Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/14f54e7a-88ec-4ef9-be48-c69b4181d898.roa
File: 14f54e7a-88ec-4ef9-be48-c69b4181d898.roa (raw, json)
Hash identifier: LLKATBseeu4LopGrx76VK98IY2eA1JZ3W80NVj4AcD8=
Subject key identifier: F9:B6:97:B5:EF:2F:F0:5F:3E:88:E8:79:69:F5:F6:CA:79:9A:B3:29
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 63FC9D88D63490FA2D4779E99E9B63E1EED4B3FE
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/14f54e7a-88ec-4ef9-be48-c69b4181d898.roa
Signing time: Wed 29 May 2024 00:00:00 +0000
ROA not before: Wed 29 May 2024 00:00:00 +0000
ROA not after: Wed 03 Jul 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
63:fc:9d:88:d6:34:90:fa:2d:47:79:e9:9e:9b:63:e1:ee:d4:b3:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: May 29 00:00:00 2024 GMT
Not After : Jul 3 23:59:59 2024 GMT
Subject: CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:4d:35:dd:bb:62:4d:fb:aa:7e:87:ee:0a:e3:
21:ea:c0:95:ac:f3:c7:6b:e1:3d:46:00:69:80:86:
3b:f1:e8:e0:bc:1c:89:7f:9a:67:3d:66:8f:cd:8f:
e3:79:dd:d0:a4:5c:e5:e4:90:36:7f:57:ef:84:29:
dc:68:0e:7d:2c:06:71:f1:ef:f9:eb:61:4c:7c:78:
96:21:6c:88:4b:35:cd:16:c0:62:e1:15:f4:fb:2c:
56:aa:6a:7a:73:a4:08:26:d6:f3:c8:42:76:29:33:
a1:4b:6e:61:2c:4e:ba:ce:d5:d9:66:d5:5b:f0:9b:
0c:d0:cc:a0:c3:4d:dd:bb:c7:8e:10:49:1f:30:90:
97:0f:a4:d4:b6:26:cb:e7:76:64:cb:c6:d7:88:7c:
48:50:c3:ce:78:22:55:3e:06:42:c5:f2:ce:4a:77:
3d:13:f3:e6:05:68:e8:1f:81:b0:56:65:b0:ba:21:
9c:0e:15:77:d6:b5:55:b5:4b:b0:6e:50:c1:59:3e:
82:a9:96:15:4c:ba:a7:cb:67:f5:d4:d2:14:54:b2:
fb:74:4d:16:00:39:38:75:49:c3:b8:49:c9:3b:cd:
90:2f:c5:f0:99:f2:84:a0:56:30:0e:00:ca:ce:f0:
e4:c4:f3:45:7d:c7:44:b8:1e:0c:1a:18:18:c4:df:
50:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:B6:97:B5:EF:2F:F0:5F:3E:88:E8:79:69:F5:F6:CA:79:9A:B3:29
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/14f54e7a-88ec-4ef9-be48-c69b4181d898.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
66:96:33:9d:4a:75:f4:80:fc:64:1c:7b:04:37:91:a1:4b:e4:
de:eb:3c:46:05:b3:65:d5:e7:58:4f:8f:a5:07:42:ef:8f:0c:
d1:7e:93:c1:6b:d8:a8:cc:5f:a9:57:d0:1a:ad:af:46:db:f7:
3f:a3:7a:4e:3c:f5:17:37:ae:b8:b9:6c:92:ad:26:1e:0c:1d:
38:0c:93:0b:73:20:ec:4f:36:19:28:f8:a4:a5:f0:77:c0:a1:
4c:ea:72:90:54:d5:48:16:fd:8d:e8:4f:39:c6:6a:bf:4f:a0:
52:3c:5b:0f:d7:00:55:0a:d0:74:e5:9d:09:bd:16:33:d9:7d:
