Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/cce7b972-903d-4782-9f25-8465b35eef75.roa
File: cce7b972-903d-4782-9f25-8465b35eef75.roa (raw, json)
Hash identifier: 9nyBOnMAPAwux07hIYlNEQtVhOEaYNi2djch7KOKJyI=
Subject key identifier: BF:3C:42:42:20:91:39:E1:8C:55:97:E0:C8:E4:9E:BC:D9:8C:BF:81
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 3A9458B49AD609328132B693A065BF7642585BE4
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/cce7b972-903d-4782-9f25-8465b35eef75.roa
Signing time: Wed 28 Jun 2023 00:00:00 +0000
ROA not before: Wed 28 Jun 2023 00:00:00 +0000
ROA not after: Wed 02 Aug 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3a:94:58:b4:9a:d6:09:32:81:32:b6:93:a0:65:bf:76:42:58:5b:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Jun 28 00:00:00 2023 GMT
Not After : Aug 2 23:59:59 2023 GMT
Subject: CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:dc:7c:f2:9d:03:a5:4b:f2:3c:d8:67:be:c2:
10:05:76:ed:eb:fa:e6:ab:be:39:9a:43:f2:3d:03:
a1:0c:5d:7c:44:5d:c9:89:01:96:a1:ec:33:67:d6:
8b:3e:2e:9f:de:93:14:27:8b:fd:31:37:48:6a:0b:
a3:5a:08:2a:83:cb:60:ea:b8:68:00:c5:e8:77:ee:
1a:36:4b:22:b9:95:1c:19:66:8b:32:6e:10:ee:92:
8a:90:2d:7a:5e:d9:e6:f1:ae:b2:a0:f6:43:4d:ec:
6b:62:df:07:83:ef:86:4e:d4:80:04:48:2b:66:84:
35:5c:ce:12:68:17:b9:08:94:5d:65:4d:f8:25:e7:
e4:6d:d9:7a:9e:92:4e:ae:85:69:c6:48:2b:36:38:
6e:61:9f:24:19:36:31:b0:d1:f7:d2:b2:11:14:56:
d2:52:68:38:8c:6c:f7:14:e2:ff:e5:e6:b4:38:3b:
54:12:2f:0c:a0:6d:ce:ae:b3:17:da:c7:ff:02:93:
1e:8b:7b:da:8c:72:25:93:db:64:a0:6b:50:f7:b6:
56:b0:2c:b7:2a:81:0e:ae:31:9f:8e:e8:a2:53:06:
0a:ac:51:b4:83:f0:00:40:d8:c2:ab:11:14:e9:50:
b0:a8:c0:ca:76:15:81:07:60:b1:a1:39:5f:df:cc:
63:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:3C:42:42:20:91:39:E1:8C:55:97:E0:C8:E4:9E:BC:D9:8C:BF:81
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/cce7b972-903d-4782-9f25-8465b35eef75.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
93:27:03:23:ea:31:f9:a5:4e:07:eb:a5:10:ce:de:15:d3:a4:
43:7b:46:c4:ed:0b:98:40:3d:fd:19:0f:07:41:79:52:eb:92:
12:f0:6b:cf:08:07:2c:ad:33:93:96:11:a4:9a:72:fb:42:f2:
ff:41:cd:a4:88:85:85:ae:bb:58:7b:b0:59:8e:51:fe:b3:ad:
10:a0:0f:dc:5b:7f:66:e9:3e:3a:b9:44:6a:f7:87:7c:0c:62:
5f:f3:c5:49:4f:f2:56:b7:1f:0f:86:d9:df:b2:56:a2:c4:9f:
b3:7a:7b:83:96:e9:ef:2f:ed:3f:fc:22:d3:e2:37:f5:93:a2:
b7:8a:8b:34:3e:d5:4f:ae:d9:8e:d3:40:d5:6b:1c:d0:ca:f1:
d0:cc:96:f8:29:f6:e7:b2:c3:53:8d:f6:c0:42:70:ca:dd:2d:
91:e3:f7:26:9e:81:02:cb:33:18:c7:77:6b:0f:af:9d:eb:4a:
6e:07:65:ec:1f:94:5f:28:34:2d:98:ff:2d:d5:2b:85:3c:f2:
2c:b8:46:a2:23:64:5b:9b:64:46:c9:8c:be:29:4c:96:2a:53:
2f:c1:8b:9f:17:bd:8f:35:b1:7c:78:3c:99:cf:35:e0:a5:57:
da:70:e4:c5:78:a6:19:22:b7:1d:6a:44:a1:ac:46:2e:ac:bc:
a9:d1:ea:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 18:18:15 2025 by rpki-client