBOKgAwIBAgIUQEC4cIswiXXhZEEOSjMPN5UWzqAwDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi
MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwMzMxMTg1MDE2WhcNMjUwNTA1MjM1OTU5
WjB6MUkwRwYDVQQFE0BmZDUzY2NkY2U1N2U1MTc0NjQ1ODg0YzEzMTFlNzc4NDNk
NWM0MzJlYzI3NjNjZGM5NmU0YjMzYTVjYTFlMThjMS0wKwYDVQQDEyRmYmIyNzU3
Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQC1TMMUa2uMjEY+v31kMr93WAuKujPG6uhS3ADHpMo56nA+
0rIauUdOCQHsrSWzeR56SpTIvQ34PMZxDHcC4H79DZvUNnZWpJNv7e0HkncVpYsx
wxaAFobK6WIWIk461rRooCpYGGwIEMu417fzdK5sMnOhMuyRttG9rJFCdvGtrQ74
C4wPj+ntvnyeU6GpzxznIyfpsgu3d3DMM192gBSl8g7gQwqzjBM9Cvn6rhVXfVxC
jo8LBdszFF9VUm8W6V+oJRNxOuLreNsTp033WCwz+dSD6t6JuyM8/SdwtoIEu3Li
GPhLtsRdpoob0V5XACcrlbsdYH1zQM2dOiJDbTJTAgMBAAGjggKzMIICrzAdBgNV
HQ4EFgQUIfFduYrugEDpR85WX3uuEztm+ygwHwYDVR0jBBgwFoAULhjiCKGCVxsJ
fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h
Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4
YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk
NjJlNDhmMDU2L2I3MTFiNTEzLWUwZjAtNGE1OS1hMTg4LTAzNmRkYTRhZGU1YS5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3
LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC
MAgDBgAmAPD77zANBgkqhkiG9w0BAQsFAAOCAQEAXV92Fhud3MK4Trj6aPZxmXxE
dqEP4acM+PDu6JWs70Xwft8O+s/h9/u+NwSIXl05z+VWQh94/rqHNf/KmbngblAA
EAlIyJJn2dXKAE6JMf0k4dWSI4GLmhfUGkTtjEpsbUdH3b+uKsb8whMa4b3Kk+2t
HYdBnuFRlvppfbKRy4LI2CmCT9/SYzM5iFRCwCEv1nOWf2+g05a/OxOr3npBBqHc
oCilUfg/pL0brSqqbTUwSCw9ZSTasIa7/U+cf0yn4Gn+RNTh54pr2D0ysoWQdm4Z
8xDi33MOzq71jsswYQxAFoySCC7mSyIYsP1GqFoalOeHMdlOQ4UtvA3JOrSmoA==
-----END CERTIFICATE-----
Generated at Wed Apr 16 02:26:36 2025 by rpki-client on console.sobornost.net