Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/0bb5e6f3-4c5d-4e29-956e-192cd81d7b60.roa
File: 0bb5e6f3-4c5d-4e29-956e-192cd81d7b60.roa (raw, json)
Hash identifier: 3oOZVWRl2s9Go26NfcyhAFLaY2psGMRhG5eQv6aT/Ro=
Subject key identifier: 09:27:20:57:3B:EA:48:F9:2C:4A:A8:77:E0:AB:3E:FE:6A:88:A7:71
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 42AD0D0930B4E2666F8303ACB62211BBF2644FC6
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/0bb5e6f3-4c5d-4e29-956e-192cd81d7b60.roa
Signing time: Fri 25 Aug 2023 00:00:00 +0000
ROA not before: Fri 25 Aug 2023 00:00:00 +0000
ROA not after: Fri 29 Sep 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
42:ad:0d:09:30:b4:e2:66:6f:83:03:ac:b6:22:11:bb:f2:64:4f:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Aug 25 00:00:00 2023 GMT
Not After : Sep 29 23:59:59 2023 GMT
Subject: CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:03:a7:12:36:9f:52:48:eb:dc:9c:91:2a:da:
20:72:b8:e9:a3:dc:b3:d8:dc:ba:17:8d:f9:b9:17:
67:38:35:9e:75:f8:37:dd:f1:4c:16:b0:2a:05:79:
20:e2:07:f7:bb:81:08:bb:99:c1:c9:8c:1a:01:d3:
1f:8d:45:fc:d2:55:f3:3d:ed:f5:9f:95:46:20:d6:
c9:7a:1f:f0:93:f0:47:d6:27:04:98:d1:51:4d:98:
a6:80:3f:43:97:56:6f:5b:26:56:34:16:22:fd:fc:
5e:50:21:95:1d:46:64:44:8c:7f:dd:92:9d:9b:35:
f6:e0:4f:db:3f:c0:7d:70:ff:a7:79:d2:5c:bf:b0:
ca:d7:3b:87:3e:37:07:a2:45:07:8e:52:bf:13:59:
30:4b:6a:5b:87:ad:dd:d4:41:7b:bc:92:5c:04:0b:
bb:51:8f:14:0f:31:8b:34:9d:ef:6b:d2:08:60:e3:
5f:f4:7b:1e:a7:73:dc:89:8f:d3:18:f5:e7:b7:29:
5b:90:ad:0f:77:97:74:3d:e5:ca:a9:a6:4b:46:b8:
94:e1:40:87:10:7a:4d:ac:57:cd:f4:5a:d9:fa:a7:
e1:49:04:46:c2:a9:f1:76:a1:89:0d:ee:01:ae:8a:
e4:52:d5:8d:6c:1e:aa:ef:53:e2:d8:5d:81:4c:89:
b1:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:27:20:57:3B:EA:48:F9:2C:4A:A8:77:E0:AB:3E:FE:6A:88:A7:71
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/0bb5e6f3-4c5d-4e29-956e-192cd81d7b60.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
95:01:90:f0:19:80:79:81:a7:aa:f6:4b:8b:4e:45:f9:44:5a:
ab:7e:ad:52:1d:eb:dd:58:30:b5:41:50:1c:42:20:eb:52:02:
df:31:32:9b:40:f8:0f:0d:91:a7:7b:c4:7d:5f:22:c3:ca:a3:
87:82:37:bf:fe:c1:6b:64:8e:68:c7:52:8a:95:1b:89:32:73:
4d:d5:61:e8:56:33:d3:8a:2a:76:c1:03:90:d5:01:da:7e:ac:
5b:d9:8f:44:44:e5:ba:78:db:b4:7f:72:1e:02:22:f2:10:16:
eb:8a:ef:21:88:e3:05:b0:a7:da:ee:42:3a:0e:98:4a:2e:d4:
24:6c:24:3b:aa:97:a3:db:d6:02:d9:a5:c2:dd:67:55:e9:82:
d6:78:22:33:f4:c8:93:4f:47:ff:76:fb:46:c3:01:c2:95:94:
e7:8b:c6:a4:82:08:44:d4:14:3f:37:92:02:8a:d7:9a:6c:35:
b7:44:f3:57:7c:3d:1c:f2:e9:3e:c8:b2:12:c8:d1:a6:a8:35:
bd:9d:e9:c6:f5:9d:0f:81:53:a2:43:be:ff:03:7b:09:17:ba:
21:92:ba:7e:52:d8:14:00:ff:59:99:7a:6d:83:1c:4c:2f:f9:
13:ee:96:47:66:e9:2e:56:d9:a3:5f:66:37:35:d4:73:7d:74:
09:62:45:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 04:54:20 2025 by rpki-client