Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/c556d0b2-ea14-438e-87de-7d8d3b69046c.roa
File: c556d0b2-ea14-438e-87de-7d8d3b69046c.roa (raw, json)
Hash identifier: 6gD0gUieBMuKIRyQ1BaOlevJ9VQyA2sgkmpUJUUcLUA=
Subject key identifier: E9:01:10:F2:62:1E:D1:2F:73:61:45:93:C7:5D:91:DA:DF:D5:6E:45
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 201980C84FACBC6EA424F65BDC896043AE97D00D
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/c556d0b2-ea14-438e-87de-7d8d3b69046c.roa
Signing time: Thu 16 Nov 2023 00:00:00 +0000
ROA not before: Thu 16 Nov 2023 00:00:00 +0000
ROA not after: Thu 21 Dec 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
20:19:80:c8:4f:ac:bc:6e:a4:24:f6:5b:dc:89:60:43:ae:97:d0:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Nov 16 00:00:00 2023 GMT
Not After : Dec 21 23:59:59 2023 GMT
Subject: CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:72:cc:dd:38:e2:9a:dc:7d:8a:26:ea:45:ae:
a1:6f:05:be:65:7b:e6:c2:08:94:2a:cf:c6:77:b3:
bf:18:f4:bb:d4:7d:be:76:aa:e2:09:0f:01:df:3c:
8a:8e:28:9c:8a:14:08:d1:c3:fd:1a:47:43:42:9b:
9f:7c:0b:ea:94:db:63:bc:ce:4f:a7:54:a3:2f:e8:
87:4d:9d:16:d7:78:bb:17:25:ee:74:53:dc:8a:a3:
19:8e:2c:47:22:cd:a6:09:f6:6c:34:51:93:df:f1:
6e:01:05:0c:0b:0f:b9:04:68:e3:78:4e:5c:56:38:
db:e9:aa:f1:b1:da:94:ad:b4:a0:33:38:8b:c8:56:
7b:cb:fb:3d:92:97:df:8c:34:21:ec:fa:8b:5f:5c:
f1:a1:92:9e:77:01:51:78:a8:ab:39:6e:26:d3:b0:
6d:d9:db:1c:f0:bc:3d:16:26:6a:b4:3a:ff:13:08:
05:47:6f:43:c8:6d:80:26:bb:1b:84:53:b6:9c:4f:
bb:0b:65:61:2d:41:d7:c4:cf:e6:18:44:eb:99:66:
8b:01:c9:e4:97:97:ca:cc:90:6e:41:48:ae:5d:fb:
dc:05:a6:d9:64:84:6a:1f:fa:c8:6c:32:f7:48:3b:
94:9b:11:f8:56:a1:65:82:19:e0:fd:f6:77:4e:be:
a2:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:01:10:F2:62:1E:D1:2F:73:61:45:93:C7:5D:91:DA:DF:D5:6E:45
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/c556d0b2-ea14-438e-87de-7d8d3b69046c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
70:2b:9c:2b:a8:b2:0c:57:bb:2a:13:1a:cf:87:2e:96:49:d8:
60:5d:ed:d8:cd:ba:61:1c:08:b3:38:b2:99:c5:22:e7:4c:f6:
7a:da:a0:fb:24:7d:82:18:af:91:c0:27:02:22:89:8f:d5:35:
20:9a:45:57:55:4d:a1:89:83:a1:97:97:ba:57:71:8a:a6:e8:
a1:50:08:87:1e:5a:f0:69:fd:b8:c0:df:3f:8b:8b:92:1b:a1:
c5:dc:24:f7:31:24:e7:37:f4:0b:e6:be:bb:59:87:0a:f1:ca:
89:31:6f:73:0f:a3:fa:0a:5a:4b:57:aa:0d:ee:3e:ee:30:2f:
d1:1f:3c:fa:0b:f9:6a:e1:ec:f3:7d:9e:28:98:20:85:ad:18:
98:a9:32:a2:81:38:61:bb:d6:73:40:39:15:5f:93:27:61:38:
3f:7a:2f:17:f5:6a:b6:95:10:fe:f5:29:ce:09:0a:36:bc:e8:
5f:5f:d7:9b:4d:6f:5f:92:17:42:d1:be:c4:40:8d:38:aa:de:
20:ba:53:3f:f3:f2:46:d6:38:b3:e8:f3:25:a5:96:81:82:64:
bd:35:60:eb:d9:49:e3:fe:8b:34:96:33:f6:e2:7d:67:bc:0d:
e1:2b:73:77:95:17:66:6b:7e:0e:82:27:56:8f:3d:18:6a:37:
98:9c:59:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 07:50:16 2025 by rpki-client