Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/67a4e3f2-46be-4e1b-9070-1a8c069df9c9.roa
File: 67a4e3f2-46be-4e1b-9070-1a8c069df9c9.roa (raw, json)
Hash identifier: nk5JQi1JsTxEKlsaxe+CIXggdOPTDnF/Nz2UniAFoJY=
Subject key identifier: 74:35:40:AD:56:70:A5:23:09:A1:A5:96:27:ED:25:E5:F2:53:97:AF
Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce
Certificate serial: 09EA081B3285C58A20B8CF6AEF0EF02A256B06A1
Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/67a4e3f2-46be-4e1b-9070-1a8c069df9c9.roa
Signing time: Mon 31 Mar 2025 16:11:32 +0000
ROA not before: Mon 31 Mar 2025 16:11:32 +0000
ROA not after: Mon 05 May 2025 23:59:59 +0000
asID: 14618
IP address blocks: 2600:9000:5201::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
09:ea:08:1b:32:85:c5:8a:20:b8:cf:6a:ef:0e:f0:2a:25:6b:06:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce
Validity
Not Before: Mar 31 16:11:32 2025 GMT
Not After : May 5 23:59:59 2025 GMT
Subject: serialNumber=c4100f24a6f8b2c3242b1afef856ffd3365a1e7458e002987070cb44f03fd12a, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:c8:c8:5d:b4:04:fc:86:d6:c0:21:f5:cd:64:
e9:0b:17:b9:01:87:eb:a8:56:ee:68:cf:96:b8:be:
c7:ae:04:67:f9:c7:04:aa:2f:eb:3b:10:a7:1b:9c:
5c:01:50:db:ba:9e:ce:59:72:65:00:2f:ee:e6:5f:
3c:d1:a3:d7:f4:7a:dd:c3:bd:3a:37:c9:8e:86:49:
07:df:42:4e:09:88:90:53:dd:ff:ac:5f:4c:41:b2:
ee:8d:fd:f9:1a:a9:6e:e9:4d:f2:00:b9:e3:1d:8a:
06:52:00:b9:ec:ea:b4:e5:48:f6:d0:24:1f:f4:2b:
b7:b0:d1:7c:4c:5f:e0:0e:bd:08:50:f9:e8:27:bd:
ef:1c:4d:75:86:71:4b:d1:cf:84:e5:b5:ab:b8:f1:
54:ae:6a:b2:f9:a2:c9:fc:7d:93:d0:f2:df:a2:d9:
96:d1:8a:54:4c:31:e6:f4:2d:28:37:2f:ca:d8:a4:
89:d2:a9:e8:ef:e6:9f:d6:5a:70:93:6b:56:a1:34:
0d:bb:06:c7:47:20:34:92:00:63:cd:51:c5:d3:9e:
65:12:3b:c3:90:2e:1d:47:23:4a:cf:20:1f:3c:33:
65:22:e9:26:93:dc:f0:f1:05:a4:62:2e:a5:7c:e7:
42:e3:a1:05:a0:0e:0f:5b:70:d4:49:d3:b1:34:3e:
4a:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:35:40:AD:56:70:A5:23:09:A1:A5:96:27:ED:25:E5:F2:53:97:AF
X509v3 Authority Key Identifier:
keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/67a4e3f2-46be-4e1b-9070-1a8c069df9c9.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2600:9000:5201::/48
Signature Algorithm: sha256WithRSAEncryption
7f:4e:01:2f:15:c1:67:c0:0c:e7:66:bf:95:52:28:40:fc:44:
14:a4:34:54:de:da:0a:ad:59:75:b1:51:2f:a1:34:dc:56:f9:
