Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/92acd6c0-8b83-4b22-a94f-071a618a439a.roa
File: 92acd6c0-8b83-4b22-a94f-071a618a439a.roa (raw, json)
Hash identifier: 59Y4q0w4AuLY4fTuKY9ZZFiyEUl9omCNR3mRJdaX7pY=
Subject key identifier: 4E:EF:EB:E2:86:0C:72:E2:65:71:F9:1D:23:8A:9A:3E:2B:84:B9:58
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 458D71CC911176CED054A3CB4B71822DC704B738
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/92acd6c0-8b83-4b22-a94f-071a618a439a.roa
Signing time: Fri 18 Aug 2023 00:00:00 +0000
ROA not before: Fri 18 Aug 2023 00:00:00 +0000
ROA not after: Fri 22 Sep 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
45:8d:71:cc:91:11:76:ce:d0:54:a3:cb:4b:71:82:2d:c7:04:b7:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Aug 18 00:00:00 2023 GMT
Not After : Sep 22 23:59:59 2023 GMT
Subject: CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:1c:87:38:b5:c9:e3:71:55:8d:08:d9:d5:78:
29:64:49:ca:23:05:68:08:5f:1a:ed:d2:8b:83:62:
d5:b6:bd:ba:ae:01:e5:6d:38:1e:42:22:29:0e:18:
22:9f:7c:27:72:5e:10:3d:c0:c1:05:9c:2a:d3:38:
c5:30:65:49:42:ab:38:47:e8:19:63:32:c5:0f:88:
9c:24:a7:cd:7b:8f:09:31:de:80:d6:a6:ca:9d:51:
33:de:32:18:d8:35:36:94:7d:e0:01:fc:1a:0f:fa:
11:41:6d:7f:f3:92:a7:ff:62:0a:8b:20:1b:56:39:
ca:b2:6f:2e:fa:7a:1e:d2:c3:ba:f6:3d:31:3e:3d:
8e:8b:88:dc:0b:0e:c5:04:9f:0c:a6:9b:56:87:35:
8d:17:4a:a9:07:8f:74:62:d8:00:6f:12:e2:df:3b:
2d:e9:47:6b:e4:e3:3c:1f:6d:9e:3a:22:3d:21:22:
91:68:57:b1:d4:49:9d:6f:29:82:86:93:b5:64:ec:
e5:74:f4:b1:4f:07:b0:68:cd:31:fd:ef:58:72:9a:
3d:e4:9b:38:a8:e8:fa:3d:90:2c:10:03:46:e4:11:
41:45:b9:24:1e:f4:cf:73:d6:85:42:60:4e:e9:ae:
b6:6c:22:3e:25:e4:50:35:9a:e8:da:e9:d8:b9:3e:
04:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:EF:EB:E2:86:0C:72:E2:65:71:F9:1D:23:8A:9A:3E:2B:84:B9:58
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/92acd6c0-8b83-4b22-a94f-071a618a439a.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
43:bf:40:62:84:b0:fb:f0:c1:f3:fb:7d:3b:6d:de:16:45:e1:
22:1e:5b:0a:50:e1:8e:5a:9f:af:e9:78:33:1c:09:96:1a:6a:
0d:55:70:e3:33:a2:75:7e:7f:b0:15:f5:e6:c7:a8:77:48:1a:
fe:93:e4:de:25:04:e1:3d:18:29:42:43:83:ce:42:15:7a:26:
1f:e2:84:e1:62:87:ad:7c:6c:57:8b:93:66:7a:6c:02:f4:c1:
53:db:5d:01:68:4a:0c:09:0f:d5:52:af:fd:73:1a:be:a7:6a:
e5:53:fe:cf:e8:c2:31:b3:49:38:c3:1b:7d:16:ea:69:63:f8:
