Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/20fdf0dc-f250-41d5-85b5-f9208ed850a1.roa
File: 20fdf0dc-f250-41d5-85b5-f9208ed850a1.roa (raw, json)
Hash identifier: TZA1v0hdPU3UZ2N5qF6UD6OH3UIDqRfglAedkc0u0jk=
Subject key identifier: 46:8A:CB:28:97:5F:0F:12:4B:3C:16:3E:57:F9:4A:44:2B:72:0C:96
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 539C788D2E19C612FBC64F4E1AD8289B7E6C6093
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/20fdf0dc-f250-41d5-85b5-f9208ed850a1.roa
Signing time: Mon 07 Aug 2023 00:00:00 +0000
ROA not before: Mon 07 Aug 2023 00:00:00 +0000
ROA not after: Mon 11 Sep 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
53:9c:78:8d:2e:19:c6:12:fb:c6:4f:4e:1a:d8:28:9b:7e:6c:60:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Aug 7 00:00:00 2023 GMT
Not After : Sep 11 23:59:59 2023 GMT
Subject: CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:9d:70:91:df:59:60:30:11:9c:a8:f6:06:c5:
a6:90:72:18:33:73:d9:62:67:be:98:27:38:0e:e3:
f9:e8:02:27:b6:25:4d:94:52:ca:2e:0a:2e:b2:f9:
45:ac:da:ec:f6:e4:15:3c:5a:8f:0e:1e:49:a7:39:
c9:d9:6a:b5:be:09:49:82:d6:89:90:9d:8e:e5:92:
69:98:86:a8:21:b8:04:08:1f:65:cf:b2:45:f1:ea:
d2:df:87:64:fa:cb:a8:3d:d1:3c:57:e6:88:4a:a9:
9e:7f:0a:6d:11:fb:3c:06:16:3a:c9:ad:99:6d:dd:
c8:3d:91:db:be:1e:0b:02:5d:5e:38:41:ec:75:b9:
20:18:3b:a9:1c:6b:69:12:33:72:9f:41:01:07:e1:
4d:40:40:1f:0c:2b:18:a8:e4:80:58:ff:6e:4f:88:
51:77:8b:a5:5a:1c:f4:73:16:8e:fa:b6:a6:ec:a5:
57:66:e7:00:5f:4c:b7:58:51:d9:7d:1b:91:05:7e:
ef:32:64:95:d0:ce:e1:84:3c:ad:a5:4e:bf:bb:72:
d4:1d:23:e5:8d:e7:17:89:70:25:5b:e2:8f:18:71:
05:4d:5e:30:d1:c3:ae:8f:f1:d7:9d:0c:09:83:3e:
74:c0:85:b1:9f:1f:45:a7:c9:c2:09:32:97:92:82:
a8:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:8A:CB:28:97:5F:0F:12:4B:3C:16:3E:57:F9:4A:44:2B:72:0C:96
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/20fdf0dc-f250-41d5-85b5-f9208ed850a1.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
87:41:ca:8a:3b:ea:49:d0:b1:f9:2a:3b:a9:3c:0d:0c:a0:e2:
51:bd:ac:89:42:c9:17:6c:57:d5:b5:b5:0d:66:00:6b:35:ae:
80:3d:6e:42:da:22:f5:4f:f0:7c:fe:09:a0:c0:38:3e:2e:95:
71:ff:c6:88:54:b9:35:70:ab:4a:5b:91:7b:95:6e:ed:46:a8:
98:11:85:13:0f:76:86:64:a0:a5:3c:e2:c2:31:99:b2:fb:07:
88:09:6b:d2:25:26:9a:c7:8c:0c:7e:2b:8b:6f:37:c6:81:3d:
cf:0b:75:69:e6:22:c3:bc:9a:91:c6:66:7f:dd:6e:76:a8:b9:
0e:2b:48:e9:61:d7:74:10:99:c7:35:66:a1:9c:9b:c9:07:4a:
48:6b:a4:72:e0:78:85:62:59:82:3f:80:d6:75:7e:f9:72:02:
e0:43:6b:24:f9:1c:18:66:2f:fd:d2:e8:6f:6e:bf:9d:06:a0:
11:1d:06:8d:b8:c8:8c:22:2b:01:40:6c:5a:1c:2c:13:19:97:
5e:02:7e:5d:70:be:18:48:40:2b:f5:b4:cc:42:30:38:05:d5:
04:8e:70:f9:38:1e:23:a6:72:c6:55:b3:31:88:46:9a:e9:ad:
35:ad:df:81:17:6a:2e:0b:4a:8f:ba:6c:c7:5d:01:90:e9:f0:
bc:07:df:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 18:26:28 2025 by rpki-client