Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/10060b5a-b286-4524-a49e-71090054dfad.roa
File: 10060b5a-b286-4524-a49e-71090054dfad.roa (raw, json)
Hash identifier: EMpVZH8hBBZa76NlKVjb11EAKTEeVHwMdGPjRkUVAtE=
Subject key identifier: 52:23:23:25:B8:9E:47:42:67:99:88:A7:48:F0:75:37:14:D5:45:82
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 2B4820174F5318DCFBADF4442574D7F716F4AB92
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/10060b5a-b286-4524-a49e-71090054dfad.roa
Signing time: Thu 03 Oct 2024 00:00:00 +0000
ROA not before: Thu 03 Oct 2024 00:00:00 +0000
ROA not after: Thu 07 Nov 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2b:48:20:17:4f:53:18:dc:fb:ad:f4:44:25:74:d7:f7:16:f4:ab:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Oct 3 00:00:00 2024 GMT
Not After : Nov 7 23:59:59 2024 GMT
Subject: CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:5f:b3:39:34:16:bd:68:83:99:52:29:b7:eb:
b2:31:ae:cf:62:1a:f8:b0:44:64:27:35:b3:cd:b9:
69:04:36:36:fe:7a:2a:6e:5f:4b:c8:02:fc:4d:e3:
1e:c5:b4:11:f8:63:15:ae:66:08:06:7d:2c:f5:92:
d0:56:8b:a7:ed:fb:38:26:06:d2:22:53:ee:5b:d7:
24:df:01:2f:3d:28:4b:99:11:35:44:a7:cc:f7:65:
34:fb:36:17:78:59:66:3a:7f:0e:20:df:b4:69:d1:
34:0e:9a:8c:66:7b:26:81:8a:4c:0e:01:64:25:6f:
07:15:f0:b3:61:83:9e:0f:c9:20:25:98:bc:74:ef:
20:79:b2:44:23:09:24:61:90:ee:f7:ce:e4:fb:4f:
cd:34:db:95:9b:4f:c4:05:c4:f5:81:02:eb:42:e9:
2c:a5:52:a7:41:f5:5a:7f:47:e6:b2:b5:53:68:af:
0e:08:57:57:b5:b5:01:eb:3b:17:60:93:e8:d8:7f:
25:b5:16:b4:f7:6e:7a:68:76:ea:dc:94:ca:cd:e0:
62:d9:7b:f1:87:32:b4:36:d0:96:d1:75:85:60:f7:
e0:6c:da:04:ba:24:d8:d4:4b:39:6e:f9:8f:6c:46:
37:f8:79:06:f9:ba:c5:e6:94:55:b1:d4:da:81:b9:
22:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:23:23:25:B8:9E:47:42:67:99:88:A7:48:F0:75:37:14:D5:45:82
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/10060b5a-b286-4524-a49e-71090054dfad.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
ac:33:62:d0:0b:2f:31:86:21:f4:c4:6d:90:bc:65:c4:d0:2e:
d4:03:c1:b7:db:ab:a5:77:8d:b2:bb:ec:e3:29:cf:87:0a:9a:
08:d9:fc:fa:be:31:af:ab:6d:74:05:8c:4f:aa:73:ef:b8:87:
23:9c:58:1b:06:b1:92:b5:1a:d8:31:2a:b3:55:d2:ac:61:fa:
3c:01:01:12:e5:b7:02:fa:1d:50:64:15:46:5a:26:69:bb:16:
06:03:92:f3:31:52:34:09:ed:b5:52:12:53:2e:6d:41:85:79:
57:ff:6e:87:cf:34:e4:d1:ba:f4:63:42:b5:77:85:d9:0b:db:
