Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/0356e9e4-d743-4b1d-8b2a-8e60a25c336f.roa
File: 0356e9e4-d743-4b1d-8b2a-8e60a25c336f.roa (raw, json)
Hash identifier: aRvd++mI9lJ6vXnmpzBAuoPwWDYrGKQjuGHqWQvSY0g=
Subject key identifier: 35:4B:8D:32:F5:85:08:80:38:87:1E:81:0C:2E:3F:97:64:52:FD:98
Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce
Certificate serial: 38F84566776B12680DF8FABF3015B7DBF4EE4438
Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/0356e9e4-d743-4b1d-8b2a-8e60a25c336f.roa
Signing time: Tue 15 Apr 2025 00:40:49 +0000
ROA not before: Tue 15 Apr 2025 00:40:49 +0000
ROA not after: Tue 20 May 2025 23:59:59 +0000
asID: 8987
IP address blocks: 205.251.236.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
38:f8:45:66:77:6b:12:68:0d:f8:fa:bf:30:15:b7:db:f4:ee:44:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce
Validity
Not Before: Apr 15 00:40:49 2025 GMT
Not After : May 20 23:59:59 2025 GMT
Subject: serialNumber=2e7ce479ce51d92a7ce3acbc4ae00fde2105b0fdad0eb1527e62526189f1da57, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:85:13:b7:d3:98:ad:48:fb:94:10:ba:81:a1:
1b:fa:71:80:82:c0:f0:67:71:bb:df:f4:0d:0b:8b:
f9:91:49:28:7d:21:e7:70:78:5a:05:84:d4:a6:1e:
25:b6:fa:f0:c9:35:c9:8b:17:1a:ef:48:22:a3:b8:
f6:d3:5d:2e:68:61:fa:60:e8:52:95:38:43:1c:2c:
11:4f:80:7c:2a:0f:53:26:96:8e:88:f9:8a:ef:bc:
45:26:97:ad:e9:ed:7a:07:76:03:6f:06:c4:50:61:
71:49:9b:11:cf:f8:fd:75:38:1e:9e:db:6c:72:2f:
8e:29:a6:a3:e1:ee:de:87:54:6e:71:8f:03:42:8f:
15:11:01:10:a9:12:26:1d:2b:05:88:41:bf:57:ca:
0e:b8:46:4f:24:16:61:1e:28:88:25:a7:9d:3c:27:
99:7a:25:b0:f3:bd:46:54:68:b3:09:67:33:e6:c1:
d4:94:d8:16:65:b6:eb:9d:8f:8e:10:5d:3d:67:e3:
a6:33:f6:4b:31:58:17:87:5e:e1:be:c9:47:8c:76:
a7:ce:d0:1c:18:63:83:b3:37:5b:9a:a5:e3:25:57:
a8:b4:c4:a7:5f:1d:28:95:cc:2b:d7:09:88:9a:49:
1f:3f:12:e0:60:e6:4a:9b:e3:2b:0b:01:9d:5a:dd:
6d:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:4B:8D:32:F5:85:08:80:38:87:1E:81:0C:2E:3F:97:64:52:FD:98
X509v3 Authority Key Identifier:
keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/0356e9e4-d743-4b1d-8b2a-8e60a25c336f.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
205.251.236.0/22
Signature Algorithm: sha256WithRSAEncryption
8c:f2:bf:86:4a:70:a5:06:68:0d:84:84:d8:05:4e:3b:c7:30:
99:5e:e1:22:b8:24:3e:16:b9:8d:3d:27:bb:e3:2e:3e:44:56:
