Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/b55b9cda-7f49-49a4-9440-20b27cf7b97e.roa
File: b55b9cda-7f49-49a4-9440-20b27cf7b97e.roa (raw, json)
Hash identifier: uGtFeJ4ff6og2jqfHxEWuqlTB1hlKdQVqbsw0N8JpBg=
Subject key identifier: FA:94:7A:5F:04:30:52:19:FF:14:5E:26:62:6B:C8:2E:38:B2:37:86
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 1BC9C203B1EDE5A9305359135015E96B6D0D1C42
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/b55b9cda-7f49-49a4-9440-20b27cf7b97e.roa
Signing time: Tue 01 Oct 2024 00:00:00 +0000
ROA not before: Tue 01 Oct 2024 00:00:00 +0000
ROA not after: Tue 05 Nov 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1b:c9:c2:03:b1:ed:e5:a9:30:53:59:13:50:15:e9:6b:6d:0d:1c:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Oct 1 00:00:00 2024 GMT
Not After : Nov 5 23:59:59 2024 GMT
Subject: CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:22:72:b6:7e:c6:03:d8:53:19:7a:a7:43:1c:
eb:41:26:97:61:20:56:e9:5e:7f:ca:9c:71:a9:d7:
49:4c:b5:4c:ca:67:cd:78:45:84:b4:ac:52:aa:9f:
e8:f9:c2:20:ac:58:1b:a3:86:3b:b3:fc:1b:fd:61:
5c:b1:b2:48:16:1c:5f:d7:d5:74:5d:d4:fe:46:34:
f6:03:72:f9:7c:35:15:a1:39:b4:4d:82:92:06:12:
2a:27:26:e7:35:7e:28:ab:d6:af:7e:74:e0:fd:e0:
09:95:c5:63:26:9b:ac:27:fb:08:1a:3a:d6:b5:f5:
45:4a:57:01:8b:85:8a:28:11:80:69:14:e5:e8:60:
1c:84:b7:13:52:99:63:2a:34:82:db:5e:ce:ba:62:
6e:40:38:f9:10:d4:7d:16:0d:bb:9e:2b:18:b0:01:
3c:0d:18:c3:92:1a:f2:34:51:1c:e5:c4:ec:78:66:
f0:19:8a:c3:32:dd:5c:63:65:83:ae:6f:da:f0:69:
f5:d0:17:59:47:40:6c:17:95:39:86:33:02:76:71:
93:ff:9c:08:17:89:43:51:dd:28:d9:4f:2a:62:fd:
94:48:1a:85:d0:dc:f8:53:59:53:71:f5:56:b3:25:
6e:9c:fa:2b:cf:19:f4:df:47:ca:e6:a8:91:a5:15:
c8:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:94:7A:5F:04:30:52:19:FF:14:5E:26:62:6B:C8:2E:38:B2:37:86
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/b55b9cda-7f49-49a4-9440-20b27cf7b97e.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
85:35:51:50:8c:90:c2:35:9f:a4:42:5f:d5:4a:23:12:16:2c:
9e:fd:8d:e1:3e:6e:0a:ad:fb:cf:25:d8:78:d2:39:13:c2:76:
b4:d8:b7:a2:b0:c6:24:05:0b:c7:fa:9e:17:05:31:5b:55:1c:
ba:e5:b7:33:e4:fe:ca:8d:fb:40:54:bb:6f:af:e3:8a:03:03:
ef:4b:e5:92:14:12:89:d4:a5:f6:75:24:c1:d5:bf:5f:f4:49:
7b:a0:24:78:7b:73:d2:b2:6d:6a:b5:6a:be:8f:11:95:45:d3:
e5:53:ac:5f:d0:fa:ef:3c:4e:27:c0:e6:e4:d6:01:01:60:e0:
6e:3b:33:a6:13:89:b1:d5:30:08:67:63:5c:1f:ec:f5:1c:f2:
e7:bf:00:92:b5:22:ef:6e:61:bf:69:29:f2:49:bf:77:96:b1:
49:3a:ad:7f:25:ea:ce:ba:19:aa:a8:27:fd:2d:45:b2:06:b5:
d9:12:44:b3:d7:01:8b:ab:d7:eb:39:79:82:85:11:e5:8b:26:
b6:22:10:85:28:80:60:73:84:0d:3d:b1:86:59:39:7b:61:d4:
4d:bd:95:9f:78:d9:26:80:6d:49:65:d5:2d:a0:8d:61:f8:11:
ed:ae:2d:c7:60:88:cf:65:e1:0d:96:e9:37:68:20:fa:eb:b4:
dc:3f:d8:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 22:33:47 2025 by rpki-client