Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/c0417d8e-ec96-4a93-a8e4-cc471d580567.roa
File: c0417d8e-ec96-4a93-a8e4-cc471d580567.roa (raw, json)
Hash identifier: vVHw4wMvXIEJ8ZKuBGb2zUa/bfYMilABsrT/ZGQtGOQ=
Subject key identifier: D3:73:E7:92:D9:1C:F4:1F:F0:FD:B2:67:15:A5:AC:DA:18:FA:5E:52
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 4715C90826111DFBDF01E6778CB724A310EAE4CE
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/c0417d8e-ec96-4a93-a8e4-cc471d580567.roa
Signing time: Fri 20 Oct 2023 00:00:00 +0000
ROA not before: Fri 20 Oct 2023 00:00:00 +0000
ROA not after: Fri 24 Nov 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
47:15:c9:08:26:11:1d:fb:df:01:e6:77:8c:b7:24:a3:10:ea:e4:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Oct 20 00:00:00 2023 GMT
Not After : Nov 24 23:59:59 2023 GMT
Subject: CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:0f:a7:86:fd:a5:68:29:10:31:7f:30:3d:0c:
fc:45:c0:59:b7:ae:b6:eb:ad:28:23:98:54:bd:b1:
ca:ba:e4:70:f5:35:dc:f5:a3:47:39:56:17:7d:76:
af:fc:27:5f:a4:7d:d6:65:a7:12:81:09:c7:d2:b1:
66:7d:37:8a:43:cc:8c:e7:7b:0a:cd:8a:45:3e:03:
6b:b2:4c:04:e6:e4:56:16:79:50:f8:be:83:2d:f1:
7b:fa:42:2e:0e:c6:a8:0b:f2:03:c0:07:9a:17:4d:
21:5e:41:99:5c:3e:cf:bc:1d:e9:9b:62:ce:e6:12:
2e:99:3c:c7:b4:98:10:89:f8:a5:4f:2e:c6:1a:59:
2d:79:30:38:82:69:42:18:0b:f8:d1:6e:36:ee:a4:
ff:39:7e:4b:03:db:f2:2e:ba:8d:93:e4:40:50:a4:
8f:47:74:d3:a8:82:0b:98:f9:f4:75:27:c3:7b:51:
f1:91:24:e4:78:fd:bd:81:0c:36:17:54:bf:ba:4e:
a8:72:e6:6e:07:4f:c2:00:c9:4a:80:fe:8b:4c:f4:
09:49:00:5c:4c:ea:8f:1d:13:a5:ae:46:17:21:3d:
24:78:44:19:6d:97:23:78:02:f4:00:83:7a:70:4c:
06:0e:ce:1c:7b:ed:76:8d:20:74:8a:42:1f:e2:30:
1c:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:73:E7:92:D9:1C:F4:1F:F0:FD:B2:67:15:A5:AC:DA:18:FA:5E:52
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/c0417d8e-ec96-4a93-a8e4-cc471d580567.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
76:f5:b4:c6:13:5b:20:40:18:ae:36:aa:85:74:91:03:b4:89:
78:e6:65:e2:a8:9f:7f:de:99:b1:3a:38:af:f5:b8:8c:77:4a:
73:09:cb:61:56:8a:fc:c8:60:ca:99:ac:56:85:48:4d:9b:f8:
f8:35:22:d8:87:e6:31:bb:f8:28:17:da:41:51:7c:ca:8d:17:
71:4f:58:7a:46:e4:44:3b:06:8d:31:40:4d:42:03:a9:6e:03:
41:85:90:ce:71:2e:87:b9:64:cf:4b:78:97:7c:f3:1b:36:44:
a1:4f:82:ba:99:be:42:09:5b:7a:b0:a8:f6:dc:57:43:e6:95:
e1:27:e2:18:ad:da:db:2c:2e:08:6b:30:a6:ad:b7:e9:a5:22:
8b:8b:26:fb:b2:9d:47:11:c6:d1:21:38:ac:7a:0c:5d:75:7a:
15:9b:b6:44:4f:43:3c:70:a6:48:b0:37:9f:af:91:59:3f:37:
de:ab:c3:57:59:09:48:a4:da:7e:9a:c0:1d:7c:c0:c6:b8:b0:
24:6f:93:5c:df:28:0b:d8:a8:b8:5c:34:97:4a:33:2e:a0:9d:
a6:35:33:1f:29:89:c8:9b:f7:44:ef:d6:31:03:0e:f0:53:cf:
f8:21:ee:19:b8:df:6d:e1:3a:62:fe:34:e0:7d:42:95:8b:e1:
35:06:45:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 04:50:30 2025 by rpki-client