Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/4f65f107-391a-424f-9504-9102730e0555.roa
File: 4f65f107-391a-424f-9504-9102730e0555.roa (raw, json)
Hash identifier: q4wULBA4aLiNq7KNrbpmdm/7MD7y+jxDs3dNPXDda24=
Subject key identifier: 61:FA:59:D5:46:C6:0B:6E:8C:3F:9D:24:53:04:4C:BF:C8:A1:13:CA
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 56029571D27A8F98D6B639E67FDB330E27F722E7
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/4f65f107-391a-424f-9504-9102730e0555.roa
Signing time: Thu 06 Feb 2025 00:00:00 +0000
ROA not before: Thu 06 Feb 2025 00:00:00 +0000
ROA not after: Thu 13 Mar 2025 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
56:02:95:71:d2:7a:8f:98:d6:b6:39:e6:7f:db:33:0e:27:f7:22:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Feb 6 00:00:00 2025 GMT
Not After : Mar 13 23:59:59 2025 GMT
Subject: CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:bb:1d:44:23:ef:48:f1:e4:8f:a0:28:6c:2a:
fa:d1:32:2a:6a:ee:e9:ad:dc:9d:8a:1b:e0:62:a8:
f3:59:0d:ba:35:1f:3e:37:66:9b:65:7b:a1:4f:45:
c1:74:03:11:20:cd:8b:c1:79:ea:e2:7e:7e:ed:12:
29:5d:ae:60:f2:d6:91:c2:f8:3f:80:4e:56:3a:41:
05:f3:47:5e:70:b3:51:93:12:81:e5:a8:7a:7e:9b:
51:b0:da:1b:47:f3:cc:4f:d8:fc:74:43:07:ba:01:
59:47:1b:ab:8f:34:24:09:78:b0:4c:0c:79:4c:85:
0c:71:24:81:79:55:61:fb:e0:39:ea:35:cc:a1:63:
48:fe:74:ba:ef:c7:bb:88:ad:71:ff:d9:f2:b5:4a:
ca:09:ac:17:a5:2b:2c:f6:07:dd:30:8e:98:db:25:
f1:4f:c5:df:1d:8f:11:f3:e3:cc:dc:5c:4e:01:d7:
01:a8:34:51:ba:48:5d:12:7f:c9:02:73:95:32:a3:
2d:08:56:3e:a1:67:e3:66:8a:6b:3f:8f:47:8e:14:
41:b6:4f:97:b1:c3:76:33:e9:b1:6b:b4:bd:32:b3:
83:f9:13:44:a4:34:3a:1f:59:63:15:20:55:ad:34:
9b:15:3f:33:ac:d3:b7:a2:37:37:26:fe:50:70:45:
1d:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:FA:59:D5:46:C6:0B:6E:8C:3F:9D:24:53:04:4C:BF:C8:A1:13:CA
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/4f65f107-391a-424f-9504-9102730e0555.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
ae:17:1b:34:80:ea:6e:f2:25:61:74:64:49:67:c2:dc:c5:48:
b6:72:d9:28:59:f7:60:83:5c:81:54:0b:55:fc:62:34:d4:8b:
8c:78:94:5f:97:8c:4e:fb:4e:5d:34:dd:60:8f:bc:0e:89:68:
22:f6:da:8a:e8:4b:69:4c:19:c6:df:00:b9:fc:f8:c7:f8:53:
09:bc:91:be:62:83:93:79:a8:cd:06:b1:61:44:42:53:9b:31:
96:68:fc:02:90:f7:eb:0a:1b:4a:0d:ed:31:9a:73:cc:9f:e4:
19:eb:60:66:46:4e:f2:3e:c8:e5:09:66:60:1b:e8:67:a8:47:
