Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/b64e48b6-e613-4209-840e-1dbfc501f70e.roa
File: b64e48b6-e613-4209-840e-1dbfc501f70e.roa (raw, json)
Hash identifier: wadE+r8l2nSYWt5EPExLukk7ErxBeaF44bOvQFT5tPI=
Subject key identifier: 66:84:18:C3:87:53:C2:47:65:B9:89:7E:6D:27:79:F6:EE:26:A5:8B
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 7DA6106766245B49784E4568347B36DDAED1EA34
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/b64e48b6-e613-4209-840e-1dbfc501f70e.roa
Signing time: Sun 25 Jun 2023 00:00:00 +0000
ROA not before: Sun 25 Jun 2023 00:00:00 +0000
ROA not after: Sun 30 Jul 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7d:a6:10:67:66:24:5b:49:78:4e:45:68:34:7b:36:dd:ae:d1:ea:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Jun 25 00:00:00 2023 GMT
Not After : Jul 30 23:59:59 2023 GMT
Subject: CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:22:95:06:60:5b:57:10:ae:a0:04:6c:c0:d7:
7d:a9:d1:70:49:20:41:2a:27:c6:7f:c4:dc:ed:3b:
39:0b:ad:9f:95:a6:8d:22:f0:f0:86:cb:e4:f9:ea:
2e:47:99:5a:d3:23:80:21:85:a3:e9:a8:de:95:34:
00:d3:76:c5:ab:c1:60:28:9e:a0:11:11:9f:20:98:
7a:20:2d:64:da:f3:8d:30:db:63:c0:d0:b0:e6:70:
19:4d:90:87:03:c8:dc:f1:f5:16:18:25:26:40:68:
aa:66:a4:46:a4:ee:d3:03:0a:98:f4:69:b5:d4:74:
da:30:37:22:8b:32:57:93:71:c3:10:54:ea:eb:ae:
d3:96:71:4c:6f:d9:e7:04:85:39:44:24:7d:66:40:
21:ec:08:6d:d3:8a:bb:b6:6e:f2:b6:31:49:02:e5:
d1:29:69:88:b8:42:7c:26:58:18:a2:f4:d7:a9:f8:
c0:8f:fd:5a:3d:ea:45:c8:41:04:a9:e4:5a:14:b8:
a1:61:01:69:23:77:06:21:04:77:44:52:45:a6:5e:
b8:b1:1b:7e:e8:b9:77:82:89:58:c2:33:cf:a8:43:
2f:1d:8d:d1:64:5d:49:2e:48:15:8e:09:82:ee:3e:
57:53:d0:a4:47:ea:b3:3b:79:d6:f9:1c:71:c8:fb:
20:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:84:18:C3:87:53:C2:47:65:B9:89:7E:6D:27:79:F6:EE:26:A5:8B
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/b64e48b6-e613-4209-840e-1dbfc501f70e.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
97:3f:98:7d:c4:86:62:4d:6c:45:51:62:a1:a3:88:a0:59:e9:
2c:f0:eb:9c:98:0d:1c:a4:74:49:03:28:22:78:e8:46:53:57:
b8:c1:2d:72:91:c3:fe:10:81:9a:06:0b:88:a3:00:11:c1:57:
9b:4f:81:72:9d:10:7b:f5:df:a8:b8:24:13:a9:02:c0:c8:83:
b5:d9:0f:0e:6c:a8:22:64:f9:5c:d6:f3:6e:c9:82:ad:8f:c1:
4f:8a:88:9e:7c:42:56:ea:5c:ba:cb:f9:a6:e9:08:8f:55:b5:
61:94:e8:ec:b4:cb:db:5e:ad:ca:f0:86:10:f5:1f:07:78:c3:
f8:8d:d3:76:96:85:5f:e4:9e:38:d8:af:84:d3:81:a6:76:76:
6f:e2:12:b2:dd:b8:c0:f1:07:42:8c:99:94:0b:a7:2a:0c:0d:
2a:8d:6b:61:c9:15:d6:69:a8:d2:be:3c:13:31:9e:2b:29:e5:
2c:be:11:62:2a:69:9f:6c:cf:08:57:b8:2c:68:d2:ab:55:0f:
92:3c:b6:b5:17:8b:b1:50:a7:f6:ee:80:71:5b:b2:98:80:e4:
9d:98:2a:43:6f:f0:95:50:f5:a0:e0:5c:ee:7f:73:c4:45:1d:
46:91:bd:62:63:05:df:ca:48:66:65:af:14:48:64:f4:1d:99:
ee:11:f5:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 22:33:36 2025 by rpki-client