Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/a65dce41-d589-42c9-8ee2-c49073f1ca3f.roa
File: a65dce41-d589-42c9-8ee2-c49073f1ca3f.roa (raw, json)
Hash identifier: CAHu1VC3o60HkcOe10TvFHU3Ilu2keeu7goYF8QlI9I=
Subject key identifier: 84:8D:04:47:57:97:10:AF:E6:40:C4:DE:2D:B9:A7:00:F8:75:A2:8E
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 205A5EEC029100CC48EA69BC226ABCD10CBA3CB0
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/a65dce41-d589-42c9-8ee2-c49073f1ca3f.roa
Signing time: Fri 22 Dec 2023 00:00:00 +0000
ROA not before: Fri 22 Dec 2023 00:00:00 +0000
ROA not after: Fri 26 Jan 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
20:5a:5e:ec:02:91:00:cc:48:ea:69:bc:22:6a:bc:d1:0c:ba:3c:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Dec 22 00:00:00 2023 GMT
Not After : Jan 26 23:59:59 2024 GMT
Subject: CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:b4:96:95:77:40:81:fe:6c:fc:c6:78:d3:46:
f3:7e:d6:79:0d:a0:5b:d6:85:29:68:a7:de:5e:8e:
2d:6a:8c:73:00:16:24:42:d7:f5:14:df:4f:6e:44:
3f:dd:e9:60:31:e9:f8:ba:fa:bc:7e:59:8a:fc:6e:
f0:bb:6e:96:c7:13:e4:93:4d:bd:24:80:18:27:97:
0d:71:93:f4:24:9f:2e:c9:a9:17:ee:99:0f:60:81:
12:72:3a:2e:eb:cf:f7:d5:25:18:0a:9e:48:0f:68:
89:34:e0:df:f2:7b:f4:ae:90:3b:5f:88:ba:7f:ae:
af:e7:05:b6:79:68:2c:54:84:80:86:ee:b4:9e:7e:
e0:96:2c:fd:63:e7:96:04:35:7c:7f:0d:02:8a:8a:
c0:53:65:c6:74:1d:95:b4:90:25:32:31:46:55:e9:
78:7a:0b:3e:51:b6:1b:cc:10:2b:35:19:01:22:88:
6f:d3:f6:08:31:dd:08:d5:d4:2f:f3:aa:a4:c3:ec:
4f:e8:ae:6e:fe:7b:0b:29:09:ce:a1:9d:80:32:93:
76:3a:3b:44:39:67:af:af:8b:2c:9b:02:ae:e3:5e:
19:09:ed:79:f8:9e:66:a3:7b:a2:d4:07:98:46:c8:
e5:6f:f1:5c:96:05:3f:e3:ea:46:a7:08:53:96:1e:
f8:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:8D:04:47:57:97:10:AF:E6:40:C4:DE:2D:B9:A7:00:F8:75:A2:8E
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/a65dce41-d589-42c9-8ee2-c49073f1ca3f.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
0f:e8:39:6c:71:8a:5f:76:97:1b:5c:db:6b:08:47:8c:f2:8a:
bb:0c:d1:30:7a:f8:4e:e7:0d:e0:2a:89:ee:73:6e:9d:39:f3:
be:13:82:e8:77:2f:e4:ef:fb:a2:27:f9:07:4b:21:a3:41:79:
9b:c1:e9:03:e2:42:17:00:5d:1f:de:93:17:37:58:4a:9f:79:
c8:76:de:3a:f0:d2:08:ce:eb:f6:55:cd:9f:04:ce:13:e1:e9:
ac:42:d6:2a:b1:0b:20:55:2b:a4:d0:3d:39:81:3b:d6:7e:c4:
58:a5:ad:14:1e:bc:61:38:43:64:4d:25:7f:9f:a1:e0:3b:b0:
7a:89:f8:6a:c5:12:07:5f:e4:90:02:b2:30:c6:cc:8c:f2:1f:
92:2a:a9:c6:fe:39:28:17:2a:b4:67:fd:0b:1a:08:aa:8e:08:
b1:fd:2a:05:53:f5:48:b9:07:25:df:6c:ac:ff:26:89:67:bf:
2f:66:14:cc:83:0b:a1:15:de:0f:52:fb:17:eb:02:30:7b:bf:
47:43:22:cd:ef:8c:cb:84:9d:09:b6:43:ff:c1:33:8f:81:23:
37:e8:0b:26:ee:cc:e9:86:17:87:c3:72:bc:d8:16:c3:ca:02:
20:26:fe:b8:e6:9b:98:60:62:f5:ec:4f:cb:77:d3:5d:51:aa:
58:55:e8:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 22:34:54 2025 by rpki-client