Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/f9ddca88-0081-471f-b1cd-130e8578e6ec.roa
File: f9ddca88-0081-471f-b1cd-130e8578e6ec.roa (raw, json)
Hash identifier: f707c+wN6rIhZaq/3vp334BixUCIcBKE0JbfgylyFbI=
Subject key identifier: 60:56:B9:4D:A5:C1:E6:EB:30:2A:ED:53:F5:29:88:E1:47:E6:F4:EE
Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce
Certificate serial: 4794947EAEFD29EB1962118A19C8661F07D3243B
Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/f9ddca88-0081-471f-b1cd-130e8578e6ec.roa
Signing time: Tue 29 Oct 2024 00:00:00 +0000
ROA not before: Tue 29 Oct 2024 00:00:00 +0000
ROA not after: Tue 03 Dec 2024 23:59:59 +0000
asID: 16509
IP address blocks: 2600:9000:5209::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
47:94:94:7e:ae:fd:29:eb:19:62:11:8a:19:c8:66:1f:07:d3:24:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce
Validity
Not Before: Oct 29 00:00:00 2024 GMT
Not After : Dec 3 23:59:59 2024 GMT
Subject: serialNumber=b4d3d7e2389ae28366bc996211ff407c887d132b23a8a3408b90ccfa1ca22e9d, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:52:86:c0:99:0a:f0:e9:3d:f9:06:a5:e6:17:
37:64:f5:18:bd:94:72:1c:ed:e2:c2:5d:1a:68:f9:
aa:a2:c5:0d:b4:ec:c7:0d:85:35:9a:74:5d:bc:e2:
4f:27:6a:03:1d:50:47:a8:d5:9a:13:9d:94:88:03:
a0:29:60:b1:8e:62:a3:55:fc:b5:fc:88:24:9b:f5:
bf:a4:4c:9d:bc:42:83:1b:f4:f6:9e:2d:3f:f3:f8:
3a:ae:49:87:aa:81:ca:8a:04:e8:a0:36:84:15:c5:
4e:30:94:31:e0:30:15:68:58:33:ca:7b:31:e0:58:
3e:b6:d5:3e:dc:56:ae:27:ec:7d:4c:2e:e7:51:45:
ab:fd:19:13:5d:28:e0:5b:2c:73:87:73:5f:da:a7:
e5:bc:e0:f5:bd:3f:de:b9:57:11:25:e7:ee:0b:b6:
3c:10:12:13:ea:23:3b:c5:61:2e:da:24:ae:27:17:
e2:bb:a2:f3:9d:ab:1c:7d:23:9a:82:38:5e:15:45:
d7:1c:b1:d4:e9:7f:a0:68:86:f1:04:f5:fd:28:69:
b5:60:a6:d2:3e:92:85:40:00:61:86:36:82:0b:5d:
aa:d7:4a:14:3b:c2:e8:db:0a:9b:1a:c8:c4:51:53:
2a:41:a1:95:00:58:65:91:00:41:0a:a7:a3:2d:a2:
9b:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:56:B9:4D:A5:C1:E6:EB:30:2A:ED:53:F5:29:88:E1:47:E6:F4:EE
X509v3 Authority Key Identifier:
keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/f9ddca88-0081-471f-b1cd-130e8578e6ec.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2600:9000:5209::/48
Signature Algorithm: sha256WithRSAEncryption
2d:c5:18:3a:81:9d:34:3d:c0:c4:3f:d2:5b:8a:3c:b4:57:3b:
7a:04:8e:12:ef:73:d8:0d:b9:84:38:73:10:ae:ab:3a:ab:2c:
b3:bc:36:d4:41:58:77:4a:b4:c2:bf:fa:2d:4c:51:fb:8e:60:
7e:9d:21:a6:fb:ae:9f:41:54:c4:51:c7:96:fb:b9:f2:6e:39:
d2:7a:44:19:3b:c5:5e:a0:7d:b3:33:91:3e:63:c8:8c:9c:1f:
55:1c:59:99:cc:01:14:2a:c5:fe:d0:b6:95:a0:c2:3f:16:27:
8d:4c:85:a8:b6:64:d9:16:aa:9a:06:2b:ea:ce:76:a0:bf:1b:
b2:8c:b0:c9:31:7a:68:3d:08:88:8d:6a:cd:27:8c:e6:e9:43:
00:28:64:d8:fe:84:ef:1b:f3:ed:30:f9:03:fe:4e:25:3b:ce:
10:58:e8:07:8f:46:d6:d5:f0:d2:4a:a1:77:62:98:fd:cf:a6:
c7:58:c3:fa:70:36:21:2d:a9:37:2e:6b:ee:3b:2d:55:ce:57:
55:e0:9e:df:7e:15:fd:37:ae:50:97:77:39:f9:10:2e:5e:43:
06:fe:b6:76:bd:da:45:bb:ee:7a:39:44:1b:21:22:06:49:c7:
7e:15:b5:1a:9a:91:7d:07:19:fe:41:ba:36:ad:04:74:11:a3:
0f:39:49:bd
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Fri Nov 8 03:30:15 2024 by rpki-client on console.sobornost.net