Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/8881d156-bc25-4ce9-8ba6-fa3b452f351c.roa
File: 8881d156-bc25-4ce9-8ba6-fa3b452f351c.roa (raw, json)
Hash identifier: tYIXw9f9NwAb6vAonnHo2JtwNGXlhHLbP5w6GGLyFp0=
Subject key identifier: D1:2C:91:F6:0D:E9:84:2C:1D:E4:FC:B8:ED:CD:53:82:AD:C8:85:43
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 1DCD1D164B04B4C868FE8F8E854158C28EBF1551
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/8881d156-bc25-4ce9-8ba6-fa3b452f351c.roa
Signing time: Sat 10 Feb 2024 00:00:00 +0000
ROA not before: Sat 10 Feb 2024 00:00:00 +0000
ROA not after: Sat 16 Mar 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1d:cd:1d:16:4b:04:b4:c8:68:fe:8f:8e:85:41:58:c2:8e:bf:15:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Feb 10 00:00:00 2024 GMT
Not After : Mar 16 23:59:59 2024 GMT
Subject: CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:d9:6b:e3:f6:97:08:6c:ae:77:ff:e2:bd:cb:
2d:4a:e8:b2:c2:e0:3b:f2:99:de:b9:c1:5a:b4:ea:
41:77:4f:b8:c4:e6:ac:dc:a2:3e:b3:e7:0f:7b:3d:
ea:aa:7b:84:40:6b:f3:b8:72:67:97:d4:fd:ae:81:
00:ff:6f:1b:84:65:54:39:cc:ff:74:e7:a3:21:3e:
d6:2d:d7:f7:ef:25:44:49:49:90:f1:e1:af:d0:66:
c0:04:69:c2:9b:36:4a:e2:1f:04:d0:f9:1f:37:88:
3a:5a:d8:b7:82:5f:ff:bb:da:fa:16:cf:81:07:fe:
04:03:05:e7:53:09:09:10:e3:58:91:34:cc:1c:84:
48:79:df:a0:a2:f7:19:fd:e8:2c:fe:68:0a:dc:fb:
df:f6:0f:b0:fc:fd:b4:1b:bd:49:5f:59:73:36:f2:
57:91:e2:11:45:cc:6d:91:7b:b6:ee:26:88:26:a0:
f9:e6:fd:84:4d:e6:70:ed:23:19:14:2a:6f:be:ad:
5b:26:e6:a6:77:9b:da:a7:70:47:ce:33:ff:78:3f:
c7:5f:f6:7e:0e:8d:da:b4:a2:0d:c7:75:71:1e:03:
26:c6:b8:e6:ee:0c:fa:e2:eb:53:1f:77:5c:71:d6:
ea:f0:b1:a1:ad:75:c2:da:2d:8f:b6:c8:44:9d:a1:
4f:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:2C:91:F6:0D:E9:84:2C:1D:E4:FC:B8:ED:CD:53:82:AD:C8:85:43
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/8881d156-bc25-4ce9-8ba6-fa3b452f351c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
60:b3:6d:59:b7:02:5d:8f:b6:a7:52:fe:33:e3:64:39:a2:fa:
e9:c4:e2:5e:d2:37:79:72:14:47:ef:5d:13:1a:cc:11:60:68:
c9:1b:b3:48:f6:52:22:83:24:0f:00:a2:44:72:90:07:8c:28:
d4:da:73:d9:06:e9:a9:d7:89:e1:5c:6d:2c:40:d9:16:02:d3:
49:ae:49:69:ca:ef:56:4e:4c:b8:a4:d7:ac:87:92:3e:82:36:
3d:9d:54:ec:18:b4:2e:c9:75:5c:fc:df:8a:b8:33:1f:8e:e6:
a7:cc:87:87:4a:8e:12:e8:7d:2b:d9:95:df:5b:17:2a:a6:23:
c8:22:e9:c0:7d:73:ff:4c:4a:ad:cd:e0:71:3c:30:10:ae:96:
1e:fe:86:48:d5:48:8d:cf:00:be:02:b9:cf:dd:a5:4c:82:1d:
26:41:57:cd:ac:60:50:08:81:55:2f:fd:7a:68:be:96:a4:e1:
1f:ae:99:cf:1c:ce:4f:55:ad:94:b0:c2:57:37:91:5d:3a:65:
c3:82:8f:78:84:e6:81:14:05:71:e9:f7:96:14:ea:b1:70:39:
72:d2:d9:e5:ec:5e:dd:74:0e:c6:e5:2e:91:7e:8c:24:b2:cc:
3c:a2:ce:7e:5a:6b:57:00:48:91:9f:4a:f1:13:24:cf:c1:50:
54:b8:5b:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 20:49:25 2025 by rpki-client