Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/34cd5230-00c7-4f63-aeea-2b9bd6b1b1c5.roa
File: 34cd5230-00c7-4f63-aeea-2b9bd6b1b1c5.roa (raw, json)
Hash identifier: XSm4bqVjKnitlWJ9jG2Jc4IlIujpIyMul+0+Rcif14o=
Subject key identifier: 32:1B:50:6C:6A:16:6C:30:D8:B3:26:06:51:BD:EA:CD:D5:DA:B3:CB
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 396A85FE8E36A92DA0371459E8920751B2ED2852
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/34cd5230-00c7-4f63-aeea-2b9bd6b1b1c5.roa
Signing time: Sun 13 Oct 2024 00:00:00 +0000
ROA not before: Sun 13 Oct 2024 00:00:00 +0000
ROA not after: Sun 17 Nov 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
39:6a:85:fe:8e:36:a9:2d:a0:37:14:59:e8:92:07:51:b2:ed:28:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Oct 13 00:00:00 2024 GMT
Not After : Nov 17 23:59:59 2024 GMT
Subject: CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:b0:84:15:34:9f:12:cd:70:9c:26:7b:03:38:
bb:1c:3f:77:0f:17:c3:2b:9d:7a:4a:b1:6a:fe:3f:
fd:2a:57:a5:7f:9f:fe:19:aa:c5:ee:60:9e:c1:84:
de:e3:9c:05:e9:63:e8:62:a9:06:f7:71:83:b7:da:
15:2c:6f:a3:3c:96:08:ed:08:29:43:5f:6a:35:a9:
b4:71:67:c0:17:00:5b:84:5d:b4:0a:4a:43:b1:da:
b1:95:f5:87:f2:e7:11:6e:d7:4f:f5:d4:1d:84:bf:
f6:a9:ce:2c:6d:b8:74:98:40:68:c0:e1:a9:98:cc:
f7:2f:e8:1a:94:58:4e:52:ff:9a:5a:ed:a7:77:8e:
45:15:92:83:73:fd:27:81:aa:4f:b9:b9:4c:2e:90:
b4:e6:ce:f4:bf:d4:c6:fc:a0:1d:0e:19:b3:e0:f3:
3c:4e:28:ee:95:27:db:93:b6:48:b1:e6:c8:5a:fa:
a9:16:04:4b:4b:28:f7:f5:58:39:96:a7:76:c9:24:
99:a5:1f:c9:7d:cd:a6:83:18:73:56:dc:bb:e8:0c:
bc:70:8c:c0:15:14:7c:05:46:4d:17:5c:b4:df:42:
d6:a8:2c:49:2b:c4:b7:ca:ef:bc:71:63:e5:83:67:
f2:5c:84:be:b5:d1:63:63:7d:d3:77:b4:35:15:f3:
c5:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:1B:50:6C:6A:16:6C:30:D8:B3:26:06:51:BD:EA:CD:D5:DA:B3:CB
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/34cd5230-00c7-4f63-aeea-2b9bd6b1b1c5.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
4c:ec:33:91:60:c8:1b:6e:e1:e3:1b:c0:06:af:c8:c3:f0:fd:
98:2a:ed:1c:ce:3c:da:04:d7:a6:d2:4a:35:8b:b0:f6:59:d9:
81:3e:93:8f:eb:e4:f7:5d:dc:21:f8:15:01:ce:3d:09:84:e7:
9e:94:97:f7:b7:04:8a:9e:b2:38:e7:0f:92:ad:a2:21:fc:e7:
75:d0:24:e4:0f:b3:77:3e:a8:1c:70:82:d3:c9:27:9f:af:03:
fc:6e:b5:cb:ab:e6:e8:4d:10:b5:d9:db:69:7b:03:f0:8c:c1:
06:d4:1c:37:0c:15:53:e2:3d:54:95:6c:64:de:dc:84:86:ad:
28:62:a7:cf:84:1c:32:1b:1e:6c:38:d1:03:3c:69:6e:92:5e:
f9:93:32:f3:bd:78:45:95:88:05:81:46:39:3e:3b:b5:08:64:
d2:dc:7e:ce:6d:0f:e6:73:4f:78:25:8b:4a:72:62:bf:f5:b3:
d2:9c:38:de:6b:f9:b6:3d:88:dd:43:fc:92:33:52:50:1c:c5:
de:4f:c4:7a:7f:8b:0f:73:ea:6c:3b:fd:19:3a:a2:1a:0b:12:
18:92:c2:e7:b2:c7:35:43:ea:b3:77:fb:03:ff:16:1f:7a:c3:
cc:60:e7:f9:d6:40:6b:5a:3c:32:96:d6:02:af:88:14:41:40:
8f:dd:2a:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 22:34:40 2025 by rpki-client