a4:e4:10:6a:d4:45:2b:67:ba:c9:c0:c9:25:c9:d3:72:cc:ac:
22:0b:18:11:fc:f4:34:a8:66:cd:56:97:4d:35:8d:3d:7e:e9:
23:c7:ca:9d:15:53:71:96:b0:de:b0:33:bb:0a:0c:b1:ca:d7:
89:3b:e0:fd:11:fc:ca:24:48:24:c2:18:ac:94:79:5a:68:4b:
7d:86:d2:04:79:1b:06:2e:ee:f9:0c:4e:55:ba:0b:53:0e:49:
9a:68:b2:9f:c7:5a:a2:f1:ce:15:fa:7d:8c:b7:9f:93:07:35:
0b:c9:7a:3a:f8:65:73:92:67:82:c7:6a:cd:7a:5f:d4:1c:52:
c4:a8:53:4e
-----BEGIN CERTIFICATE-----
MIIF+DCCBOCgAwIBAgIUVgKVcdJ6j5jWtjnmf9szDif3IucwDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyMjc4YWFiODc4ZjI2NjJjZTE0ZTkwNWUxOGViY2I3NTIy
ZjkyYjM2ODRiYzQ4NjViNGQwHhcNMjUwMjA2MDAwMDAwWhcNMjUwMzEzMjM1OTU5
WjB6MUkwRwYDVQQFE0A2NDI0ODc3NmY0NzQ2ZTY1NDNhYjFmNWE5ZGU5YzdhZDk1
YTA1YzQwZGVlZmUwMzU3OTdjOTI2NDNjM2E5MWEzMS0wKwYDVQQDEyRjMGNlMjNl
YS00M2ZjLTRiZTQtYmVlZS1jMDE0NzgxMjJhMGUwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQCuux1EI+9I8eSPoChsKvrRMipq7umt3J2KG+BiqPNZDbo1
Hz43Zptle6FPRcF0AxEgzYvBeerifn7tEildrmDy1pHC+D+ATlY6QQXzR15ws1GT
EoHlqHp+m1Gw2htH88xP2Px0Qwe6AVlHG6uPNCQJeLBMDHlMhQxxJIF5VWH74Dnq
NcyhY0j+dLrvx7uIrXH/2fK1SsoJrBelKyz2B90wjpjbJfFPxd8djxHz48zcXE4B
1wGoNFG6SF0Sf8kCc5Uyoy0IVj6hZ+Nmims/j0eOFEG2T5exw3Yz6bFrtL0ys4P5
E0SkNDofWWMVIFWtNJsVPzOs07eiNzcm/lBwRR1ZAgMBAAGjggKxMIICrTAdBgNV
HQ4EFgQUYfpZ1UbGC26MP50kUwRMv8ihE8owHwYDVR0jBBgwFoAUVajdRdlEE/nR
kvUsY86M+8YUlrgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy8xNDMzZWJmZi1k
ZmQ2LTRjNWMtYjdmZi05OWM4NTEzOWQ0YTgvMjc4YWFiODc4ZjI2NjJjZTE0ZTkw
NWUxOGViY2I3NTIyZjkyYjM2ODRiYzQ4NjViNGQuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvMTZmMWZmZWUtNzQ2MS00Njc0LWJiMDUtZmRk
ZWZhOWEwMmM2LzRmNjVmMTA3LTM5MWEtNDI0Zi05NTA0LTkxMDI3MzBlMDU1NS5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzE2ZjFmZmVlLTc0NjEtNDY3NC1iYjA1
LWZkZGVmYTlhMDJjNi9KbUxPRk9rRjRZNjh0MUl2a3JOb1M4U0dXMDAuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBADHJHgwDQYJKoZIhvcNAQELBQADggEBAK4XGzSA6m7yJWF0ZElnwtzFSLZy
2ShZ92CDXIFUC1X8YjTUi4x4lF+XjE77Tl003WCPvA6JaCL22oroS2lMGcbfALn8
+Mf4Uwm8kb5ig5N5qM0GsWFEQlObMZZo/AKQ9+sKG0oN7TGac8yf5BnrYGZGTvI+
yOUJZmAb6GeoR6TkEGrURStnusnAySXJ03LMrCILGBH89DSoZs1Wl001jT1+6SPH
yp0VU3GWsN6wM7sKDLHK14k74P0R/MokSCTCGKyUeVpoS32G0gR5GwYu7vkMTlW6
C1MOSZposp/HWqLxzhX6fYy3n5MHNQvJejr4ZXOSZ4LHas16X9QcUsSoU04=
-----END CERTIFICATE-----
Generated at Sat Apr 5 16:20:13 2025 by rpki-client