Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/13042ae0-94df-4e10-8477-0a20998b5776.roa
File: 13042ae0-94df-4e10-8477-0a20998b5776.roa (raw, json)
Hash identifier: YR12MhkQ4Eq0HsEb1mXrcTvRWp0qmUWFuIVjDKumQ3s=
Subject key identifier: 00:9E:49:EF:86:E4:30:1E:9A:17:C1:55:12:80:47:67:D8:C8:03:81
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 147BB5A29CB7A302433013A2C26CDB8AD9F6BA4A
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/13042ae0-94df-4e10-8477-0a20998b5776.roa
Signing time: Mon 03 Jul 2023 00:00:00 +0000
ROA not before: Mon 03 Jul 2023 00:00:00 +0000
ROA not after: Mon 07 Aug 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
14:7b:b5:a2:9c:b7:a3:02:43:30:13:a2:c2:6c:db:8a:d9:f6:ba:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Jul 3 00:00:00 2023 GMT
Not After : Aug 7 23:59:59 2023 GMT
Subject: CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:ff:cf:8c:f8:76:76:ed:27:8b:c1:2d:02:ba:
d0:50:99:65:e9:47:c3:81:27:79:64:da:ca:05:7e:
0d:52:af:6f:7b:0f:a3:7e:6d:0f:14:a5:83:61:f1:
63:81:45:b4:8a:16:97:3b:e2:4f:b1:09:11:f4:c5:
cb:fd:02:73:c0:c3:4d:43:98:c3:54:b4:fd:c9:e1:
ac:a1:37:3b:ab:ae:9f:fb:4b:0f:3e:2d:ce:d8:f6:
43:4e:78:be:a1:8e:90:38:65:c3:fd:de:89:28:b0:
38:19:25:5f:ea:a1:c5:3d:f0:e8:d4:e7:76:60:de:
95:9c:66:5f:72:f0:41:a7:9a:59:7e:81:96:c1:c2:
db:51:47:b6:b5:0e:ce:b4:e8:db:e6:34:a6:bf:cc:
bd:d8:4e:e0:2e:01:1b:47:c3:ef:ca:18:3b:68:b1:
7a:64:01:17:8f:22:bc:b9:6a:1f:8c:a4:33:e7:58:
b1:dd:c3:62:07:67:d8:89:c4:0c:f2:da:b0:1f:93:
82:3e:83:62:09:16:ae:1f:c5:77:69:bf:34:15:5e:
98:e9:e2:ac:37:61:02:5d:b7:02:d8:13:7d:dc:83:
8c:22:ac:dc:7f:fa:68:e6:40:5e:de:ec:4b:15:02:
ef:9e:e9:aa:59:16:f9:7e:96:bf:4b:6d:39:ad:8e:
96:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:9E:49:EF:86:E4:30:1E:9A:17:C1:55:12:80:47:67:D8:C8:03:81
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/13042ae0-94df-4e10-8477-0a20998b5776.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
b2:ea:b1:05:65:3a:cf:59:40:94:21:73:c8:61:c1:4d:2d:e4:
8a:0c:d2:e5:33:e9:f7:8a:a6:73:2e:0e:1f:7b:33:ea:a8:cc:
fc:05:99:84:56:54:0a:49:d5:06:42:55:d6:51:17:f0:3f:59:
1f:e6:23:cf:c8:58:34:0c:ef:99:4b:3e:e8:4d:60:36:25:d3:
13:12:96:58:4b:5b:4a:34:d6:0a:be:5b:11:b1:ba:3e:97:fe:
02:7b:4d:f4:4e:3d:9a:75:c5:72:58:7e:91:75:64:e6:53:c2:
e1:f5:6c:83:c7:72:db:98:56:d8:5b:c4:97:6b:f8:83:9b:32:
