Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/85103e06-5991-429f-9a54-84824a2292d4.roa
File: 85103e06-5991-429f-9a54-84824a2292d4.roa (raw, json)
Hash identifier: YA7fyYd32aey442FQBr7kqlK7AQNg8FiqBb5Oylno9c=
Subject key identifier: A9:60:A9:0F:6D:DE:9E:96:0D:18:78:07:C6:36:CE:94:4A:12:91:30
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 1882E53E8C13FD89F2F195D478D1FCE7E635930D
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/85103e06-5991-429f-9a54-84824a2292d4.roa
Signing time: Mon 09 Dec 2024 00:00:00 +0000
ROA not before: Mon 09 Dec 2024 00:00:00 +0000
ROA not after: Mon 13 Jan 2025 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
18:82:e5:3e:8c:13:fd:89:f2:f1:95:d4:78:d1:fc:e7:e6:35:93:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Dec 9 00:00:00 2024 GMT
Not After : Jan 13 23:59:59 2025 GMT
Subject: CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:c3:02:27:04:ad:7a:81:55:d6:cc:b6:91:c4:
bb:60:30:08:a6:78:85:5a:ce:49:7f:2e:87:b0:a5:
45:45:3e:53:3f:eb:ea:d5:bd:1e:8c:9b:af:e0:21:
4f:7f:a5:6c:81:5a:0a:b1:6d:91:a5:e4:cd:bf:a8:
52:7e:11:77:d5:c3:c9:39:78:22:4f:6f:e1:b3:d7:
a8:56:e6:9d:a1:9c:cf:0b:4d:e4:22:a6:3a:95:0f:
55:c8:9c:3e:b9:c7:44:88:2b:b3:73:77:60:24:c7:
e7:5b:91:25:93:96:73:1d:4c:ed:2e:f5:4f:18:94:
cd:cd:4c:f9:be:23:e0:db:75:71:90:36:15:11:bf:
2e:03:94:0f:ca:fa:d5:cd:57:7c:7c:45:e7:83:43:
50:eb:06:30:63:f4:9e:2c:3d:0c:d6:8a:23:ba:26:
01:2f:54:50:49:81:06:94:a9:13:89:a2:ea:62:65:
6b:07:cb:00:69:62:31:50:d8:7f:01:78:29:a7:49:
4a:39:6f:f6:ed:12:29:c7:c8:db:e7:6d:36:3f:30:
5a:8e:4e:d4:54:e8:fd:bd:b4:2f:fa:8f:9c:4e:11:
79:e9:bf:81:e8:4f:d9:c6:ea:ad:39:cb:55:f7:7d:
58:26:cd:8f:d2:37:ee:11:d1:20:31:91:3c:ad:5c:
19:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:60:A9:0F:6D:DE:9E:96:0D:18:78:07:C6:36:CE:94:4A:12:91:30
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/85103e06-5991-429f-9a54-84824a2292d4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
49:83:61:27:8a:b2:26:bd:a3:4b:f8:ab:41:5a:90:fc:07:d1:
35:76:8f:c5:9e:22:eb:f2:82:3e:d5:ba:df:ba:62:31:96:d7:
da:70:25:d9:ff:9c:cd:c2:7b:3d:53:88:ad:c3:3a:92:33:e8:
2c:22:fe:51:b5:df:24:b5:fa:bb:cb:89:9b:89:6f:97:e3:75:
0e:11:37:18:5b:14:12:09:2f:16:fc:95:7d:31:1d:26:f2:b2:
ea:00:b5:b3:08:0d:66:2a:6e:f4:6b:c5:55:6d:d5:27:5b:ca:
c8:1c:3f:bf:5c:d4:e8:e6:eb:ee:f5:cc:9e:fa:72:02:1e:18:
