Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/c92a8c24-62b8-4009-a51c-8908d7373850.roa
File: c92a8c24-62b8-4009-a51c-8908d7373850.roa (raw, json)
Hash identifier: SxQzM5/t3cmP+TDhJKbN695qkr+9BJ8bVfIE2NtM3dw=
Subject key identifier: 13:52:63:AA:56:50:51:E0:82:C9:D0:1E:51:C1:97:A6:DF:3C:6A:CD
Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08
Certificate serial: 14098CFA2525AF8917CF2BFC059636823F844BDD
Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/c92a8c24-62b8-4009-a51c-8908d7373850.roa
Signing time: Mon 31 Mar 2025 18:50:56 +0000
ROA not before: Mon 31 Mar 2025 18:50:56 +0000
ROA not after: Mon 05 May 2025 23:59:59 +0000
asID: 14618
IP address blocks: 2600:f0fb:e100::/42 maxlen: 42
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
14:09:8c:fa:25:25:af:89:17:cf:2b:fc:05:96:36:82:3f:84:4b:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08
Validity
Not Before: Mar 31 18:50:56 2025 GMT
Not After : May 5 23:59:59 2025 GMT
Subject: serialNumber=c38729511b8fa10dcb58626a594e8811b3499ba4cbd3aca37abbba3de5302abf, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f5:d0:ed:b7:21:f3:b1:53:23:3b:45:07:15:ec:
f5:ca:d0:2e:e8:de:30:f8:89:3e:3b:13:f2:82:41:
1a:59:6a:43:9f:7c:f3:f8:09:48:02:a3:6a:60:7c:
f3:56:87:e1:96:db:69:7b:b0:c9:9d:13:82:b0:c0:
80:58:3f:36:6a:a1:ca:eb:9f:f3:38:7d:ed:17:06:
38:42:93:ea:6d:1e:05:ba:c5:c6:f5:21:f5:0f:a1:
7b:5d:9a:73:7f:2d:09:75:0b:03:80:4d:6c:39:1e:
92:fd:c1:43:84:8a:55:96:2e:a4:11:fe:8b:53:f6:
50:fa:98:b4:8f:ec:94:00:c5:8f:9b:a1:de:c2:80:
e3:a6:bd:9c:eb:b4:31:3c:5a:25:4c:69:d9:23:0d:
a7:9f:95:5f:1b:00:1a:63:11:21:09:ff:41:86:ff:
26:70:1f:9b:81:da:ef:3e:90:f3:7d:2a:38:7e:e7:
48:31:7e:fa:8f:32:48:2e:c7:96:6b:fa:bd:ce:5e:
e1:c1:c2:c8:9e:94:90:1b:95:5a:11:28:4a:a5:91:
14:33:4d:02:de:5c:04:d5:df:4d:26:05:6f:0b:e0:
b0:f8:e9:4d:d3:53:23:71:87:bb:0b:79:e2:55:30:
8e:06:44:73:b4:27:20:49:a0:10:70:5c:77:71:aa:
37:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:52:63:AA:56:50:51:E0:82:C9:D0:1E:51:C1:97:A6:DF:3C:6A:CD
X509v3 Authority Key Identifier:
keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/c92a8c24-62b8-4009-a51c-8908d7373850.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2600:f0fb:e100::/42
Signature Algorithm: sha256WithRSAEncryption
a6:9a:fb:ec:ee:5c:56:e3:d3:b0:da:82:71:fa:89:80:aa:fc:
bd:94:b1:27:b6:af:bd:8c:08:cc:32:36:d4:55:09:61:cf:e1:
69:f1:a1:e9:fc:59:1b:d2:d3:b8:67:50:8b:05:b2:03:5d:bd:
65:c6:1e:95:25:d2:4c:94:c3:a6:2e:01:f1:0a:ef:38:cd:86:
0d:09:72:5c:84:1c:89:8d:87:f1:8d:d8:8f:d6:10:fe:a1:aa:
81:4a:33:88:5d:15:5f:9b:05:75:45:74:53:e2:b7:8f:94:d8:
9d:10:0d:64:ca:58:59:43:ee:94:4e:1c:0e:29:38:78:04:3e:
a8:3a:2d:2b:d6:69:b5:0f:76:02:2a:ed:50:c7:59:f1:16:5b:
36:38:65:d8:67:58:42:36:0b:55:36:08:c9:cc:88:ad:e8:c0:
76:fb:20:0c:56:63:f1:42:45:69:7b:7c:c0:11:95:0c:6f:b5:
8e:61:43:1a:33:b1:37:d7:77:ee:b6:fc:f9:22:b4:7a:17:39:
23:43:97:52:42:ac:f5:ce:ad:fc:a6:0d:93:d9:f1:b5:a2:ff:
16:bc:ba:02:34:b3:3f:68:f6:dc:78:ac:72:29:b7:15:4b:56:
4c:92:50:a8:ff:bb:d9:54:c3:96:df:c3:eb:65:7a:9b:0e:f1:
fc:43:98:ec
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Wed Apr 16 02:26:36 2025 by rpki-client on console.sobornost.net