Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/c4e92b80-908e-4f2e-8e7f-9cf9c53d7c73.roa
File: c4e92b80-908e-4f2e-8e7f-9cf9c53d7c73.roa (raw, json)
Hash identifier: XFft3cJcC7Lf12gs+bP7+d+WrWLG/e82iawNPIqibmw=
Subject key identifier: 4E:1E:8A:5E:56:AF:D2:F9:78:09:07:34:BD:C2:F9:D8:B0:73:E0:C8
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 2A590581753A80D47DEADACBC27323164AE30037
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/c4e92b80-908e-4f2e-8e7f-9cf9c53d7c73.roa
Signing time: Sat 06 Jul 2024 00:00:00 +0000
ROA not before: Sat 06 Jul 2024 00:00:00 +0000
ROA not after: Sat 10 Aug 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2a:59:05:81:75:3a:80:d4:7d:ea:da:cb:c2:73:23:16:4a:e3:00:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Jul 6 00:00:00 2024 GMT
Not After : Aug 10 23:59:59 2024 GMT
Subject: CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:fc:6d:91:f2:d0:01:c3:3b:1c:b8:29:d8:b5:
59:7a:ec:44:0f:3d:82:9a:bc:6e:5b:70:ba:25:7b:
71:d8:da:56:0c:62:00:82:e0:f6:80:29:56:6c:d4:
0f:b1:1b:3a:57:99:25:63:9b:60:14:b6:3b:00:0f:
20:8b:b2:0a:55:84:eb:66:64:ad:05:ca:bc:0d:1c:
76:44:81:5d:4f:46:74:09:78:7f:a5:00:53:70:66:
53:fe:be:ce:78:8c:68:6e:d5:c5:29:37:8d:cd:2c:
ee:c5:dd:f1:56:11:0d:41:f2:0d:8d:5d:61:68:5f:
1e:d6:11:05:81:0d:bf:f2:b2:9b:b6:b1:23:e7:6e:
d3:32:5b:5e:c7:67:fa:c6:0e:e4:a3:71:6c:1b:6f:
67:44:59:17:9b:b0:39:cc:cd:ff:9d:a1:da:e7:3e:
af:a5:e9:f4:d2:b6:08:87:3e:35:63:bf:65:13:6f:
e1:df:fa:e1:05:1c:7f:86:a2:32:63:76:cd:e8:2c:
42:de:87:cd:56:04:18:be:5c:7b:e2:17:09:38:b9:
6b:4d:7a:25:56:14:aa:a3:12:67:76:c7:22:98:a3:
1e:42:cc:f8:8f:e8:e4:03:19:3a:84:9e:9c:77:28:
6a:fe:8a:ef:83:d7:d6:08:4d:ef:2e:80:98:cc:2f:
f4:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:1E:8A:5E:56:AF:D2:F9:78:09:07:34:BD:C2:F9:D8:B0:73:E0:C8
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/c4e92b80-908e-4f2e-8e7f-9cf9c53d7c73.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
3d:bc:29:28:52:e8:27:31:49:cc:72:3e:12:14:f7:93:ae:55:
62:73:9e:66:80:c0:38:d8:5b:7a:fd:21:67:26:60:27:ef:c5:
7e:6b:62:fa:06:84:1b:f2:c0:b5:8c:1c:d1:8a:5f:04:03:b6:
cc:e8:37:26:6a:7f:27:d3:57:dd:92:28:40:be:5b:a6:8d:35:
e6:e2:9d:85:98:2f:64:37:e3:6b:29:ca:03:f5:4e:6b:96:4c:
af:ef:fb:a8:fd:99:ef:89:e1:29:e1:f6:33:28:6f:21:64:16:
0a:3f:42:80:ae:b6:3c:e9:75:2c:ca:e1:1f:e3:73:d2:e1:ce:
15:3c:b8:93:60:16:35:50:b8:50:4e:3c:5a:b2:ff:f7:b7:e0:
5c:40:b7:9a:49:69:41:aa:a7:e7:72:e7:35:70:80:89:60:fc:
c5:44:72:62:57:18:2a:7f:ce:90:61:c8:de:5d:72:f6:d1:fd:
2f:bf:c2:cf:83:c9:bd:c6:3d:b4:5d:96:9c:a3:1e:6a:30:d2:
0d:af:59:8c:c5:2e:3d:93:b5:f0:4b:1d:6a:e8:53:7f:78:93:
f8:4b:ab:7b:ca:8e:c2:4b:c3:71:0e:1d:a3:ef:1f:98:f9:f6:
b7:b7:48:b8:a3:f9:5c:a1:7f:13:df:85:80:a8:74:ed:c6:54:
65:ce:6a:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 15:42:19 2025 by rpki-client