Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/73de152a-b4b2-46a5-88ad-3b752f6b709b.roa
File: 73de152a-b4b2-46a5-88ad-3b752f6b709b.roa (raw, json)
Hash identifier: EcoqzCQXEFduzfrLFgLq5Laid8k4AC+fCAB2YbC3txU=
Subject key identifier: 1F:A7:84:DB:6E:17:CF:87:09:53:A9:0F:14:ED:8C:BA:1C:EB:BF:23
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 712F5BD9709ED657CE5ECC3AF33CE55C30A1F0B7
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/73de152a-b4b2-46a5-88ad-3b752f6b709b.roa
Signing time: Sun 29 Oct 2023 00:00:00 +0000
ROA not before: Sun 29 Oct 2023 00:00:00 +0000
ROA not after: Sun 03 Dec 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
71:2f:5b:d9:70:9e:d6:57:ce:5e:cc:3a:f3:3c:e5:5c:30:a1:f0:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Oct 29 00:00:00 2023 GMT
Not After : Dec 3 23:59:59 2023 GMT
Subject: CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:03:9d:0b:38:3e:f3:21:54:25:da:5e:8a:b5:
dc:b8:14:25:63:3d:40:80:f4:08:71:47:69:27:dc:
1e:d9:99:7f:df:e4:77:e6:da:2f:c0:38:fe:8a:34:
1b:fe:b7:48:bd:38:ff:0a:78:05:43:dd:ac:79:27:
0d:ca:bb:f3:34:a2:5d:e8:9b:03:7f:34:8f:95:91:
c8:8d:df:91:f5:de:0c:5c:61:e7:95:ea:aa:ce:9e:
75:14:a8:dd:18:2e:f3:8d:fe:d9:b6:d8:22:f1:bf:
cf:a6:d8:93:1f:79:87:43:f5:e7:c5:84:c2:38:e5:
94:07:41:1f:00:ae:c3:4e:ec:8d:2b:01:df:7f:27:
79:b5:fa:47:34:b1:c0:17:b2:c6:8e:ee:b0:71:1a:
b0:ec:38:35:c8:85:51:b3:69:3d:de:9f:39:8c:b3:
ae:2b:43:b2:ad:ac:19:d5:6b:02:21:8d:b1:2a:6b:
4d:2a:e8:1a:94:2f:75:76:5d:2a:a5:91:ea:80:2c:
e9:2d:93:c7:84:dc:d6:72:02:9a:8d:55:81:50:a9:
46:a0:7d:da:ee:9d:e2:e2:3d:97:01:35:37:28:0c:
dc:c5:7e:23:ba:08:bc:41:2b:a5:9a:e0:a1:5e:4c:
e6:8f:1d:b4:91:a3:df:2f:3f:3a:50:e8:6a:69:50:
ee:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:A7:84:DB:6E:17:CF:87:09:53:A9:0F:14:ED:8C:BA:1C:EB:BF:23
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/73de152a-b4b2-46a5-88ad-3b752f6b709b.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
69:2b:03:8d:5f:dc:92:5a:c1:f7:dc:0c:ab:b7:b9:da:7c:a6:
41:e6:48:08:fc:03:55:8f:31:0a:22:ff:11:01:a9:00:2a:4a:
1c:69:f0:1a:be:db:fb:ef:66:41:ff:f7:7a:7c:d6:05:32:d5:
94:f6:7a:eb:3e:ff:02:1c:5a:6d:1f:d9:f8:a9:f5:a1:07:51:
bd:de:38:ac:f3:3c:51:4f:7b:23:f9:71:86:25:55:15:af:b9:
15:d1:c6:51:35:f3:b1:95:d5:0c:ca:36:0a:40:54:ba:0c:59:
dc:48:84:f9:01:a2:6c:16:71:13:00:dc:08:80:75:b1:14:1f:
9e:1a:eb:06:f3:d9:5f:12:29:53:e8:03:21:ff:5f:c7:ea:ae:
e5:b3:ab:56:7b:68:a0:9a:f3:bf:d9:49:86:bd:f4:e5:47:33:
74:30:97:96:fb:06:85:0e:9a:a6:14:9d:3d:43:0e:4b:b9:49:
ef:d6:bb:7f:5f:ca:53:ac:6d:54:21:d4:63:2c:8a:73:97:05:
a5:2d:cf:c3:13:b1:66:7f:26:8c:f8:f2:1c:8e:59:1c:41:78:
e2:a7:a1:72:2d:2b:1e:ca:39:26:ac:27:7c:5f:f7:b8:79:12:
77:58:77:85:1f:5b:45:13:b4:12:6c:13:a3:79:6d:37:6f:27:
e4:fd:42:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 16:00:29 2025 by rpki-client