Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/609f42d2-9147-414c-a1e5-20b55785f06a.roa
File: 609f42d2-9147-414c-a1e5-20b55785f06a.roa (raw, json)
Hash identifier: 937T/GOnP6dE1J8sX3KBdATMunESpjwbczRf9zoy208=
Subject key identifier: E8:41:24:89:DB:E5:A8:41:12:EE:32:D3:0D:AB:FD:45:07:96:05:12
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 057D2871D94B920351DBC1E7E687D221AE726D46
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/609f42d2-9147-414c-a1e5-20b55785f06a.roa
Signing time: Tue 28 Nov 2023 00:00:00 +0000
ROA not before: Tue 28 Nov 2023 00:00:00 +0000
ROA not after: Tue 02 Jan 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
05:7d:28:71:d9:4b:92:03:51:db:c1:e7:e6:87:d2:21:ae:72:6d:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Nov 28 00:00:00 2023 GMT
Not After : Jan 2 23:59:59 2024 GMT
Subject: CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:85:52:81:20:c4:f1:b9:1a:96:f2:ef:b3:e8:
53:d4:34:8c:0b:76:91:3e:94:8b:8d:31:d1:e3:ff:
e1:86:52:ba:d8:ac:a8:45:fd:bf:ef:30:f1:ef:c6:
42:fc:ba:5f:90:ce:a7:b0:11:6c:bd:79:4e:12:db:
86:d9:12:40:8d:8f:26:a8:23:79:aa:c7:f2:99:50:
37:f3:44:b1:a5:2f:de:9f:6c:33:bb:18:5e:2a:7b:
e0:3d:32:94:64:fc:d7:27:f4:79:91:60:a8:7a:c8:
db:26:e6:02:86:81:5a:f0:d6:5e:a9:24:a6:ce:8c:
88:76:2c:dd:11:da:ef:58:29:62:b8:4a:fc:bf:11:
36:c9:03:6b:d2:be:7a:54:4d:5c:e5:be:04:d7:df:
20:23:70:e9:8d:2b:04:9f:4e:5c:cf:10:85:56:0e:
74:cd:fd:3c:4f:c8:88:9c:fe:26:28:02:ed:78:5d:
94:1c:41:d2:db:ac:53:cf:95:ab:37:3f:15:be:c7:
0f:d9:a2:63:50:4c:18:eb:73:04:a0:c6:7a:02:f1:
ad:90:a8:ea:d2:5e:18:3b:74:0c:93:f6:77:5d:2f:
ee:8f:57:b1:30:1c:a3:99:cd:cf:56:44:48:8b:a0:
4c:3f:e1:15:ab:3f:6e:c2:65:c8:fc:d5:86:79:ed:
99:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:41:24:89:DB:E5:A8:41:12:EE:32:D3:0D:AB:FD:45:07:96:05:12
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/609f42d2-9147-414c-a1e5-20b55785f06a.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
aa:39:1d:37:d2:ba:7e:52:ba:57:9d:f3:3a:e0:4c:be:fd:1f:
66:6a:a8:35:6f:69:76:6a:03:5c:7e:86:37:96:eb:6d:ef:8e:
53:7d:4d:b7:f3:94:82:84:98:08:f1:4a:90:ca:df:46:2a:4b:
cd:a5:9f:6e:56:15:75:83:8f:b8:22:8f:e4:b7:bf:37:13:fe:
32:39:a4:fd:b3:50:6e:28:db:95:5a:5f:0f:a6:9e:02:a9:9c:
17:d0:67:ec:9c:1f:33:c8:65:c2:69:e4:82:c4:a0:02:79:ef:
e9:f8:c5:0a:8e:1e:cf:e0:ae:73:ea:e3:fc:40:2c:bc:7f:05:
