Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/2348292e-c1b9-4dca-bded-bc35976bd82e.roa
File: 2348292e-c1b9-4dca-bded-bc35976bd82e.roa (raw, json)
Hash identifier: 7RVM82j39Xl0zZZkb9w7cxG37QymnQo9wAluX+UhHtk=
Subject key identifier: 7D:49:FA:0E:5C:7A:5A:0E:56:A7:2F:B2:E7:A4:FE:CC:52:07:82:A7
Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce
Certificate serial: 3627DBAF08BEFE58F891441C2845C80AEA462B82
Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/2348292e-c1b9-4dca-bded-bc35976bd82e.roa
Signing time: Mon 09 Dec 2024 00:00:00 +0000
ROA not before: Mon 09 Dec 2024 00:00:00 +0000
ROA not after: Mon 13 Jan 2025 23:59:59 +0000
asID: 16509
IP address blocks: 205.251.192.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
36:27:db:af:08:be:fe:58:f8:91:44:1c:28:45:c8:0a:ea:46:2b:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce
Validity
Not Before: Dec 9 00:00:00 2024 GMT
Not After : Jan 13 23:59:59 2025 GMT
Subject: serialNumber=3e8ca53adb6ab9ac02d714f48621073eb64b97f13375271229f0eac6c65f90ce, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:12:ed:da:8f:0d:42:b1:f1:fc:aa:ba:d9:4b:
56:a4:04:47:6e:cd:07:49:00:3d:5f:0b:c3:4f:35:
0f:73:48:1b:fe:a6:44:2b:d6:0d:de:22:ff:4a:d5:
cc:b2:1f:9a:33:df:ac:fd:07:04:5f:ca:5c:99:6c:
e3:cf:3e:9d:a2:26:f6:d2:62:d3:ba:1b:f5:1b:c3:
f7:79:af:20:02:79:b6:cb:c2:05:ef:d6:e4:43:df:
b9:ce:66:a4:af:7a:a4:0c:9c:56:fd:d4:0a:a9:73:
e8:ec:47:7e:f9:61:10:61:af:24:ce:aa:85:5b:ad:
ea:79:53:b8:ad:5e:95:ad:71:b0:cc:7d:d3:7d:a0:
4c:12:da:a2:ad:a8:b0:7d:36:db:88:e9:59:14:92:
e2:ee:6e:88:4d:43:c0:e9:b8:f8:27:73:cf:8d:58:
4d:52:ff:c0:ad:42:ad:69:9b:08:4c:8a:68:13:fa:
74:ea:9e:f9:90:25:ed:06:eb:40:5a:50:f5:5e:e4:
38:4e:02:44:2d:08:05:83:73:6c:32:99:ce:79:7a:
47:ff:35:1d:07:2b:f5:0b:5f:f5:9d:88:ad:cf:46:
e5:1b:15:2d:59:78:c4:e7:0d:b3:19:ab:b3:30:f5:
a2:b1:cf:a9:5b:86:4f:b9:37:7b:1c:fe:61:53:20:
31:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:49:FA:0E:5C:7A:5A:0E:56:A7:2F:B2:E7:A4:FE:CC:52:07:82:A7
X509v3 Authority Key Identifier:
keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/2348292e-c1b9-4dca-bded-bc35976bd82e.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
205.251.192.0/21
Signature Algorithm: sha256WithRSAEncryption
9c:39:70:4b:d5:9d:57:df:3c:8a:f1:b6:ff:d1:c6:a5:66:fe:
1d:8c:1f:15:44:4b:9d:75:54:b3:24:b1:5d:f7:e1:8d:5e:d3:
