Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/71261da3-7cf8-41aa-b201-3409c432052b.roa
File: 71261da3-7cf8-41aa-b201-3409c432052b.roa (raw, json)
Hash identifier: PiTYOh7pPYgsz3EvaokWxFDk3vl0W6xKGUthmGxuAC4=
Subject key identifier: 37:C3:8D:06:21:E4:64:E0:91:86:16:BF:35:34:0B:47:CC:1D:03:98
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 666D0DE767F1496E9498F16A3CCA9A92096AE8C1
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/71261da3-7cf8-41aa-b201-3409c432052b.roa
Signing time: Mon 07 Aug 2023 00:00:00 +0000
ROA not before: Mon 07 Aug 2023 00:00:00 +0000
ROA not after: Mon 11 Sep 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
66:6d:0d:e7:67:f1:49:6e:94:98:f1:6a:3c:ca:9a:92:09:6a:e8:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Aug 7 00:00:00 2023 GMT
Not After : Sep 11 23:59:59 2023 GMT
Subject: CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:24:b3:96:1e:9c:da:82:05:24:ee:88:46:e6:
0d:ca:cd:ee:fd:0c:3c:e6:a3:1a:92:a2:06:87:ff:
7f:ca:8c:e9:cf:01:c7:0a:11:4e:e8:c8:fa:5e:d1:
5e:c4:cb:7d:76:5f:cb:51:d7:5e:8a:04:06:4c:05:
58:1e:ed:7a:5a:cb:0a:87:e0:c8:96:52:61:df:91:
4b:1e:e6:a7:2d:7c:48:09:e5:0c:22:51:f4:2f:0d:
c4:a2:40:88:cf:67:ae:a3:7d:27:f4:7c:bd:d9:d0:
66:af:4e:80:43:3d:02:eb:30:96:77:40:36:c3:5c:
a2:43:6d:cb:37:4d:af:e3:80:05:78:3e:55:3f:15:
b7:2a:36:ee:b6:95:8e:ac:c7:87:2c:af:45:2c:38:
e2:67:61:97:ec:ed:b2:ca:5a:58:71:ac:8a:84:61:
55:a1:73:bd:08:d8:8d:ee:33:1d:3e:14:a3:b2:23:
7a:de:30:08:f1:90:a4:5a:d3:05:f0:56:2f:dd:81:
43:f6:7d:b0:1d:eb:c4:ea:9c:80:fe:f1:4b:50:49:
f9:25:0e:53:22:a6:41:a3:a3:cc:c1:e4:7b:ed:02:
9b:70:a5:8c:32:00:0b:bb:19:73:dd:47:4a:dc:ec:
00:f4:f2:e6:3a:5b:d2:37:d2:03:57:b1:5d:a6:eb:
d4:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:C3:8D:06:21:E4:64:E0:91:86:16:BF:35:34:0B:47:CC:1D:03:98
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/71261da3-7cf8-41aa-b201-3409c432052b.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
4e:d0:e8:aa:da:8c:f2:d0:8f:5b:17:f5:2c:e9:73:07:9e:7c:
1d:db:a0:0e:51:8c:bc:52:98:69:68:f2:58:06:7a:57:37:13:
2c:7e:a4:a1:80:a7:3c:47:c2:fa:60:a2:17:d1:c5:60:17:d9:
18:6a:69:6b:73:a1:8c:2d:52:d0:d2:3a:46:48:38:11:f1:4f:
be:a8:17:9c:48:f0:61:54:32:ea:82:08:cd:11:be:f6:c9:36:
8e:a7:bc:f3:92:9c:c2:45:d3:34:0a:9e:fc:2b:5f:11:98:1a:
b7:c5:c2:90:68:db:5e:a5:ee:c5:81:55:ce:72:7e:4e:12:3c:
e4:0b:10:c3:b4:26:8e:43:a0:ad:49:ae:27:fe:25:dc:ae:09:
7c:6e:a6:f6:57:b3:36:c2:ec:69:95:6b:62:09:25:77:e4:a7:
70:2c:3f:ac:8b:16:f3:fd:61:2e:14:e3:32:72:f8:8a:f1:30:
4c:be:4e:5b:6f:52:9b:c1:c0:4e:5a:59:5b:95:f0:cc:d1:6f:
7a:46:01:a1:89:2f:39:89:a2:6b:bf:63:e6:74:2b:3c:15:f6:
e7:3c:64:6f:a3:58:d8:5e:b1:40:61:87:6c:2e:9f:39:aa:72:
04:d6:91:17:36:c6:de:0a:6c:dc:78:6d:80:cb:a4:0e:c7:4b:
6a:b0:11:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 02:26:56 2025 by rpki-client