Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/8e2ae79e-aad6-4a75-aef8-dcdf3ae1a376.roa
File: 8e2ae79e-aad6-4a75-aef8-dcdf3ae1a376.roa (raw, json)
Hash identifier: eXBLR9yPXGfygJtoXse56VvF4ECNSvvysMtXUR7VYpE=
Subject key identifier: 25:4E:1D:F4:E9:DF:72:D3:E9:12:DF:3F:3C:FB:B0:5C:AE:E0:D6:2D
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 205B132080DFA83DBA338601EFA7350D5E77B9A4
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/8e2ae79e-aad6-4a75-aef8-dcdf3ae1a376.roa
Signing time: Wed 22 Nov 2023 00:00:00 +0000
ROA not before: Wed 22 Nov 2023 00:00:00 +0000
ROA not after: Wed 27 Dec 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
20:5b:13:20:80:df:a8:3d:ba:33:86:01:ef:a7:35:0d:5e:77:b9:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Nov 22 00:00:00 2023 GMT
Not After : Dec 27 23:59:59 2023 GMT
Subject: CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:f4:38:e3:07:af:1c:75:68:84:bf:9f:f6:ed:
3f:f6:89:9e:52:13:79:9e:02:2e:2a:42:e0:82:e5:
3d:4d:0f:7a:77:8f:5a:3e:ea:33:c0:e7:5f:0e:67:
79:f4:b5:d3:df:c0:d7:e9:38:c6:14:0a:09:a8:ad:
d9:64:60:00:1f:c8:95:09:ee:c8:8f:1a:9f:34:a5:
fb:f7:b5:a8:a6:aa:04:32:8e:e0:4f:fa:c7:d9:e2:
97:46:7b:0c:2f:e3:fb:d3:43:47:f7:80:c2:f3:96:
ed:d0:2f:8b:22:a8:a6:e7:fb:13:1e:ca:8c:22:e6:
f0:cd:8f:ce:aa:48:58:69:63:da:aa:65:28:3f:8d:
1a:62:bc:bb:3e:e0:5c:49:1b:62:f9:43:4a:65:b2:
d3:73:c3:8e:57:fd:b8:1b:d4:dd:df:37:bc:4d:98:
84:59:e5:af:b6:0a:6d:32:8b:7d:6d:d1:0f:5e:1c:
20:77:dc:9a:6a:00:7f:5d:49:67:6b:74:3d:d6:4b:
16:24:30:17:7c:3c:c7:35:9f:e8:a7:b5:eb:c3:2c:
9a:2d:c7:31:3b:de:f4:23:3c:1e:2f:e1:e3:e5:73:
68:69:9a:74:88:74:c1:32:aa:a5:96:65:5e:01:82:
cc:0a:38:1c:51:4e:64:10:8d:40:5f:98:18:15:31:
bc:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:4E:1D:F4:E9:DF:72:D3:E9:12:DF:3F:3C:FB:B0:5C:AE:E0:D6:2D
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/8e2ae79e-aad6-4a75-aef8-dcdf3ae1a376.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
6f:72:85:66:86:6e:0c:f5:3c:c5:dd:58:fa:ea:a7:11:5e:b4:
61:28:ce:4a:80:fc:a8:f6:5f:13:7e:f1:2c:b0:e6:d5:18:11:
7d:3b:f7:ac:b6:80:fc:fb:0d:cd:4f:ba:8c:ee:33:46:e3:0d:
9f:53:ea:a8:4f:3b:9b:20:06:05:0a:05:d0:cd:dd:be:89:08:
3b:74:b1:9b:a1:ca:96:2d:ab:a9:76:96:8f:a3:f3:e8:38:a0:
a2:8d:c8:fb:f0:41:7e:35:9d:3d:f2:65:b5:46:ba:b7:12:7c:
af:50:06:9d:df:9f:26:52:cd:75:05:02:11:6f:b6:b7:8b:3e:
6f:56:2f:e6:0b:a3:82:1c:83:40:7f:c8:20:47:6b:f7:e9:68:
a6:7e:6f:dd:bf:24:30:57:2e:b7:48:74:ab:4d:e1:c9:e6:1f:
c1:7b:12:15:12:7c:11:cd:c1:a7:02:32:3f:4b:d9:6b:eb:e9:
c5:3d:b3:5e:04:fd:3d:b5:9a:12:b2:b6:33:b8:16:22:16:78:
51:a1:55:a7:78:61:e3:8f:4d:d1:02:97:f0:f6:72:8f:c4:b7:
b5:be:95:5b:7c:01:90:f2:02:01:86:14:3d:ba:ac:18:93:a0:
95:88:bf:36:0f:76:40:db:1e:57:06:b5:81:0c:7c:3b:aa:ee:
64:f5:58:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 18:17:55 2025 by rpki-client