df:ad:4d:c6:71:80:62:be:6d:96:87:1a:67:86:10:0b:f0:dd:
44:00:0f:81:ac:92:df:42:cf:55:20:a2:b0:9d:f2:33:cc:d8:
8e:3b:92:f2:b9:60:76:fd:01:dc:a7:28:53:7f:df:69:9e:70:
fb:f2:96:91:f0:e0:a2:dd:ec:71:53:48:0c:2f:e6:28:4b:e3:
44:28:07:b8:1a:c8:ab:96:a0:cd:6c:f9:76:bf:db:23:28:0a:
43:6e:b5:c0:cd:04:5a:41:92:3f:83:49:ee:d5:71:96:ca:78:
33:f3:f9:d1:7e:ea:6a:ad:f9:11:31:55:fd:0c:83:d7:e7:8c:
26:32:06:0e:9f:09:bf:e0:83:52:fa:8c:a1:a1:c0:40:dc:1e:
48:0f:97:0a:71:02:ab:97:58:0a:fb:5c:7d:37:07:90:fb:d8:
8a:72:ea:75:d3:fd:ff:e6:93:f3:a4:c6:7b:ce:53:07:de:10:
d7:7a:dd:ad:d3:bf:a4:43:42:e4:29:f9:4b:f9:d1:65:37:a8:
a5:03:24:42:c6:9b:ca:43:46:46:a8:a7:39:58:1e:b0:2e:c2:
bb:b9:00:e7
-----BEGIN CERTIFICATE-----
MIIF+DCCBOCgAwIBAgIUNifbrwi+/lj4kUQcKEXICupGK4IwDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2
NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjQxMjA5MDAwMDAwWhcNMjUwMTEzMjM1OTU5
WjB6MUkwRwYDVQQFE0AzZThjYTUzYWRiNmFiOWFjMDJkNzE0ZjQ4NjIxMDczZWI2
NGI5N2YxMzM3NTI3MTIyOWYwZWFjNmM2NWY5MGNlMS0wKwYDVQQDEyQ5ZjIzMGZh
OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQC8Eu3ajw1CsfH8qrrZS1akBEduzQdJAD1fC8NPNQ9zSBv+
pkQr1g3eIv9K1cyyH5oz36z9BwRfylyZbOPPPp2iJvbSYtO6G/Ubw/d5ryACebbL
wgXv1uRD37nOZqSveqQMnFb91Aqpc+jsR375YRBhryTOqoVbrep5U7itXpWtcbDM
fdN9oEwS2qKtqLB9NtuI6VkUkuLubohNQ8DpuPgnc8+NWE1S/8CtQq1pmwhMimgT
+nTqnvmQJe0G60BaUPVe5DhOAkQtCAWDc2wymc55ekf/NR0HK/ULX/WdiK3PRuUb
FS1ZeMTnDbMZq7Mw9aKxz6lbhk+5N3sc/mFTIDHzAgMBAAGjggKxMIICrTAdBgNV
HQ4EFgQUfUn6Dlx6Wg5Wpy+y56T+zFIHgqcwHwYDVR0jBBgwFoAU6PPFIOIO8l06
t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y
OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm
MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4
MmI2ZTYwNTA1LzIzNDgyOTJlLWMxYjktNGRjYS1iZGVkLWJjMzU5NzZiZDgyZS5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4
LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBAPN+8AwDQYJKoZIhvcNAQELBQADggEBAJw5cEvVnVffPIrxtv/RxqVm/h2M
HxVES511VLMksV334Y1e09+tTcZxgGK+bZaHGmeGEAvw3UQAD4Gskt9Cz1UgorCd
8jPM2I47kvK5YHb9AdynKFN/32mecPvylpHw4KLd7HFTSAwv5ihL40QoB7gayKuW
oM1s+Xa/2yMoCkNutcDNBFpBkj+DSe7VcZbKeDPz+dF+6mqt+RExVf0Mg9fnjCYy
Bg6fCb/gg1L6jKGhwEDcHkgPlwpxAquXWAr7XH03B5D72Ipy6nXT/f/mk/OkxnvO
UwfeENd63a3Tv6RDQuQp+Uv50WU3qKUDJELGm8pDRkaopzlYHrAuwru5AOc=
-----END CERTIFICATE-----
Generated at Wed Dec 25 02:31:26 2024 by rpki-client on console.sobornost.net