Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/8a603c16-127e-4dd3-b8a6-f3cd39952c0f.roa
File: 8a603c16-127e-4dd3-b8a6-f3cd39952c0f.roa (raw, json)
Hash identifier: +TKCJQv4IjtlLqBN241XiEYEv0yzXMZhL5eRJI9zLnI=
Subject key identifier: 0E:6E:A7:D5:99:D7:81:5B:90:2E:1F:CF:A7:A0:D8:2C:FC:2D:CB:B8
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 6029F700973BAC5F4F8E105F638413AD638FC4DB
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/8a603c16-127e-4dd3-b8a6-f3cd39952c0f.roa
Signing time: Sun 02 Jul 2023 00:00:00 +0000
ROA not before: Sun 02 Jul 2023 00:00:00 +0000
ROA not after: Sun 06 Aug 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
60:29:f7:00:97:3b:ac:5f:4f:8e:10:5f:63:84:13:ad:63:8f:c4:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Jul 2 00:00:00 2023 GMT
Not After : Aug 6 23:59:59 2023 GMT
Subject: CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:ca:32:eb:72:fa:ae:8b:22:90:53:12:49:36:
2c:30:c1:a4:73:a2:2d:ce:04:42:04:76:be:28:14:
b6:d7:03:dc:14:3a:48:5a:bb:de:f9:0b:ac:51:12:
95:83:26:1c:96:c5:14:f3:81:47:c1:fc:cd:b3:ea:
a3:5f:c3:82:84:6e:e3:f9:c7:73:82:6e:bc:f9:f7:
43:05:09:47:18:0a:76:3c:47:df:a6:08:14:a0:51:
35:85:24:5e:73:73:e3:7f:96:65:99:2f:4c:f7:d9:
52:c3:19:65:da:2c:17:74:89:07:7c:1c:26:8b:84:
e9:34:62:d4:0f:74:7c:fa:3c:40:c6:53:f9:88:9b:
c7:6e:6b:12:4c:d6:e0:f9:1f:ff:b8:29:3d:b0:91:
c5:00:b2:e5:7b:c3:8b:4e:7c:3a:4a:b8:ea:02:aa:
b5:ba:39:4a:48:2e:38:14:4a:c0:fe:ab:6a:06:cf:
3e:2c:7d:f9:aa:5e:27:52:68:ba:c9:79:57:3e:a1:
65:c4:11:7e:77:fa:c2:d8:00:24:42:92:0c:9c:50:
f3:e4:c4:1c:56:77:5d:7c:b6:92:b8:5f:65:f1:82:
7e:aa:5b:d1:f9:d7:bd:fd:5f:15:e6:be:bd:c7:70:
c7:d3:64:f8:d6:b2:d4:0d:39:35:5e:66:fb:db:1d:
71:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:6E:A7:D5:99:D7:81:5B:90:2E:1F:CF:A7:A0:D8:2C:FC:2D:CB:B8
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/8a603c16-127e-4dd3-b8a6-f3cd39952c0f.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
09:06:1a:69:d9:f3:e0:58:28:79:52:87:f8:ae:4a:86:b6:78:
ef:f6:71:d1:a1:dc:48:03:66:1c:ca:af:d8:4e:04:ff:54:6e:
38:b3:cb:52:44:c0:0d:c6:6b:0a:a2:fb:5a:7e:ee:ce:21:97:
48:a6:61:15:a2:8b:22:bd:40:57:a6:67:a0:e7:c0:e9:9c:03:
c8:15:63:e0:03:36:ae:17:7c:36:3d:88:4c:b4:0f:e2:e7:09:
6a:3a:28:be:68:7c:6b:39:dd:e1:b2:22:01:1b:85:77:42:8e:
54:ea:8f:6c:9f:89:08:06:19:57:87:50:08:80:f8:b7:9e:08:
b3:f0:9b:a9:e0:0e:29:ca:d5:a6:65:8b:16:91:f4:86:7d:1e:
cf:21:a1:89:94:18:2d:28:5e:3f:21:72:ff:2f:e3:51:08:d5:
b6:ee:92:9a:40:77:05:c4:93:7f:00:f3:f1:4c:70:6e:41:c3:
ba:be:71:26:ee:d3:4b:a5:b7:b1:99:66:6b:13:7f:83:6c:88:
3d:2c:4d:36:b0:d5:eb:3f:72:00:c0:15:4d:de:f4:7b:a9:c6:
c8:88:d2:93:1e:35:79:16:f5:2d:69:58:fc:07:0d:d2:6e:be:
ce:e0:47:59:36:50:1e:8c:15:86:dd:81:f6:fd:97:0f:2a:bd:
d8:c1:96:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 21:21:52 2025 by rpki-client