Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/079c5420-4ba8-41e7-b985-8db0c2886192.roa
File: 079c5420-4ba8-41e7-b985-8db0c2886192.roa (raw, json)
Hash identifier: E7hpV2JtdfNysMETShPIHOzLOTGudEyf8SKG/YWD1t0=
Subject key identifier: 9A:52:84:8A:25:9D:70:EE:AE:1D:C1:F5:94:52:18:08:F3:7D:C1:D1
Certificate issuer: /CN=a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3
Certificate serial: 7A267058852AB57A21587AA19832736B14B1A9A8
Authority key identifier: 91:2D:C6:0D:D7:64:29:82:BC:AE:7F:81:FE:3C:4C:12:72:80:22:1F
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/079c5420-4ba8-41e7-b985-8db0c2886192.roa
Signing time: Mon 09 Dec 2024 00:00:00 +0000
ROA not before: Mon 09 Dec 2024 00:00:00 +0000
ROA not after: Mon 13 Jan 2025 23:59:59 +0000
asID: 14618
IP address blocks: 2620:108:7000::/44 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7a:26:70:58:85:2a:b5:7a:21:58:7a:a1:98:32:73:6b:14:b1:a9:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3
Validity
Not Before: Dec 9 00:00:00 2024 GMT
Not After : Jan 13 23:59:59 2025 GMT
Subject: serialNumber=4bd47e7d3ad81b2c9b26728b900e302cb942de4df4572649788a7d61c797348e, CN=ddfbc97c-7bed-40df-95ca-e664b29d7b27
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:54:d5:93:74:2c:13:1f:e6:92:8a:81:84:36:
04:31:a6:e4:b4:ea:7c:bc:90:6f:0e:d6:5e:5b:18:
5f:45:a1:2a:d2:68:0f:64:ee:04:89:de:b2:79:89:
40:1d:73:3c:bf:ab:d3:e6:c1:96:28:dd:4f:94:ab:
39:6b:9a:cd:34:0f:ec:b3:e8:43:45:3a:4f:e1:b9:
c2:17:45:3b:95:12:06:66:01:f1:9b:33:01:11:eb:
16:4b:74:f9:7e:52:b5:39:2d:9c:4b:b1:00:07:85:
d6:ca:2e:27:8e:a7:6d:1a:4f:f0:5d:f2:f9:f2:98:
74:00:21:b9:c7:51:82:41:50:d2:54:81:94:e7:68:
49:6d:85:10:a8:ff:0e:fa:11:77:1e:80:ea:90:da:
b2:ed:fc:87:96:47:76:64:37:a6:57:40:1f:9f:a8:
88:d6:89:8d:f7:2c:31:6b:29:5c:e7:f3:33:df:77:
95:bf:24:78:69:5e:06:76:b6:32:14:9a:52:f0:c1:
68:b9:52:72:c2:86:95:4f:61:40:eb:50:86:b1:65:
ce:6a:fb:f5:bc:b4:57:47:dd:09:a8:02:95:dd:55:
7f:05:62:5f:c4:f9:c5:88:38:83:ed:f8:7f:a3:c0:
8c:3c:f7:d7:29:f9:02:ad:a3:62:cf:49:b6:9b:2b:
4b:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:52:84:8A:25:9D:70:EE:AE:1D:C1:F5:94:52:18:08:F3:7D:C1:D1
X509v3 Authority Key Identifier:
keyid:91:2D:C6:0D:D7:64:29:82:BC:AE:7F:81:FE:3C:4C:12:72:80:22:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/079c5420-4ba8-41e7-b985-8db0c2886192.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/YtvdNIMmh2ulZ1PLmbRkzEVTJLM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2620:108:7000::/44
Signature Algorithm: sha256WithRSAEncryption
3f:45:fa:d6:d4:af:96:50:8a:28:21:ef:61:f6:e5:ea:ba:62:
0f:42:77:db:0f:44:42:27:3d:c7:0a:a2:47:a0:8a:0f:1d:cb:
24:05:9e:1d:d1:a8:83:4a:1f:a4:81:6a:87:12:e7:cb:4c:9e:
0a:4c:e8:9a:18:ec:87:36:3a:23:d5:2e:08:e2:dd:7d:a8:57:
ae:44:46:ee:a2:99:03:55:0d:e6:5f:b4:ae:c3:f4:40:20:02:
ef:07:32:5c:d8:cb:f6:e3:40:78:21:20:81:c8:77:96:ba:b4:
43:52:36:32:53:aa:22:73:77:a0:d9:f8:f4:fd:28:00:88:4c:
df:9a:84:7f:1c:0c:51:4f:f9:75:53:db:7b:b2:e3:01:d0:8a:
af:68:df:e5:11:de:37:2b:5d:01:86:14:58:f7:01:c8:70:15:
0f:33:3b:ed:c5:00:94:1a:8a:6d:e7:49:09:5a:ca:f2:79:40:
2a:39:a2:ef:b5:79:2f:82:d1:43:e1:6e:3f:a9:47:54:3e:4c:
10:5a:cb:15:18:2b:e1:c4:3f:37:7f:8d:d4:0b:66:f9:a5:a1:
38:68:a8:ac:bd:c8:12:51:ad:eb:9e:86:ed:bc:bf:ef:b9:10:
c8:d8:d5:f5:05:ac:06:e0:d3:96:f8:e4:e5:fd:9b:dc:f0:b9:
f8:0a:c0:0a
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Wed Dec 25 02:31:25 2024 by rpki-client on console.sobornost.net