Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/cb8f62c3-8403-4c8a-a67a-e985f1541aa7.roa
File: cb8f62c3-8403-4c8a-a67a-e985f1541aa7.roa (raw, json)
Hash identifier: yP2Nn+xQTodgNC/AAaCjgpyzDsC2/sEMAJIUs+OPB5M=
Subject key identifier: 97:78:30:65:6F:29:78:6A:6D:9C:72:18:46:B4:14:DF:8E:03:A1:DA
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 64A4CBD97754B9BD34DF97661A893C940514EBCB
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/cb8f62c3-8403-4c8a-a67a-e985f1541aa7.roa
Signing time: Sun 23 Feb 2025 10:13:24 +0000
ROA not before: Sun 23 Feb 2025 10:13:24 +0000
ROA not after: Sun 30 Mar 2025 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
64:a4:cb:d9:77:54:b9:bd:34:df:97:66:1a:89:3c:94:05:14:eb:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Feb 23 10:13:24 2025 GMT
Not After : Mar 30 23:59:59 2025 GMT
Subject: CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:31:fe:2e:4d:a6:19:c3:b2:db:d0:01:f0:ba:
5b:58:d5:33:2b:50:da:44:17:ec:de:0e:c0:41:93:
b5:b5:c5:8a:c5:f1:40:49:8a:26:f4:19:6b:24:20:
21:23:99:84:56:d5:42:e6:69:c8:48:ed:94:27:84:
bb:0e:d7:27:81:94:e0:c9:30:7b:47:2b:63:bb:f5:
bd:96:d1:c8:d6:47:b0:bb:51:0b:70:c5:87:96:eb:
99:3a:44:6d:6f:5d:9e:a2:ab:bc:38:4b:76:59:54:
35:5e:f6:12:3b:bb:d0:45:89:2c:74:2b:1f:dd:a1:
80:7f:2c:e4:c5:02:06:79:35:de:25:59:53:9a:7a:
35:ff:fa:ba:dd:c7:a3:0a:51:5c:0c:a6:0e:64:c0:
4f:06:ff:bb:7c:cf:f1:02:b9:36:66:e7:5c:70:cf:
e0:7a:fb:5f:32:d8:fc:f8:05:7c:5d:75:36:1f:25:
3b:d2:0b:50:15:60:6b:b1:47:d1:bb:1a:a5:d2:59:
61:97:30:e3:46:1c:75:73:00:49:96:ea:7f:6c:1d:
4f:67:72:01:29:3d:ae:9c:8f:6c:73:bd:1e:f9:5d:
35:80:b9:1d:df:97:92:95:ce:e5:1d:54:90:33:a7:
7c:4b:d4:92:b9:29:46:b0:24:2f:6e:0d:cb:b8:d3:
f1:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:78:30:65:6F:29:78:6A:6D:9C:72:18:46:B4:14:DF:8E:03:A1:DA
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/cb8f62c3-8403-4c8a-a67a-e985f1541aa7.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
84:35:34:d0:bb:a4:24:31:f5:d4:35:26:d1:5e:b4:e4:2f:2e:
15:1f:cc:e0:da:88:01:56:7a:4d:eb:77:d1:8a:3d:73:e0:eb:
a5:a6:6e:60:ac:5a:d7:a9:22:c3:13:fa:db:dd:05:00:e0:1f:
2d:52:8d:66:ba:97:7d:ba:04:32:81:4c:a5:1b:22:63:d7:c7:
3a:2b:6b:f2:17:39:2a:1e:59:46:32:ef:94:b0:ec:de:ee:67:
b0:1a:e7:e6:96:bf:80:98:51:54:3a:d9:f6:53:8d:3f:eb:bf:
2f:84:4e:32:c2:04:c5:c1:75:52:20:f6:0a:2e:79:d0:d5:26:
e4:1f:fd:f5:2b:de:2e:99:a1:32:43:09:2e:4e:6d:22:6a:98:
44:89:10:65:ae:e9:96:72:c6:9e:3a:ef:4c:b8:93:d5:ea:e6:
4f:fa:5e:e5:0b:f8:20:57:fc:15:67:ff:15:03:ca:cb:91:5b:
9c:be:17:ea:35:46:53:4f:1e:13:7b:83:11:8b:25:9a:01:da:
49:60:e6:3c:c6:69:06:ae:81:f5:2a:c6:93:ba:98:69:26:e2:
92:dd:c6:b8:d2:1c:12:25:51:9f:37:f6:1f:2b:b5:bb:3b:e7:
2a:3b:39:36:f8:e8:c1:f8:90:1a:0e:22:b4:06:57:03:66:d7:
c3:1d:6c:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 17:59:38 2025 by rpki-client