0a:5a:6a:69:63:65:ca:d4:7b:02:cc:20:21:7d:32:f7:82:f4:
99:09:22:49:21:d8:47:58:09:81:5f:84:20:cf:d2:3b:90:b7:
c5:84:ab:76:6f:c6:a1:ab:c3:5d:75:11:88:05:1d:70:03:25:
6e:47:b7:e4:c7:9c:c1:8a:1b:0e:54:42:3b:54:66:39:ef:86:
1e:59:01:b5:76:4b:09:d8:39:ff:f4:6e:12:cc:c0:48:26:26:
a9:a8:f8:30:6e:e1:94:ab:f1:4f:e2:5b:88:02:24:a0:47:40:
eb:fb:35:30:70:5b:59:27:a8:c7:82:56:8d:3c:6c:35:a1:98:
a0:df:62:6a
-----BEGIN CERTIFICATE-----
MIIF+DCCBOCgAwIBAgIUK0ggF09TGNz7rfREJXTX9xb0q5IwDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyMjc4YWFiODc4ZjI2NjJjZTE0ZTkwNWUxOGViY2I3NTIy
ZjkyYjM2ODRiYzQ4NjViNGQwHhcNMjQxMDAzMDAwMDAwWhcNMjQxMTA3MjM1OTU5
WjB6MUkwRwYDVQQFE0BkNGE3ODJiN2NlYWZkMjA5YjNjMWZkMzlmN2FlYWNjYTlh
YTNhZDAxZWZlYjcxZWE3YTU0ZmNmZDRiNzliMDY3MS0wKwYDVQQDEyRjMGNlMjNl
YS00M2ZjLTRiZTQtYmVlZS1jMDE0NzgxMjJhMGUwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQCyX7M5NBa9aIOZUim367Ixrs9iGviwRGQnNbPNuWkENjb+
eipuX0vIAvxN4x7FtBH4YxWuZggGfSz1ktBWi6ft+zgmBtIiU+5b1yTfAS89KEuZ
ETVEp8z3ZTT7Nhd4WWY6fw4g37Rp0TQOmoxmeyaBikwOAWQlbwcV8LNhg54PySAl
mLx07yB5skQjCSRhkO73zuT7T80025WbT8QFxPWBAutC6SylUqdB9Vp/R+aytVNo
rw4IV1e1tQHrOxdgk+jYfyW1FrT3bnpodurclMrN4GLZe/GHMrQ20JbRdYVg9+Bs
2gS6JNjUSzlu+Y9sRjf4eQb5usXmlFWx1NqBuSKRAgMBAAGjggKxMIICrTAdBgNV
HQ4EFgQUUiMjJbieR0JnmYinSPB1NxTVRYIwHwYDVR0jBBgwFoAUVajdRdlEE/nR
kvUsY86M+8YUlrgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy8xNDMzZWJmZi1k
ZmQ2LTRjNWMtYjdmZi05OWM4NTEzOWQ0YTgvMjc4YWFiODc4ZjI2NjJjZTE0ZTkw
NWUxOGViY2I3NTIyZjkyYjM2ODRiYzQ4NjViNGQuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvMTZmMWZmZWUtNzQ2MS00Njc0LWJiMDUtZmRk
ZWZhOWEwMmM2LzEwMDYwYjVhLWIyODYtNDUyNC1hNDllLTcxMDkwMDU0ZGZhZC5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzE2ZjFmZmVlLTc0NjEtNDY3NC1iYjA1
LWZkZGVmYTlhMDJjNi9KbUxPRk9rRjRZNjh0MUl2a3JOb1M4U0dXMDAuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBADHJHgwDQYJKoZIhvcNAQELBQADggEBAKwzYtALLzGGIfTEbZC8ZcTQLtQD
wbfbq6V3jbK77OMpz4cKmgjZ/Pq+Ma+rbXQFjE+qc++4hyOcWBsGsZK1GtgxKrNV
0qxh+jwBARLltwL6HVBkFUZaJmm7FgYDkvMxUjQJ7bVSElMubUGFeVf/bofPNOTR
uvRjQrV3hdkL2wpaamljZcrUewLMICF9MveC9JkJIkkh2EdYCYFfhCDP0juQt8WE
q3ZvxqGrw111EYgFHXADJW5Ht+THnMGKGw5UQjtUZjnvhh5ZAbV2SwnYOf/0bhLM
wEgmJqmo+DBu4ZSr8U/iW4gCJKBHQOv7NTBwW1knqMeCVo08bDWhmKDfYmo=
-----END CERTIFICATE-----
Generated at Wed Apr 9 16:46:03 2025 by rpki-client