9e:86:c9:6d:1b:29:01:6c:ca:f3:1a:1e:ac:a0:b3:df:73:e9:
30:f0:10:16:8f:05:a6:96:cb:aa:13:2b:4f:04:4f:1c:84:0f:
5f:f0:39:75:4e:33:b0:b9:42:bd:90:87:5b:27:98:f7:28:12:
49:04:4d:c4:39:cc:18:8c:87:d7:b6:c2:7a:d5:14:2b:b3:c5:
11:0e:16:0d:21:f7:07:46:0f:f6:4d:44:8e:62:a9:e0:b2:19:
82:f9:b8:d0:67:e8:d1:0c:1b:b2:8c:ca:b6:73:81:00:ed:33:
0e:97:f8:bf:4a:cb:c1:ce:91:f6:ea:bc:35:2f:5a:15:c3:bc:
94:d4:bd:65
-----BEGIN CERTIFICATE-----
MIIF+DCCBOCgAwIBAgIUBX0ocdlLkgNR28Hn5ofSIa5ybUYwDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyMjc4YWFiODc4ZjI2NjJjZTE0ZTkwNWUxOGViY2I3NTIy
ZjkyYjM2ODRiYzQ4NjViNGQwHhcNMjMxMTI4MDAwMDAwWhcNMjQwMTAyMjM1OTU5
WjB6MUkwRwYDVQQFE0A1YTZjNWY2ZTlkZWI1MGEwYjQzZjU1NzM4OWVmZTdlZTJm
MDI3MGQ1NjFjOGEwNDNkMmQwMjU2MzBkNjQ2MjQwMS0wKwYDVQQDEyRjMGNlMjNl
YS00M2ZjLTRiZTQtYmVlZS1jMDE0NzgxMjJhMGUwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQDEhVKBIMTxuRqW8u+z6FPUNIwLdpE+lIuNMdHj/+GGUrrY
rKhF/b/vMPHvxkL8ul+QzqewEWy9eU4S24bZEkCNjyaoI3mqx/KZUDfzRLGlL96f
bDO7GF4qe+A9MpRk/Ncn9HmRYKh6yNsm5gKGgVrw1l6pJKbOjIh2LN0R2u9YKWK4
Svy/ETbJA2vSvnpUTVzlvgTX3yAjcOmNKwSfTlzPEIVWDnTN/TxPyIic/iYoAu14
XZQcQdLbrFPPlas3PxW+xw/ZomNQTBjrcwSgxnoC8a2QqOrSXhg7dAyT9nddL+6P
V7EwHKOZzc9WREiLoEw/4RWrP27CZcj81YZ57ZkjAgMBAAGjggKxMIICrTAdBgNV
HQ4EFgQU6EEkidvlqEES7jLTDav9RQeWBRIwHwYDVR0jBBgwFoAUVajdRdlEE/nR
kvUsY86M+8YUlrgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy8xNDMzZWJmZi1k
ZmQ2LTRjNWMtYjdmZi05OWM4NTEzOWQ0YTgvMjc4YWFiODc4ZjI2NjJjZTE0ZTkw
NWUxOGViY2I3NTIyZjkyYjM2ODRiYzQ4NjViNGQuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvMTZmMWZmZWUtNzQ2MS00Njc0LWJiMDUtZmRk
ZWZhOWEwMmM2LzYwOWY0MmQyLTkxNDctNDE0Yy1hMWU1LTIwYjU1Nzg1ZjA2YS5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzE2ZjFmZmVlLTc0NjEtNDY3NC1iYjA1
LWZkZGVmYTlhMDJjNi9KbUxPRk9rRjRZNjh0MUl2a3JOb1M4U0dXMDAuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBADHJHgwDQYJKoZIhvcNAQELBQADggEBAKo5HTfSun5Suled8zrgTL79H2Zq
qDVvaXZqA1x+hjeW623vjlN9TbfzlIKEmAjxSpDK30YqS82ln25WFXWDj7gij+S3
vzcT/jI5pP2zUG4o25VaXw+mngKpnBfQZ+ycHzPIZcJp5ILEoAJ57+n4xQqOHs/g
rnPq4/xALLx/BZ6GyW0bKQFsyvMaHqygs99z6TDwEBaPBaaWy6oTK08ETxyED1/w
OXVOM7C5Qr2Qh1snmPcoEkkETcQ5zBiMh9e2wnrVFCuzxREOFg0h9wdGD/ZNRI5i
qeCyGYL5uNBn6NEMG7KMyrZzgQDtMw6X+L9Ky8HOkfbqvDUvWhXDvJTUvWU=
-----END CERTIFICATE-----
Generated at Sun Apr 6 04:59:00 2025 by rpki-client