Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/9aacc80f-8b66-445e-bded-e309b92f7aaa.roa
File: 9aacc80f-8b66-445e-bded-e309b92f7aaa.roa (raw, json)
Hash identifier: f/7wnvLFjdMf5kff6pInfcULWY3wXNDpGe8KOVDz+fY=
Subject key identifier: 9F:E5:D9:5C:D1:44:1F:56:FB:B3:05:1A:77:6F:B8:AD:A8:CD:C0:45
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 40046763838C86562CCEC5D77E3D618371D61AB7
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/9aacc80f-8b66-445e-bded-e309b92f7aaa.roa
Signing time: Fri 16 Aug 2024 00:00:00 +0000
ROA not before: Fri 16 Aug 2024 00:00:00 +0000
ROA not after: Fri 20 Sep 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
40:04:67:63:83:8c:86:56:2c:ce:c5:d7:7e:3d:61:83:71:d6:1a:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Aug 16 00:00:00 2024 GMT
Not After : Sep 20 23:59:59 2024 GMT
Subject: CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:f7:9a:5e:e9:fe:7e:85:33:d1:8e:94:0a:9e:
14:db:29:7a:47:46:2d:15:74:53:11:0d:6a:74:0b:
16:fb:bf:46:fb:4f:d8:7d:6f:a3:31:e6:2e:26:2c:
b3:c8:d4:c7:86:30:b7:a0:d2:39:32:cc:53:19:19:
a5:38:ae:ab:4b:4b:0e:58:45:32:31:90:0d:96:e8:
c5:d3:99:4c:b4:aa:8c:6b:0a:b9:32:83:b8:3c:39:
42:7e:6d:ac:90:37:55:93:8a:87:8b:65:5e:ba:12:
f9:ee:6e:72:82:34:c6:a1:c2:e8:b5:8c:a7:2d:78:
78:f5:c0:ca:e4:92:54:f0:e6:bc:e3:f1:99:f8:c1:
33:86:21:49:bc:68:3e:cf:ce:89:47:c9:6d:e9:3a:
b2:0e:97:40:26:bc:2f:fd:0d:fd:08:5a:81:46:8d:
16:8a:10:41:05:f8:32:cb:6b:d7:af:2f:68:0e:d5:
87:24:76:7c:84:fa:77:5a:c8:6b:31:33:1c:fa:32:
65:ef:49:df:97:71:6f:b0:f7:42:84:0c:76:d4:2f:
21:b5:62:ed:fb:2f:96:b8:9c:52:63:fe:a6:16:7a:
92:9d:2f:bc:85:1b:12:e3:61:7e:7d:3e:47:7e:89:
92:c5:18:14:38:50:ec:5d:93:7a:d7:26:ef:98:26:
08:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:E5:D9:5C:D1:44:1F:56:FB:B3:05:1A:77:6F:B8:AD:A8:CD:C0:45
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/9aacc80f-8b66-445e-bded-e309b92f7aaa.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
82:05:7d:26:66:77:4b:28:ce:b6:5b:17:b3:10:2f:55:36:a0:
cf:6e:0d:41:fb:c9:7d:79:27:1e:d0:f9:fd:ae:3d:9a:2d:cd:
45:6f:17:77:8f:e1:c8:9c:61:49:b2:6b:bf:52:3e:64:46:2c:
18:3b:5d:64:23:d6:01:e9:8d:5c:40:92:0e:7a:78:09:d6:b6:
35:60:04:c3:80:07:b7:72:5e:43:5d:94:a0:9e:7f:b8:6b:88:
93:01:8b:8e:51:cc:76:09:60:59:a5:88:02:7f:2c:9e:ce:55:
2b:d2:06:45:ac:c1:af:1e:5d:c9:24:41:35:fc:47:a2:96:1a:
a0:9b:b1:0f:f7:ef:08:0e:1c:71:cb:a9:92:b1:1d:9e:1a:b9:
76:ea:17:94:10:fb:fa:a2:0e:4d:a8:0d:d5:9f:08:7d:9c:89:
c6:d1:19:8b:b5:98:1d:7a:7f:e8:d7:ce:37:98:84:fb:b4:ed:
a3:df:97:12:ad:f3:de:26:bd:0d:50:f7:cf:f0:86:d8:9a:7a:
0b:c4:5e:f2:51:60:a3:4c:28:9e:01:c2:31:52:14:39:a2:17:
8f:97:8c:a1:46:97:20:fd:37:22:8b:0a:4d:97:25:1a:0a:d9:
46:bf:ee:6c:db:81:69:a7:1f:f3:d5:49:4f:6f:c6:07:fe:a3:
51:a7:9f:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 15:40:34 2025 by rpki-client