Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/a5b2009f-4b7a-41f3-9766-e40af1577b53.roa
File: a5b2009f-4b7a-41f3-9766-e40af1577b53.roa (raw, json)
Hash identifier: rU+UXjalXE+SqKlH0MvLm1GNS9R76dKMQnZIYp8VPcE=
Subject key identifier: 6E:9B:BE:49:40:69:FB:63:45:8D:2B:4E:DB:88:5A:F8:F7:E9:DC:C8
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 0D9A0D1095D334EEB20B94CF3D6124A35C8D5B6E
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/a5b2009f-4b7a-41f3-9766-e40af1577b53.roa
Signing time: Tue 24 Sep 2024 00:00:00 +0000
ROA not before: Tue 24 Sep 2024 00:00:00 +0000
ROA not after: Tue 29 Oct 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0d:9a:0d:10:95:d3:34:ee:b2:0b:94:cf:3d:61:24:a3:5c:8d:5b:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Sep 24 00:00:00 2024 GMT
Not After : Oct 29 23:59:59 2024 GMT
Subject: CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:08:7e:7f:f4:22:ca:50:cb:c6:57:fc:e5:a7:
ce:f8:fd:c1:ad:00:8e:d4:8d:78:1f:56:a2:18:cf:
5c:8b:0e:c1:06:99:26:e4:f0:ea:4c:5e:45:37:8c:
46:e0:06:86:65:b1:a0:a6:0c:07:f9:6d:e5:5b:9e:
b9:26:02:65:ca:cb:e7:53:20:87:9f:08:14:cd:7f:
2d:9f:5f:af:6d:ff:f0:c0:f4:e2:9a:9f:d0:86:f9:
90:72:fd:de:45:d7:0f:2c:ed:23:09:38:d8:39:cc:
83:7b:a5:ec:08:c3:45:ee:32:35:53:51:37:80:ef:
f3:6f:59:1e:00:bc:ee:20:9a:07:e2:84:da:22:bf:
c7:e0:58:c4:89:ae:e8:c7:7f:df:ee:79:c0:2b:75:
9b:84:19:8d:ed:71:ae:c7:ad:ea:06:bd:37:0b:ac:
35:e4:c5:33:9f:f3:a3:f1:41:0d:7f:29:f2:38:3a:
15:8f:49:6d:cb:4d:f8:46:33:3a:76:77:88:9d:8e:
c2:3d:84:77:b7:de:3f:3e:79:c1:e8:93:31:ed:91:
86:57:84:8e:dd:6e:0b:5f:0b:dc:42:44:5f:b4:c1:
5a:69:9e:76:6f:84:c8:c7:70:7f:f3:01:ea:41:36:
cc:e4:c7:d8:52:d3:45:1b:34:c4:da:02:c2:1b:d5:
3f:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:9B:BE:49:40:69:FB:63:45:8D:2B:4E:DB:88:5A:F8:F7:E9:DC:C8
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/a5b2009f-4b7a-41f3-9766-e40af1577b53.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
3e:cd:89:3c:03:b5:a7:6e:cb:ef:10:3b:e1:f9:7c:1a:fc:e4:
9d:a7:59:68:52:cf:d6:ae:f4:f2:e5:2e:67:55:0f:d3:05:dd:
55:a0:df:4f:0c:fb:c9:97:72:b0:83:db:e9:a5:68:0c:bd:d7:
c2:7c:b1:65:a6:c5:13:c3:e7:e0:41:b8:f1:18:e4:8e:51:41:
48:08:a8:ae:6f:60:94:dc:7f:c2:7e:45:a5:1d:ef:fa:e8:b6:
fd:4b:f1:94:82:5a:79:6d:76:e9:a4:e4:06:51:a7:4a:07:70:
8c:b1:ac:2d:d0:26:32:2f:95:d0:41:e4:7f:5c:99:bb:44:32:
fc:81:e1:8b:99:ea:61:a3:8a:c4:6b:e3:10:8a:bc:91:1b:a3:
a2:bb:6f:00:68:43:0b:74:eb:b2:d2:72:be:69:69:4e:ee:34:
1e:61:cb:a0:46:9b:87:f7:c3:6c:9e:92:4a:99:56:28:54:a7:
f2:b9:a2:ae:a4:32:14:4b:4b:fe:3c:df:22:37:9b:b8:cb:df:
13:57:f2:b4:c1:fc:de:6b:c5:0e:59:79:77:77:bc:55:20:3c:
56:c1:e9:cc:17:09:06:03:3b:0d:f7:f9:4a:03:a2:e9:7d:b4:
fe:fb:06:bd:88:14:d8:85:c7:19:1f:0b:a7:d3:64:35:20:0f:
df:27:04:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 09:09:23 2025 by rpki-client