ea:06:e1:0c:79:b6:0e:e7:3f:e7:1b:4d:8c:15:0b:0b:11:e6:
b1:77:ca:71:6f:f6:70:18:28:6e:c9:a8:0f:0b:3c:fa:9b:fd:
a5:d9:f0:dd:0e:9a:ae:78:a6:c4:3a:79:1b:95:d3:c9:ca:ad:
bd:77:9a:d2:0f:d4:0b:61:32:60:7f:09:46:f9:f7:4e:c1:62:
4b:48:9a:9f:61:01:1e:40:c5:7d:53:ec:a1:fd:8a:a1:06:92:
6a:99:7f:ff:14:be:df:e7:04:30:ad:04:a4:9f:b4:6e:14:79:
69:4e:c6:76:d7:d3:9a:b0:14:68:9d:59:ae:a1:ca:17:49:4d:
d4:fd:28:8b
-----BEGIN CERTIFICATE-----
MIIF+DCCBOCgAwIBAgIUY/ydiNY0kPotR3npnptj4e7Us/4wDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyMjc4YWFiODc4ZjI2NjJjZTE0ZTkwNWUxOGViY2I3NTIy
ZjkyYjM2ODRiYzQ4NjViNGQwHhcNMjQwNTI5MDAwMDAwWhcNMjQwNzAzMjM1OTU5
WjB6MUkwRwYDVQQFE0A3Zjg3ZjI2Y2MzMzQ5MWU0NzdjODZhNzM0NWU4OGY4OTZk
ZmEwYWQ5NTRhZjZjYjQwNDc0MTZkNzQ2N2M5Y2U1MS0wKwYDVQQDEyRjMGNlMjNl
YS00M2ZjLTRiZTQtYmVlZS1jMDE0NzgxMjJhMGUwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQC+TTXdu2JN+6p+h+4K4yHqwJWs88dr4T1GAGmAhjvx6OC8
HIl/mmc9Zo/Nj+N53dCkXOXkkDZ/V++EKdxoDn0sBnHx7/nrYUx8eJYhbIhLNc0W
wGLhFfT7LFaqanpzpAgm1vPIQnYpM6FLbmEsTrrO1dlm1VvwmwzQzKDDTd27x44Q
SR8wkJcPpNS2JsvndmTLxteIfEhQw854IlU+BkLF8s5Kdz0T8+YFaOgfgbBWZbC6
IZwOFXfWtVW1S7BuUMFZPoKplhVMuqfLZ/XU0hRUsvt0TRYAOTh1ScO4Sck7zZAv
xfCZ8oSgVjAOAMrO8OTE80V9x0S4HgwaGBjE31APAgMBAAGjggKxMIICrTAdBgNV
HQ4EFgQU+baXte8v8F8+iOh5afX2ynmasykwHwYDVR0jBBgwFoAUVajdRdlEE/nR
kvUsY86M+8YUlrgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy8xNDMzZWJmZi1k
ZmQ2LTRjNWMtYjdmZi05OWM4NTEzOWQ0YTgvMjc4YWFiODc4ZjI2NjJjZTE0ZTkw
NWUxOGViY2I3NTIyZjkyYjM2ODRiYzQ4NjViNGQuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvMTZmMWZmZWUtNzQ2MS00Njc0LWJiMDUtZmRk
ZWZhOWEwMmM2LzE0ZjU0ZTdhLTg4ZWMtNGVmOS1iZTQ4LWM2OWI0MTgxZDg5OC5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzE2ZjFmZmVlLTc0NjEtNDY3NC1iYjA1
LWZkZGVmYTlhMDJjNi9KbUxPRk9rRjRZNjh0MUl2a3JOb1M4U0dXMDAuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBADHJHgwDQYJKoZIhvcNAQELBQADggEBAGaWM51KdfSA/GQcewQ3kaFL5N7r
PEYFs2XV51hPj6UHQu+PDNF+k8Fr2KjMX6lX0Bqtr0bb9z+jek489Rc3rri5bJKt
Jh4MHTgMkwtzIOxPNhko+KSl8HfAoUzqcpBU1UgW/Y3oTznGar9PoFI8Ww/XAFUK
0HTlnQm9FjPZfeoG4Qx5tg7nP+cbTYwVCwsR5rF3ynFv9nAYKG7JqA8LPPqb/aXZ
8N0Omq54psQ6eRuV08nKrb13mtIP1AthMmB/CUb5907BYktImp9hAR5AxX1T7KH9
iqEGkmqZf/8Uvt/nBDCtBKSftG4UeWlOxnbX05qwFGidWa6hyhdJTdT9KIs=
-----END CERTIFICATE-----
Generated at Sat Apr 5 22:33:51 2025 by rpki-client