Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/1b10e13a-77fc-4e79-a415-dca73695b60a.roa
File: 1b10e13a-77fc-4e79-a415-dca73695b60a.roa (raw, json)
Hash identifier: +89mtWW4L87ErtkzfWlBPvxz9mGrfS7KK+JsEkolh80=
Subject key identifier: 41:AF:95:99:4A:06:D5:D8:5E:F7:17:8F:42:6C:62:F3:79:56:5C:9D
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 5D0AE3E550A0FF3F7EB379DD099BEF5FADFD1060
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/1b10e13a-77fc-4e79-a415-dca73695b60a.roa
Signing time: Wed 18 Oct 2023 00:00:00 +0000
ROA not before: Wed 18 Oct 2023 00:00:00 +0000
ROA not after: Wed 22 Nov 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5d:0a:e3:e5:50:a0:ff:3f:7e:b3:79:dd:09:9b:ef:5f:ad:fd:10:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Oct 18 00:00:00 2023 GMT
Not After : Nov 22 23:59:59 2023 GMT
Subject: CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:eb:d2:97:3e:2d:55:d6:71:69:78:56:b3:25:
48:8f:a9:61:ea:1f:43:40:c0:73:0c:39:4e:72:c5:
ee:91:e0:ab:73:86:a5:1d:f2:ef:73:aa:3c:67:c7:
c0:bc:c4:59:8c:4c:88:16:95:3d:bc:2a:65:68:3c:
2c:18:b7:a1:bc:87:01:59:3e:c2:f1:ba:98:69:77:
6c:3f:a3:89:44:af:5c:7d:7b:33:93:70:1b:19:1f:
8d:69:25:ff:61:ad:ec:c9:e7:ac:8d:15:08:64:aa:
59:5f:bb:3e:2d:fd:97:41:75:c4:6a:e2:a6:a4:4c:
e3:d0:e1:8f:18:16:b3:3f:54:f6:2d:f8:6d:f8:2a:
f6:92:92:a7:c3:9c:6a:ba:5b:bb:e1:9a:77:05:13:
83:e4:9f:97:4c:88:3e:e6:be:02:02:79:e4:43:75:
da:96:12:d8:11:e1:04:f8:c1:f2:ca:d4:28:c1:24:
18:64:fe:c1:c1:6d:36:4a:02:04:ba:f2:bd:24:2b:
fc:e5:b7:13:bd:06:02:66:cf:06:68:a8:d0:5c:04:
7e:d4:25:bc:af:e4:d6:a9:d4:78:7a:bc:72:7c:61:
e2:d2:74:f2:d2:f6:f5:15:30:ad:1c:44:6a:f2:df:
8e:8a:33:ec:15:b9:98:8e:0e:10:88:cc:e0:8c:b6:
f2:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:AF:95:99:4A:06:D5:D8:5E:F7:17:8F:42:6C:62:F3:79:56:5C:9D
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/1b10e13a-77fc-4e79-a415-dca73695b60a.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
6c:f4:d2:d9:88:cd:fa:ea:d7:6f:bc:be:f3:0f:2a:19:e9:d2:
6d:06:86:4a:47:3d:b2:fb:15:33:2b:de:2b:eb:b9:4c:0c:a6:
30:39:17:4a:23:02:26:dc:7e:14:5d:ef:6f:d8:00:c1:5b:38:
02:69:b6:9c:b2:6d:f1:4b:50:1e:7f:71:65:0b:91:b8:21:ee:
e1:4b:08:04:04:ff:4f:f4:0d:fa:f2:66:5c:e4:eb:b3:5a:76:
c7:db:f4:81:40:64:fe:6b:b9:6a:56:c0:58:7d:68:60:37:64:
05:ff:14:fa:66:16:67:01:30:0d:63:50:b9:61:3f:24:e8:50:
eb:ef:79:06:c7:a8:64:9a:eb:70:d8:85:89:98:1f:11:ea:e8:
d8:7e:e8:db:bb:5d:65:68:8c:81:c1:9b:66:53:39:93:f2:51:
b8:18:1a:49:7f:66:bb:cf:98:cd:a2:d9:c9:8a:9c:b8:e6:43:
60:75:68:67:f4:fb:1c:0a:90:95:5e:82:11:7d:b1:1e:94:cf:
86:6d:10:9d:22:c8:ae:ef:2a:d9:25:55:d0:41:94:39:ad:c1:
ea:48:79:f7:4a:9e:96:7f:e5:5a:af:54:19:4a:13:4a:a1:be:
8a:a4:10:95:3a:9d:2d:e9:2f:17:95:c2:52:a5:90:fe:54:ed:
a8:66:2b:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 15:42:29 2025 by rpki-client