22:ee:cb:e7:d1:e1:ca:41:f1:e3:09:93:9a:c4:c5:c5:a8:5b:
1b:13:54:c0:98:87:45:d8:3d:be:db:ef:9c:1f:8f:e7:30:2d:
99:68:ee:e1:89:89:64:db:0e:34:20:aa:17:3e:17:dd:dc:81:
f7:a2:6e:fb:37:3b:d0:65:b1:48:2e:15:6e:a6:61:b7:d5:3d:
33:31:52:26:5f:de:99:45:f1:9d:57:50:f8:d1:77:4f:8d:de:
2e:0e:da:00:9a:fb:fc:08:65:b0:af:66:3b:77:b2:36:c6:ee:
49:11:0c:e9:7d:52:a9:50:19:ff:07:ef:21:6a:df:ef:48:0b:
e1:45:bb:c6:07:82:82:75:40:06:a7:68:f7:bd:31:70:57:59:
ba:41:d4:6f:6d:2e:88:81:83:48:b4:3c:84:54:a5:7f:35:61:
fd:a9:e4:df:32:04:d0:b0:4e:bc:44:05:95:f0:e4:31:37:17:
6c:cc:1f:f6:a6:06:23:9a:47:b8:be:ca:1e:7c:d9:99:84:33:
1d:2f:d8:96:8d:f3:2a:26:2c:7b:6e:9e:dc:8d:ba:f6:ac:12:
89:2e:87:c5
-----BEGIN CERTIFICATE-----
MIIF+DCCBOCgAwIBAgIUOPhFZndrEmgN+Pq/MBW32/TuRDgwDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2
NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUwNDE1MDA0MDQ5WhcNMjUwNTIwMjM1OTU5
WjB6MUkwRwYDVQQFE0AyZTdjZTQ3OWNlNTFkOTJhN2NlM2FjYmM0YWUwMGZkZTIx
MDViMGZkYWQwZWIxNTI3ZTYyNTI2MTg5ZjFkYTU3MS0wKwYDVQQDEyQ5ZjIzMGZh
OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQCxhRO305itSPuUELqBoRv6cYCCwPBncbvf9A0Li/mRSSh9
IedweFoFhNSmHiW2+vDJNcmLFxrvSCKjuPbTXS5oYfpg6FKVOEMcLBFPgHwqD1Mm
lo6I+YrvvEUml63p7XoHdgNvBsRQYXFJmxHP+P11OB6e22xyL44ppqPh7t6HVG5x
jwNCjxURARCpEiYdKwWIQb9Xyg64Rk8kFmEeKIglp508J5l6JbDzvUZUaLMJZzPm
wdSU2BZltuudj44QXT1n46Yz9ksxWBeHXuG+yUeMdqfO0BwYY4OzN1uapeMlV6i0
xKdfHSiVzCvXCYiaSR8/EuBg5kqb4ysLAZ1a3W05AgMBAAGjggKxMIICrTAdBgNV
HQ4EFgQUNUuNMvWFCIA4hx6BDC4/l2RS/ZgwHwYDVR0jBBgwFoAU6PPFIOIO8l06
t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y
OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm
MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4
MmI2ZTYwNTA1LzAzNTZlOWU0LWQ3NDMtNGIxZC04YjJhLThlNjBhMjVjMzM2Zi5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4
LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBALN++wwDQYJKoZIhvcNAQELBQADggEBAIzyv4ZKcKUGaA2EhNgFTjvHMJle
4SK4JD4WuY09J7vjLj5EViLuy+fR4cpB8eMJk5rExcWoWxsTVMCYh0XYPb7b75wf
j+cwLZlo7uGJiWTbDjQgqhc+F93cgfeibvs3O9BlsUguFW6mYbfVPTMxUiZf3plF
8Z1XUPjRd0+N3i4O2gCa+/wIZbCvZjt3sjbG7kkRDOl9UqlQGf8H7yFq3+9IC+FF
u8YHgoJ1QAanaPe9MXBXWbpB1G9tLoiBg0i0PIRUpX81Yf2p5N8yBNCwTrxEBZXw
5DE3F2zMH/amBiOaR7i+yh582ZmEMx0v2JaN8yomLHtuntyNuvasEokuh8U=
-----END CERTIFICATE-----
Generated at Tue Apr 15 22:26:49 2025 by rpki-client on console.sobornost.net