1d:f7:4d:aa:6c:4f:a4:d8:5b:c8:c0:d3:d0:3e:f5:63:be:83:
bc:d0:7e:47:46:ff:8c:81:13:2c:50:17:24:01:e8:fa:96:70:
d3:36:a2:87:85:26:01:03:8a:89:5b:8c:ab:72:c7:d1:4f:6c:
6f:45:17:d9:41:f8:2f:7f:f0:47:76:f7:ea:62:5e:55:07:09:
a8:87:21:fb:5f:fe:76:c2:c0:b7:db:7d:95:29:5e:e5:8b:dd:
31:33:10:36:33:4e:3f:65:67:9b:cf:9b:93:a7:93:dc:f3:a2:
6e:57:5e:df:c4:2a:78:58:1e:6e:4a:1d:39:e4:96:d4:cc:d2:
d0:93:a8:a4:c6:84:ef:50:2a:b1:5f:3b:8d:78:10:c5:ee:b7:
5d:19:b7:6d:35:d7:57:a9:bb:fb:e7:21:e2:08:4d:30:38:85:
dd:c9:1e:bd:07:66:ce:30:ad:1a:40:e2:f0:58:14:3a:f9:dc:
73:7e:ca:7a:ec:10:ea:58:ed:77:44:90:3e:b0:08:ce:5a:21:
6b:6e:0f:6f:51:b3:f1:b3:67:ba:c0:95:e6:92:2a:8c:fa:c3:
08:80:8b:f3
-----BEGIN CERTIFICATE-----
MIIF+zCCBOOgAwIBAgIUCeoIGzKFxYoguM9q7w7wKiVrBqEwDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2
NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUwMzMxMTYxMTMyWhcNMjUwNTA1MjM1OTU5
WjB6MUkwRwYDVQQFE0BjNDEwMGYyNGE2ZjhiMmMzMjQyYjFhZmVmODU2ZmZkMzM2
NWExZTc0NThlMDAyOTg3MDcwY2I0NGYwM2ZkMTJhMS0wKwYDVQQDEyQ5ZjIzMGZh
OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQCWyMhdtAT8htbAIfXNZOkLF7kBh+uoVu5oz5a4vseuBGf5
xwSqL+s7EKcbnFwBUNu6ns5ZcmUAL+7mXzzRo9f0et3DvTo3yY6GSQffQk4JiJBT
3f+sX0xBsu6N/fkaqW7pTfIAueMdigZSALns6rTlSPbQJB/0K7ew0XxMX+AOvQhQ
+egnve8cTXWGcUvRz4Tltau48VSuarL5osn8fZPQ8t+i2ZbRilRMMeb0LSg3L8rY
pInSqejv5p/WWnCTa1ahNA27BsdHIDSSAGPNUcXTnmUSO8OQLh1HI0rPIB88M2Ui
6SaT3PDxBaRiLqV850LjoQWgDg9bcNRJ07E0Pkp/AgMBAAGjggK0MIICsDAdBgNV
HQ4EFgQUdDVArVZwpSMJoaWWJ+0l5fJTl68wHwYDVR0jBBgwFoAU6PPFIOIO8l06
t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y
OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm
MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4
MmI2ZTYwNTA1LzY3YTRlM2YyLTQ2YmUtNGUxYi05MDcwLTFhOGMwNjlkZjljOS5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4
LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC
MAkDBwAmAJAAUgEwDQYJKoZIhvcNAQELBQADggEBAH9OAS8VwWfADOdmv5VSKED8
RBSkNFTe2gqtWXWxUS+hNNxW+R33TapsT6TYW8jA09A+9WO+g7zQfkdG/4yBEyxQ
FyQB6PqWcNM2ooeFJgEDiolbjKtyx9FPbG9FF9lB+C9/8Ed29+piXlUHCaiHIftf
/nbCwLfbfZUpXuWL3TEzEDYzTj9lZ5vPm5Onk9zzom5XXt/EKnhYHm5KHTnkltTM
0tCTqKTGhO9QKrFfO414EMXut10Zt20111epu/vnIeIITTA4hd3JHr0HZs4wrRpA
4vBYFDr53HN+ynrsEOpY7XdEkD6wCM5aIWtuD29Rs/GzZ7rAleaSKoz6wwiAi/M=
-----END CERTIFICATE-----
Generated at Tue Apr 15 22:26:49 2025 by rpki-client on console.sobornost.net