Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/f1746927-d9c4-41c2-8abc-289ecb180bdc.roa
File: f1746927-d9c4-41c2-8abc-289ecb180bdc.roa (raw, json)
Hash identifier: NmckgyfAYfdlAzaqlg7dfnJ62NUDJxXYxyquToMOSPo=
Subject key identifier: 6A:59:75:ED:2D:D7:B8:25:84:50:44:98:90:E9:C9:51:F4:27:ED:34
Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08
Certificate serial: 32DA5F05079DA972FA2AE521AF907F58CA5D423F
Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/f1746927-d9c4-41c2-8abc-289ecb180bdc.roa
Signing time: Mon 31 Mar 2025 18:50:55 +0000
ROA not before: Mon 31 Mar 2025 18:50:55 +0000
ROA not after: Mon 05 May 2025 23:59:59 +0000
asID: 14618
IP address blocks: 2600:f0fb:e500::/40 maxlen: 40
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
32:da:5f:05:07:9d:a9:72:fa:2a:e5:21:af:90:7f:58:ca:5d:42:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08
Validity
Not Before: Mar 31 18:50:55 2025 GMT
Not After : May 5 23:59:59 2025 GMT
Subject: serialNumber=b01c27f6258d5046177c42eba6d15e6879198f6bdbb700299b49b3b8c0d5c0b6, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:a4:25:63:18:3f:74:da:88:85:8c:7b:13:83:
b3:78:93:34:2e:bd:8a:3c:82:c0:97:64:b2:06:fe:
a1:b3:bc:42:30:21:9e:96:d1:cc:81:f7:95:7a:63:
64:3a:a4:ee:82:c0:1d:ef:0b:5c:31:91:15:e4:1f:
1a:b6:d2:5c:2b:6c:00:a8:c8:cb:48:cf:af:2d:0a:
93:c1:ba:0f:09:24:07:86:04:b0:22:c0:bb:bb:41:
81:e5:84:74:81:d4:f9:a8:50:24:7c:ef:57:90:af:
27:b0:af:b6:a3:8e:1f:af:4f:51:cf:89:56:2e:cd:
41:3f:b7:f6:a0:b0:0a:62:5a:bf:58:73:7d:b7:46:
7a:bc:5b:c4:f6:dc:f3:16:e6:58:dc:4a:e5:13:c4:
f1:f0:52:85:a5:0e:04:f8:94:f9:42:9a:32:a4:ac:
bb:7c:b2:7b:79:39:76:6a:d6:82:4e:c7:53:77:0b:
f1:5d:83:26:46:94:41:9a:26:5f:8d:33:da:67:fa:
b4:fa:3e:12:01:4c:0a:51:fa:cb:9d:3e:44:d7:81:
b2:15:96:50:d8:a4:d9:d9:38:c3:1e:70:bb:d8:69:
fe:1e:8e:7e:bd:7c:d7:66:70:b5:40:0f:46:84:99:
6d:c9:08:82:3a:0c:e0:ff:d5:69:49:77:a9:c0:ed:
9e:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:59:75:ED:2D:D7:B8:25:84:50:44:98:90:E9:C9:51:F4:27:ED:34
X509v3 Authority Key Identifier:
keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/f1746927-d9c4-41c2-8abc-289ecb180bdc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2600:f0fb:e500::/40
Signature Algorithm: sha256WithRSAEncryption
5b:aa:91:ad:60:79:11:60:3b:f8:f0:dc:75:37:fc:01:e0:23:
6a:a5:d8:82:14:d8:90:e2:ec:2c:35:35:1f:2c:fa:1f:93:7c:
f8:a2:6c:af:8e:15:90:76:51:77:e3:2c:3a:ad:32:36:92:0d:
f6:b6:e7:6f:22:ee:12:c2:4a:fb:5c:c6:e3:2d:50:26:67:fc:
94:a7:0c:87:89:91:7e:f4:71:b9:88:fd:b3:60:57:3c:13:33:
15:85:8e:cb:50:21:ad:d7:d3:dd:ce:81:00:1e:49:ad:b4:3e:
55:d5:67:67:94:8a:fe:41:81:25:58:26:b9:74:f4:02:59:b1:
99:eb:2f:7d:6f:c7:fa:e0:12:e3:9f:19:0e:f2:af:09:d8:63:
ef:32:2d:39:6f:63:f3:d3:ae:71:17:54:45:8f:d3:33:bb:ea:
98:95:ef:be:5b:a8:d8:08:b0:a1:3f:7c:10:ff:9a:34:a1:10:
02:c4:71:3f:b7:6d:63:68:55:0b:73:c8:e9:8d:ac:fa:73:cd:
e5:15:a0:ed:f1:7b:54:64:98:85:c4:29:61:a7:4c:de:4d:8e:
c7:2a:f8:1e:a9:9e:dd:b9:f7:2f:55:06:db:9a:d2:74:12:61:
3f:b1:8a:0f:7d:42:f2:0a:bd:17:8c:9b:52:87:0f:5f:86:02:
b1:bd:c7:cb
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Wed Apr 16 02:26:36 2025 by rpki-client on console.sobornost.net