f5:5f:be:11:81:d2:f9:db:90:08:63:29:5a:73:73:64:1e:64:
f5:dd:58:8c:ab:56:73:b8:5d:f0:99:9c:c1:53:86:55:ed:a2:
92:09:09:36:3c:5f:99:a2:c1:9c:66:a8:36:41:d9:cd:25:b9:
2c:a9:4f:f5:21:84:21:41:73:12:67:5a:25:62:2b:c9:b8:84:
76:ef:b2:49:00:1b:89:90:33:4f:f1:49:14:70:72:1b:0c:af:
03:07:dc:f6:1d:45:c1:f0:f4:a1:4c:12:bf:1f:58:59:0c:b9:
f4:0c:81:9d:9d:46:9f:f4:e9:9b:05:e4:c9:eb:75:b3:7d:06:
ef:40:ba:cb
-----BEGIN CERTIFICATE-----
MIIF+DCCBOCgAwIBAgIURY1xzJERds7QVKPLS3GCLccEtzgwDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyMjc4YWFiODc4ZjI2NjJjZTE0ZTkwNWUxOGViY2I3NTIy
ZjkyYjM2ODRiYzQ4NjViNGQwHhcNMjMwODE4MDAwMDAwWhcNMjMwOTIyMjM1OTU5
WjB6MUkwRwYDVQQFE0BmZjBhNzQ1NmEzZDA4MjYxMTVjYTg3OWE5MWJhMjg5OTgw
ZjZhY2FlNjFjNDk3NzMzNjM0MDE2Mzc3ODEyN2ZkMS0wKwYDVQQDEyRjMGNlMjNl
YS00M2ZjLTRiZTQtYmVlZS1jMDE0NzgxMjJhMGUwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQDeHIc4tcnjcVWNCNnVeClkScojBWgIXxrt0ouDYtW2vbqu
AeVtOB5CIikOGCKffCdyXhA9wMEFnCrTOMUwZUlCqzhH6BljMsUPiJwkp817jwkx
3oDWpsqdUTPeMhjYNTaUfeAB/BoP+hFBbX/zkqf/YgqLIBtWOcqyby76eh7Sw7r2
PTE+PY6LiNwLDsUEnwymm1aHNY0XSqkHj3Ri2ABvEuLfOy3pR2vk4zwfbZ46Ij0h
IpFoV7HUSZ1vKYKGk7Vk7OV09LFPB7BozTH971hymj3kmzio6Po9kCwQA0bkEUFF
uSQe9M9z1oVCYE7prrZsIj4l5FA1muja6di5PgR/AgMBAAGjggKxMIICrTAdBgNV
HQ4EFgQUTu/r4oYMcuJlcfkdI4qaPiuEuVgwHwYDVR0jBBgwFoAUVajdRdlEE/nR
kvUsY86M+8YUlrgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy8xNDMzZWJmZi1k
ZmQ2LTRjNWMtYjdmZi05OWM4NTEzOWQ0YTgvMjc4YWFiODc4ZjI2NjJjZTE0ZTkw
NWUxOGViY2I3NTIyZjkyYjM2ODRiYzQ4NjViNGQuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvMTZmMWZmZWUtNzQ2MS00Njc0LWJiMDUtZmRk
ZWZhOWEwMmM2LzkyYWNkNmMwLThiODMtNGIyMi1hOTRmLTA3MWE2MThhNDM5YS5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzE2ZjFmZmVlLTc0NjEtNDY3NC1iYjA1
LWZkZGVmYTlhMDJjNi9KbUxPRk9rRjRZNjh0MUl2a3JOb1M4U0dXMDAuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBADHJHgwDQYJKoZIhvcNAQELBQADggEBAEO/QGKEsPvwwfP7fTtt3hZF4SIe
WwpQ4Y5an6/peDMcCZYaag1VcOMzonV+f7AV9ebHqHdIGv6T5N4lBOE9GClCQ4PO
QhV6Jh/ihOFih618bFeLk2Z6bAL0wVPbXQFoSgwJD9VSr/1zGr6nauVT/s/owjGz
STjDG30W6mlj+PVfvhGB0vnbkAhjKVpzc2QeZPXdWIyrVnO4XfCZnMFThlXtopIJ
CTY8X5miwZxmqDZB2c0luSypT/UhhCFBcxJnWiViK8m4hHbvskkAG4mQM0/xSRRw
chsMrwMH3PYdRcHw9KFMEr8fWFkMufQMgZ2dRp/06ZsF5MnrdbN9Bu9Auss=
-----END CERTIFICATE-----
Generated at Tue Apr 8 23:36:25 2025 by rpki-client