Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/8f960b0d-c291-490f-aff5-abe964221bd2.roa
File: 8f960b0d-c291-490f-aff5-abe964221bd2.roa (raw, json)
Hash identifier: iURqbP9OCQlAo346tCeXbspn0iabjvwaMOOcby2KLQo=
Subject key identifier: 63:C4:E8:F4:56:BA:9A:C3:2F:B4:79:1D:0E:6F:70:BE:21:DC:98:6A
Certificate issuer: /CN=a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3
Certificate serial: 1EA1DE22DB6F194785733D5B8769A013DCA9CF5A
Authority key identifier: 91:2D:C6:0D:D7:64:29:82:BC:AE:7F:81:FE:3C:4C:12:72:80:22:1F
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/8f960b0d-c291-490f-aff5-abe964221bd2.roa
Signing time: Tue 15 Apr 2025 00:40:12 +0000
ROA not before: Tue 15 Apr 2025 00:40:12 +0000
ROA not after: Tue 20 May 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2620:108:7000::/44 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1e:a1:de:22:db:6f:19:47:85:73:3d:5b:87:69:a0:13:dc:a9:cf:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3
Validity
Not Before: Apr 15 00:40:12 2025 GMT
Not After : May 20 23:59:59 2025 GMT
Subject: serialNumber=555cd57e87de0248d82db829c621b8dd25fca478931e51d72ac995fe4d6e8260, CN=ddfbc97c-7bed-40df-95ca-e664b29d7b27
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:5c:e6:e6:f7:e7:57:fc:cb:4f:78:e4:13:b4:
46:db:39:52:03:a4:5f:a4:f6:26:9a:2d:a3:7d:6a:
cf:aa:b1:b9:be:52:2a:fe:cd:8a:81:3f:43:30:0e:
7a:42:18:07:1d:0f:d5:cc:e2:ba:ed:db:b3:a4:92:
06:eb:5a:31:1f:3d:f9:09:50:70:83:b7:cf:fb:ba:
ff:bb:de:9a:34:d2:95:21:88:4d:63:9c:f7:64:6f:
17:d9:e3:46:6a:d8:bc:9d:0f:64:d9:fe:c9:07:19:
ee:72:33:46:9e:fa:2a:a3:9b:cd:e9:a9:83:38:75:
a7:13:45:6b:28:3e:cf:c8:bb:06:94:f2:f7:de:b7:
b8:71:95:e2:5c:b7:dd:d4:b2:58:a1:15:93:8a:30:
c4:0a:3a:ec:eb:cb:56:2b:36:f5:ba:61:73:f6:ea:
02:90:d7:84:89:15:0e:1c:2c:99:71:64:79:a7:51:
27:19:8f:39:d8:95:29:94:17:ee:cd:b1:fa:41:71:
08:53:4e:9c:8e:1a:7a:fe:9e:8e:98:88:35:af:01:
97:ee:92:85:54:c9:f6:d3:1b:6a:00:66:4d:a1:38:
8c:d9:6b:26:11:c9:99:56:e3:7c:14:8c:06:c8:97:
98:96:07:9e:60:f9:ed:3e:ff:1d:af:e4:d2:bd:a1:
b0:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:C4:E8:F4:56:BA:9A:C3:2F:B4:79:1D:0E:6F:70:BE:21:DC:98:6A
X509v3 Authority Key Identifier:
keyid:91:2D:C6:0D:D7:64:29:82:BC:AE:7F:81:FE:3C:4C:12:72:80:22:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/8f960b0d-c291-490f-aff5-abe964221bd2.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/YtvdNIMmh2ulZ1PLmbRkzEVTJLM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2620:108:7000::/44
Signature Algorithm: sha256WithRSAEncryption
09:43:3f:50:34:c0:15:4c:2e:85:d7:1c:e3:1d:9f:79:5d:e8:
d5:b9:58:80:50:04:e0:45:22:9c:64:f7:61:f9:83:90:60:29:
f7:f3:3b:10:9a:1b:35:0b:6e:f3:ff:b5:55:f3:3a:67:ee:8c:
51:d6:86:52:c9:45:8a:1d:68:4b:6e:1b:3a:e4:e1:29:c2:03:
88:92:94:36:a6:0e:35:a0:64:c7:17:af:ed:52:d5:d3:f8:6d:
8c:0f:c0:d7:91:d2:72:fe:f3:b7:0a:f7:b4:fd:60:b6:78:f5:
17:90:e6:cf:60:d3:6a:d2:16:62:85:25:6d:f8:4d:72:45:e8:
39:aa:f6:0f:28:6e:92:f6:07:e8:25:a0:4f:c9:1a:4a:49:b5:
d0:19:2a:7a:53:1e:dc:65:82:84:c6:a5:5f:4e:75:ad:0d:be:
cb:85:25:d1:6b:33:fe:c8:ac:3f:91:29:cf:04:8e:2a:93:d6:
6b:ef:df:72:bd:4b:b5:cc:d4:86:11:37:ed:ea:d0:b3:06:2c:
b7:83:f4:7a:7c:3e:b0:49:f9:ab:94:1c:35:2b:30:3a:d0:e6:
70:f2:a7:2d:fe:49:79:13:49:27:73:e2:16:25:d1:b1:5b:c9:
f4:5f:c1:72:0a:3f:3a:0e:a9:8c:f1:1b:50:19:6b:0a:15:1a:
f1:65:0c:86
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Tue Apr 15 22:26:49 2025 by rpki-client on console.sobornost.net