Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/6b8b38c4-307d-481e-9f12-c2fe35091be1.roa
File: 6b8b38c4-307d-481e-9f12-c2fe35091be1.roa (raw, json)
Hash identifier: ca5VTLqZ3AllLcAruS9UGx9grlLT05js0KDy54GTKyM=
Subject key identifier: B4:8A:88:62:D9:58:63:44:CC:FF:5A:B0:4A:3A:E2:AA:55:83:5B:E8
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 503433584FD56DC7FDE776FBD9C8C07BB659A79C
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/6b8b38c4-307d-481e-9f12-c2fe35091be1.roa
Signing time: Sat 06 Jul 2024 00:00:00 +0000
ROA not before: Sat 06 Jul 2024 00:00:00 +0000
ROA not after: Sat 10 Aug 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
50:34:33:58:4f:d5:6d:c7:fd:e7:76:fb:d9:c8:c0:7b:b6:59:a7:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Jul 6 00:00:00 2024 GMT
Not After : Aug 10 23:59:59 2024 GMT
Subject: CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:3b:7d:f0:c3:f4:ff:2d:13:e5:15:00:ed:c6:
b9:08:62:94:ab:fa:19:20:3b:a5:36:25:c5:d6:e1:
0e:d3:e9:a5:a1:b4:3a:ad:bd:72:fd:4b:8d:8e:0b:
d4:63:2f:c0:f5:40:3c:4d:47:fc:f8:c7:7e:fe:2b:
80:3a:ae:f1:90:76:f7:27:79:8a:59:18:d2:57:af:
42:90:4f:aa:2f:d7:47:12:02:38:91:19:aa:3c:9e:
bb:67:8b:3c:9d:25:9c:86:f8:c3:ee:7a:6b:72:de:
d3:a9:0d:cf:25:0c:d0:6f:10:89:b4:65:e7:5b:68:
7a:4c:57:eb:3a:60:c1:28:3d:4d:4a:3d:50:be:04:
8f:c0:70:7e:d5:d6:0c:d6:ec:08:90:13:47:a9:a9:
4a:c1:04:45:83:76:26:f6:2b:0b:44:68:c5:87:2f:
8d:12:0d:90:03:c9:f0:82:b0:ff:70:67:7c:b9:aa:
01:09:cc:9e:89:a2:4e:b7:74:26:47:bf:cc:3e:3e:
cc:65:7e:aa:7e:04:4f:77:b9:64:b6:3e:a4:ee:b5:
01:ed:ef:f1:b8:5a:0e:73:62:e2:99:ee:71:0f:79:
59:79:37:61:81:e8:84:d7:fc:b9:54:43:bb:67:9a:
e7:69:0f:90:87:13:c1:cf:57:dd:70:5a:a8:27:50:
90:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:8A:88:62:D9:58:63:44:CC:FF:5A:B0:4A:3A:E2:AA:55:83:5B:E8
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/6b8b38c4-307d-481e-9f12-c2fe35091be1.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
a7:db:af:3a:0e:c6:2b:42:ee:93:8b:d2:99:c8:0e:52:58:d8:
ad:b4:79:b0:31:e1:1e:d5:9a:69:2f:20:db:a9:1e:de:25:ae:
f0:f4:89:6d:9a:b5:0b:7e:58:98:e6:fb:0e:d1:f0:18:52:51:
7d:a1:dd:00:bd:bb:f7:1f:90:29:07:25:4c:21:c6:1c:30:5f:
e6:7f:38:24:74:bd:76:3b:3c:5b:26:df:f2:52:02:d3:b9:34:
20:2e:6d:f7:05:e7:9c:b1:de:38:49:3b:ad:d5:b9:21:90:d9:
c6:1f:cf:c1:73:c8:99:90:d2:cf:b7:13:61:3d:54:a9:25:2c:
af:66:d6:ae:24:db:c5:50:17:6b:2a:6e:0e:7b:23:37:e2:ee:
5b:85:80:9f:80:30:67:51:a2:ce:31:31:e0:13:ea:0e:5a:a8:
d8:57:00:d9:21:18:f4:77:2a:0d:6d:6a:f9:c5:82:a7:2d:12:
a9:1f:e3:f0:2d:5d:c4:cf:e0:70:73:0b:de:c8:82:0c:13:4a:
7b:bb:b4:51:d1:c8:35:8c:86:5b:19:81:8a:83:5e:72:27:59:
da:76:d0:6a:b4:01:c9:8e:d0:be:82:49:58:71:ba:29:12:ae:
58:2d:e0:77:df:4c:63:74:99:b6:e5:9f:0f:3d:33:b6:e7:50:
ab:7b:56:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 15:47:13 2025 by rpki-client