5b:2f:e8:1d:89:45:27:a1:fc:91:cc:e8:cf:92:22:30:73:23:
26:e3:9c:cc:e9:ee:31:17:13:57:db:90:40:ff:9f:d4:93:ef:
ed:07:b5:4a:15:25:c2:83:01:70:9b:30:97:e2:4f:03:c7:ae:
a6:c4:21:c5:b2:df:5f:ec:c9:88:07:c4:70:2f:30:cc:ba:e6:
93:78:13:64:b0:bb:5a:a8:a6:d3:69:20:71:1c:39:ae:7b:52:
db:48:4b:ac:b5:a9:ae:a8:43:fa:0d:3d:c6:1d:b8:84:e0:e3:
73:98:a9:7f:b0:d5:fd:d8:f5:77:fa:9a:e0:0a:e3:b3:05:d8:
39:5f:0c:09
-----BEGIN CERTIFICATE-----
MIIF+DCCBOCgAwIBAgIUFHu1opy3owJDMBOiwmzbitn2ukowDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyMjc4YWFiODc4ZjI2NjJjZTE0ZTkwNWUxOGViY2I3NTIy
ZjkyYjM2ODRiYzQ4NjViNGQwHhcNMjMwNzAzMDAwMDAwWhcNMjMwODA3MjM1OTU5
WjB6MUkwRwYDVQQFE0AxNDEwZWQzZDdiMTBlODgwZmFkMTJkZjBmZTgwNDQyNjJh
ODhkODE4Zjc1M2E0MDQxNTNlZjAxMTU1NjA4NTg5MS0wKwYDVQQDEyRjMGNlMjNl
YS00M2ZjLTRiZTQtYmVlZS1jMDE0NzgxMjJhMGUwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQCt/8+M+HZ27SeLwS0CutBQmWXpR8OBJ3lk2soFfg1Sr297
D6N+bQ8UpYNh8WOBRbSKFpc74k+xCRH0xcv9AnPAw01DmMNUtP3J4ayhNzurrp/7
Sw8+Lc7Y9kNOeL6hjpA4ZcP93okosDgZJV/qocU98OjU53Zg3pWcZl9y8EGnmll+
gZbBwttRR7a1Ds606NvmNKa/zL3YTuAuARtHw+/KGDtosXpkARePIry5ah+MpDPn
WLHdw2IHZ9iJxAzy2rAfk4I+g2IJFq4fxXdpvzQVXpjp4qw3YQJdtwLYE33cg4wi
rNx/+mjmQF7e7EsVAu+e6apZFvl+lr9LbTmtjpZNAgMBAAGjggKxMIICrTAdBgNV
HQ4EFgQUAJ5J74bkMB6aF8FVEoBHZ9jIA4EwHwYDVR0jBBgwFoAUVajdRdlEE/nR
kvUsY86M+8YUlrgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy8xNDMzZWJmZi1k
ZmQ2LTRjNWMtYjdmZi05OWM4NTEzOWQ0YTgvMjc4YWFiODc4ZjI2NjJjZTE0ZTkw
NWUxOGViY2I3NTIyZjkyYjM2ODRiYzQ4NjViNGQuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvMTZmMWZmZWUtNzQ2MS00Njc0LWJiMDUtZmRk
ZWZhOWEwMmM2LzEzMDQyYWUwLTk0ZGYtNGUxMC04NDc3LTBhMjA5OThiNTc3Ni5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzE2ZjFmZmVlLTc0NjEtNDY3NC1iYjA1
LWZkZGVmYTlhMDJjNi9KbUxPRk9rRjRZNjh0MUl2a3JOb1M4U0dXMDAuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBADHJHgwDQYJKoZIhvcNAQELBQADggEBALLqsQVlOs9ZQJQhc8hhwU0t5IoM
0uUz6feKpnMuDh97M+qozPwFmYRWVApJ1QZCVdZRF/A/WR/mI8/IWDQM75lLPuhN
YDYl0xMSllhLW0o01gq+WxGxuj6X/gJ7TfROPZp1xXJYfpF1ZOZTwuH1bIPHctuY
VthbxJdr+IObMlsv6B2JRSeh/JHM6M+SIjBzIybjnMzp7jEXE1fbkED/n9ST7+0H
tUoVJcKDAXCbMJfiTwPHrqbEIcWy31/syYgHxHAvMMy65pN4E2Swu1qoptNpIHEc
Oa57UttIS6y1qa6oQ/oNPcYduITg43OYqX+w1f3Y9Xf6muAK47MF2DlfDAk=
-----END CERTIFICATE-----
Generated at Sun Apr 6 02:26:30 2025 by rpki-client