Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/294e3fe5-b8de-43af-b270-f8fedba3b477.roa
File: 294e3fe5-b8de-43af-b270-f8fedba3b477.roa (raw, json)
Hash identifier: ezErb9VPvsCcuzk8xvBpK7guYxqxlp/R3HivYhSikMc=
Subject key identifier: 0E:BA:34:A0:E7:43:54:2D:16:7D:85:33:B7:E0:A0:82:BF:33:4E:D0
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 0CCAA0288D795C16B298FC7878D9EAA0E57AE520
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/294e3fe5-b8de-43af-b270-f8fedba3b477.roa
Signing time: Sat 22 Feb 2025 07:43:19 +0000
ROA not before: Sat 22 Feb 2025 07:43:19 +0000
ROA not after: Sat 29 Mar 2025 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0c:ca:a0:28:8d:79:5c:16:b2:98:fc:78:78:d9:ea:a0:e5:7a:e5:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Feb 22 07:43:19 2025 GMT
Not After : Mar 29 23:59:59 2025 GMT
Subject: CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:15:bb:06:01:35:1f:47:df:3a:06:2e:1d:79:
1f:03:41:09:c8:19:68:a7:59:03:02:5f:4c:18:44:
ab:0f:93:23:b1:b4:9a:2d:aa:99:29:1c:50:5b:20:
17:a1:68:63:35:8b:6e:06:6b:72:7c:a2:c8:4c:b7:
a8:ea:67:9d:24:c7:f4:1b:52:0f:ef:5a:34:44:70:
9d:b0:f5:d2:4e:55:7f:e9:9f:23:11:d9:86:a0:6e:
59:a5:f8:5a:86:c0:67:19:2e:b8:fc:8c:ef:da:fa:
08:64:d9:98:44:b0:67:c2:a4:f1:1c:61:c4:22:d8:
98:19:69:45:2c:75:b2:ae:89:19:a3:4d:86:5a:c0:
41:43:67:5a:5a:33:8b:7b:72:e3:e7:07:43:d7:b2:
cd:93:b5:84:da:e4:25:5b:23:d5:0d:61:33:72:fe:
cf:df:e5:dd:0a:c2:08:5b:da:ef:87:c6:5c:3f:13:
d6:76:36:6d:2b:15:84:06:f3:c0:2c:9b:af:21:6c:
12:1a:d7:5a:0d:bb:fc:e2:06:99:24:63:96:a9:7a:
ad:ab:e4:3c:34:59:21:11:58:5a:30:aa:77:91:2a:
7e:8c:97:20:3b:c1:d8:a5:c4:b3:5e:f3:f6:2e:0a:
d5:f6:64:2f:fe:1b:c0:c1:3c:68:27:49:09:29:01:
ee:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:BA:34:A0:E7:43:54:2D:16:7D:85:33:B7:E0:A0:82:BF:33:4E:D0
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/294e3fe5-b8de-43af-b270-f8fedba3b477.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
08:92:fb:c7:d3:09:04:b7:fe:3d:22:ea:f8:5e:5b:cb:f2:50:
89:29:51:2e:99:8d:b8:f0:b7:36:46:6a:05:95:52:33:26:48:
c3:5d:62:c8:94:12:cf:df:d0:9a:b2:d2:31:c6:64:24:4f:d0:
65:23:d9:9a:0b:70:72:f3:b0:cd:6c:bc:de:cc:34:df:7c:fa:
24:34:e2:ca:bc:51:f0:e7:43:29:8a:4e:40:4f:c7:dd:62:89:
a9:62:04:a9:3c:50:e6:51:c1:21:7d:41:40:6d:61:77:0b:c4:
ce:f3:b2:0b:a2:22:83:b7:50:00:16:25:f2:5c:a6:1b:f6:0d:
dd:f7:50:98:16:7c:7b:07:e4:22:91:2b:f9:39:bd:7c:d2:62:
f5:3b:04:3c:69:f5:7e:c3:33:f4:48:00:f7:80:35:db:80:ca:
63:30:1b:62:88:4f:ab:46:fa:d7:d4:8a:8b:c5:c2:1e:b5:f6:
25:b3:f4:21:68:75:b0:41:8f:34:e3:ca:76:57:72:cb:f0:97:
db:4a:fd:f8:81:48:15:b4:02:97:ef:34:49:e5:68:8d:77:96:
b2:2a:db:b6:c7:f8:ae:b9:ce:d5:c7:5e:72:18:07:8d:c4:97:
20:71:e9:e4:b6:02:fd:0c:9a:49:0d:84:76:e3:c1:25:0e:ba:
3c:d2:1b:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 08:39:11 2025 by rpki-client