Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/454eb499-7ff1-48bf-b6db-c1e6a6d99215.roa
File: 454eb499-7ff1-48bf-b6db-c1e6a6d99215.roa (raw, json)
Hash identifier: 4YgdpUPFawPybuPCy5+Mj4a5E5MxvbWz8CuAHg4kxgQ=
Subject key identifier: 8F:F5:44:42:0D:D0:60:3B:F3:C4:19:AE:C6:7F:50:BA:CA:DC:64:1C
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 67463723AFA1ED8D1F928FD0B7CAE8FF56E83086
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/454eb499-7ff1-48bf-b6db-c1e6a6d99215.roa
Signing time: Fri 30 Jun 2023 00:00:00 +0000
ROA not before: Fri 30 Jun 2023 00:00:00 +0000
ROA not after: Fri 04 Aug 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
67:46:37:23:af:a1:ed:8d:1f:92:8f:d0:b7:ca:e8:ff:56:e8:30:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Jun 30 00:00:00 2023 GMT
Not After : Aug 4 23:59:59 2023 GMT
Subject: CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:81:3e:d0:78:b3:73:17:46:45:dd:4e:bd:bc:
62:78:02:a0:ef:1b:01:39:64:fd:3b:20:9b:1b:91:
bc:25:9f:8d:fb:f7:13:dd:11:f4:95:80:f0:cb:05:
f7:80:f1:b0:1f:24:53:36:b1:06:a4:82:0e:46:e8:
a5:f2:b5:62:b8:3c:ad:6a:b0:7d:92:25:07:9a:2c:
8c:e2:1e:42:bc:70:3b:d5:66:33:0f:cc:3d:2a:ad:
ce:ac:01:2a:a1:aa:39:b7:06:de:d7:b0:38:7b:31:
f8:ef:a2:37:29:68:f6:68:8c:0e:5d:fe:82:6b:28:
c0:a1:2a:de:10:50:49:08:6b:4a:a9:f2:57:1f:5e:
22:2b:b7:5a:3b:71:27:1d:64:b6:79:38:6e:f4:4d:
66:b4:89:1d:e1:2d:5e:12:a2:85:d4:49:30:b3:c7:
fa:e2:d7:07:64:fc:a5:fe:b2:f6:c7:1f:73:87:9a:
0a:31:aa:f8:c6:dd:0b:a9:5b:1a:a6:49:b7:f1:1d:
c6:b5:e5:9f:f7:f1:7b:67:b3:d4:1a:e7:92:05:7d:
ca:c7:80:6b:d6:53:69:21:19:57:c2:b0:cf:9f:9a:
ea:c1:8f:96:4e:30:98:9d:b3:46:c7:08:8a:5a:dc:
3f:f6:59:7e:81:80:61:2a:09:0e:65:18:09:e2:07:
69:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:F5:44:42:0D:D0:60:3B:F3:C4:19:AE:C6:7F:50:BA:CA:DC:64:1C
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/454eb499-7ff1-48bf-b6db-c1e6a6d99215.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
29:7e:ed:ed:d3:be:62:66:12:7b:1a:82:da:ee:e4:48:3e:6d:
14:c8:db:b0:91:44:a3:26:8e:f9:fc:46:12:f2:2f:53:00:f3:
e3:38:f8:b7:2d:ca:23:55:cd:08:3c:2b:d5:c5:84:59:e7:e5:
0c:34:06:41:3c:30:7d:5d:45:39:15:7d:b0:1b:13:40:30:2c:
e5:ac:3c:c0:7d:cc:5a:d0:cb:df:7a:3e:80:f0:2b:75:a1:c5:
17:f1:81:3d:a4:82:52:b1:f5:a6:cd:f6:98:a7:9a:46:8a:84:
97:08:29:1f:7b:1f:98:55:ba:29:ad:27:a0:ca:e1:d5:8a:c7:
05:62:07:fc:31:3b:0d:7c:91:93:62:ec:4b:83:1a:8a:31:53:
1a:6a:18:a2:59:be:ce:41:dc:90:9b:c2:cf:44:19:70:67:6e:
4f:4e:c9:ee:65:06:bd:d1:d2:06:c6:ef:62:f6:fe:aa:72:bc:
12:6b:b3:08:b3:93:91:4e:e2:56:c3:4a:4d:34:52:cb:03:f9:
2c:7b:7c:11:dc:1d:0e:50:f3:d1:46:6d:aa:e6:b9:9b:af:12:
63:8f:0d:ac:90:bb:a5:3f:c7:36:45:ef:9f:04:21:02:6c:a5:
90:31:05:e7:6a:99:20:ea:e3:0d:af:b1:0a:be:7c:a9:aa:cc:
7c:cd:56:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 22:34:33 2025 by rpki-client