Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/1274c48c-bc97-48b2-9788-337a1a86405c.roa
File: 1274c48c-bc97-48b2-9788-337a1a86405c.roa (raw, json)
Hash identifier: /iaDsGj6KLu7rGRIIB00DkyQ83kij01Y60N6d9NEPEg=
Subject key identifier: FF:ED:96:59:16:E9:03:6A:9E:A6:D3:87:E6:30:9B:4C:48:F9:3C:9E
Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c
Certificate serial: 4E096FB3835E6263FC85EC9CB6D03DF1E1E6E9F6
Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/1274c48c-bc97-48b2-9788-337a1a86405c.roa
Signing time: Mon 31 Mar 2025 18:40:16 +0000
ROA not before: Mon 31 Mar 2025 18:40:16 +0000
ROA not after: Mon 05 May 2025 23:59:59 +0000
asID: 16509
IP address blocks: 35.96.60.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4e:09:6f:b3:83:5e:62:63:fc:85:ec:9c:b6:d0:3d:f1:e1:e6:e9:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c
Validity
Not Before: Mar 31 18:40:16 2025 GMT
Not After : May 5 23:59:59 2025 GMT
Subject: serialNumber=b5b84ebe4399a459d21dbee269d5eabc03b457e8fc497eaf5855448ac0e109ef, CN=8cd8442f-235f-4171-84e6-8e1007a64c60
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:82:5e:83:26:0a:99:8d:3f:a2:54:d9:eb:9b:
dc:d9:6a:4f:26:17:4c:22:19:4c:58:74:b0:e2:ff:
16:19:da:c9:d5:67:66:71:37:77:4d:59:4f:e0:f9:
2a:ed:7e:86:6c:69:a0:0c:8c:59:d0:e8:49:e7:c9:
8d:72:01:e1:fc:34:e7:85:7d:99:93:a2:f7:c8:f1:
be:0c:df:e6:66:f7:e1:49:01:96:6a:83:23:3a:11:
1b:71:08:0f:70:38:fa:74:e1:5c:95:75:a3:7d:f7:
3a:73:73:e4:43:e0:a1:b7:8a:6a:e1:36:39:96:b3:
88:8b:aa:e3:78:54:73:6c:ee:48:7a:77:d9:c0:aa:
b8:8f:da:1a:1b:6a:ca:33:d7:f2:8f:8e:30:05:20:
be:ec:b4:0e:d6:00:79:54:83:ca:dc:d2:aa:3a:05:
c2:2a:b0:32:55:d4:92:a9:fa:dd:cc:c2:94:9a:b6:
86:9a:3f:c5:21:b2:44:bf:ca:1c:a8:62:ff:3b:6d:
14:a5:d4:0c:e1:b0:29:e3:c2:c2:5b:80:b0:06:81:
c3:af:9d:ab:df:f5:81:e8:79:b4:84:0c:91:e8:de:
d2:e4:61:55:b9:c1:2d:2d:a7:58:c7:8f:ef:8d:88:
a2:a9:b0:54:ba:a9:b7:2e:99:1f:37:05:62:35:ed:
8c:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:ED:96:59:16:E9:03:6A:9E:A6:D3:87:E6:30:9B:4C:48:F9:3C:9E
X509v3 Authority Key Identifier:
keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/1274c48c-bc97-48b2-9788-337a1a86405c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
35.96.60.0/22
Signature Algorithm: sha256WithRSAEncryption
4c:2b:7a:56:79:2e:fe:86:d9:ba:31:eb:fa:68:31:bf:ab:da:
16:e8:2f:4e:18:a3:15:5e:00:ef:f7:af:84:7b:d6:d3:ff:fb:
5a:c2:73:9e:0a:12:f1:b6:b7:98:98:99:ce:43:44:09:98:c9:
f3:50:1b:72:cd:a3:d5:33:ad:b8:52:21:a5:20:74:f3:9d:fa:
36:bd:ff:76:ef:7c:c6:63:14:55:f9:a5:d0:ba:f0:b2:2a:1c:
c8:02:b2:f0:6a:c4:b8:97:0f:04:1f:46:91:9a:97:be:f7:ab:
88:5c:b1:d8:32:b7:70:50:35:43:5e:60:d5:d5:b2:9c:f9:50:
83:24:6c:1e:d4:d9:a1:bd:6b:ac:c4:0d:06:e6:36:0b:43:95:
42:91:c2:e0:ca:d3:6a:82:bf:19:31:7e:df:44:a1:7b:19:b9:
ab:61:ef:e2:3f:bc:87:83:4e:a0:8b:40:f4:ec:0a:c0:f2:c1:
f2:50:43:08:1d:a9:b2:a5:e1:d8:54:70:02:21:c8:ca:fb:32:
1d:70:97:b5:e1:bc:55:e7:ee:25:8a:67:6b:d0:77:e1:66:a0:
31:5b:15:38:01:fc:0b:81:9b:c3:1e:02:eb:00:4b:69:b6:bb:
6e:3e:7a:9f:00:65:17:56:eb:79:77:0d:c4:b1:7b:c7:e0:02:
d3:cb:ab:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 15 19:19:36 2025 by rpki-client on console.sobornost.net