1c:ad:57:6e:f5:87:58:6d:ec:a2:cd:cc:1b:6e:5e:30:49:08:
2d:25:96:9a:e4:53:63:89:b5:a6:d4:43:5d:d6:13:2b:9a:40:
51:81:68:0f:5f:f7:f9:f3:02:c5:94:0c:b1:7f:cf:44:13:1b:
bb:17:55:1c:2d:64:85:b9:79:b4:5f:c5:e7:04:8b:d9:7e:1c:
52:cb:08:c1:ba:39:a0:a6:77:9c:b2:2b:c8:ea:b2:9e:2d:c9:
68:19:96:d8:f7:a7:fd:16:0f:a0:e6:2a:09:f0:4c:9e:34:5e:
18:58:d9:0b:fa:65:83:f9:32:2d:67:c4:99:86:86:a8:b2:04:
b1:05:c5:6c
-----BEGIN CERTIFICATE-----
MIIF+DCCBOCgAwIBAgIUGILlPowT/Yny8ZXUeNH85+Y1kw0wDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyMjc4YWFiODc4ZjI2NjJjZTE0ZTkwNWUxOGViY2I3NTIy
ZjkyYjM2ODRiYzQ4NjViNGQwHhcNMjQxMjA5MDAwMDAwWhcNMjUwMTEzMjM1OTU5
WjB6MUkwRwYDVQQFE0A1YzIzOWFjMDUxZmE5MzE3MTk0YTUzYTkxODY3NGJlMmYz
ZTFkNDc5NmRlOGMyN2JhNmEyNTViYmMwMDRmNDA2MS0wKwYDVQQDEyRjMGNlMjNl
YS00M2ZjLTRiZTQtYmVlZS1jMDE0NzgxMjJhMGUwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQDVwwInBK16gVXWzLaRxLtgMAimeIVazkl/LoewpUVFPlM/
6+rVvR6Mm6/gIU9/pWyBWgqxbZGl5M2/qFJ+EXfVw8k5eCJPb+Gz16hW5p2hnM8L
TeQipjqVD1XInD65x0SIK7Nzd2Akx+dbkSWTlnMdTO0u9U8YlM3NTPm+I+DbdXGQ
NhURvy4DlA/K+tXNV3x8ReeDQ1DrBjBj9J4sPQzWiiO6JgEvVFBJgQaUqROJoupi
ZWsHywBpYjFQ2H8BeCmnSUo5b/btEinHyNvnbTY/MFqOTtRU6P29tC/6j5xOEXnp
v4HoT9nG6q05y1X3fVgmzY/SN+4R0SAxkTytXBnfAgMBAAGjggKxMIICrTAdBgNV
HQ4EFgQUqWCpD23enpYNGHgHxjbOlEoSkTAwHwYDVR0jBBgwFoAUVajdRdlEE/nR
kvUsY86M+8YUlrgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy8xNDMzZWJmZi1k
ZmQ2LTRjNWMtYjdmZi05OWM4NTEzOWQ0YTgvMjc4YWFiODc4ZjI2NjJjZTE0ZTkw
NWUxOGViY2I3NTIyZjkyYjM2ODRiYzQ4NjViNGQuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvMTZmMWZmZWUtNzQ2MS00Njc0LWJiMDUtZmRk
ZWZhOWEwMmM2Lzg1MTAzZTA2LTU5OTEtNDI5Zi05YTU0LTg0ODI0YTIyOTJkNC5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzE2ZjFmZmVlLTc0NjEtNDY3NC1iYjA1
LWZkZGVmYTlhMDJjNi9KbUxPRk9rRjRZNjh0MUl2a3JOb1M4U0dXMDAuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBADHJHgwDQYJKoZIhvcNAQELBQADggEBAEmDYSeKsia9o0v4q0FakPwH0TV2
j8WeIuvygj7Vut+6YjGW19pwJdn/nM3Cez1TiK3DOpIz6Cwi/lG13yS1+rvLiZuJ
b5fjdQ4RNxhbFBIJLxb8lX0xHSbysuoAtbMIDWYqbvRrxVVt1SdbysgcP79c1Ojm
6+71zJ76cgIeGBytV271h1ht7KLNzBtuXjBJCC0llprkU2OJtabUQ13WEyuaQFGB
aA9f9/nzAsWUDLF/z0QTG7sXVRwtZIW5ebRfxecEi9l+HFLLCMG6OaCmd5yyK8jq
sp4tyWgZltj3p/0WD6DmKgnwTJ40XhhY2Qv6ZYP5Mi1nxJmGhqiyBLEFxWw=
-----END CERTIFICATE-----
Generated at Sat Apr 5 18:26:16 2025 by rpki-client