Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/0d425bec-8eca-4939-a601-d22f9bf1434c.roa
File: 0d425bec-8eca-4939-a601-d22f9bf1434c.roa (raw, json)
Hash identifier: rVRJBOu6qMf6vxGzRYW38ziLQPjTPxF+eeW8AUQtBLs=
Subject key identifier: A4:D8:59:69:D0:E4:E1:33:4F:72:A6:05:CF:BC:C8:CC:74:4D:CA:86
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 3F11EEFABFB83DD7DDBAAA888F16C698595346E6
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/0d425bec-8eca-4939-a601-d22f9bf1434c.roa
Signing time: Fri 09 Jun 2023 00:00:00 +0000
ROA not before: Fri 09 Jun 2023 00:00:00 +0000
ROA not after: Mon 12 Jun 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3f:11:ee:fa:bf:b8:3d:d7:dd:ba:aa:88:8f:16:c6:98:59:53:46:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Jun 9 00:00:00 2023 GMT
Not After : Jun 12 23:59:59 2023 GMT
Subject: serialNumber=a9eb460da610da0cd62fd0afbf8e2aa81f5f5393c8218f74c800f2e66dbd9fd0, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:f6:d6:8f:19:02:49:8c:9f:d0:79:45:e1:27:
ed:9d:a1:3f:04:31:41:21:1e:f0:81:e9:5d:b7:e7:
8f:1b:b3:97:49:70:2d:83:7d:56:f5:1b:e7:69:c6:
25:dd:d2:70:a8:19:c0:9b:ee:56:e2:e2:e8:4a:0c:
67:c7:d3:74:d6:45:5b:55:3d:a3:ab:d7:d4:c7:b5:
ee:79:9d:ab:2d:c7:c4:9f:74:a2:7a:bd:eb:f0:81:
8b:5d:c1:60:12:55:12:0f:ce:94:40:44:68:ee:46:
92:0f:44:b5:0c:a5:33:0d:7d:43:36:42:98:a4:23:
02:0e:a7:1f:2e:bf:88:39:02:8e:32:bd:e6:34:2b:
0f:e5:05:07:35:52:ba:8e:2f:17:3a:cc:e5:99:1f:
82:6f:c7:d5:ab:f4:cc:76:5b:e5:d7:b1:cc:96:65:
44:74:f3:26:2d:98:1d:ba:13:fe:31:8a:be:8e:62:
38:21:c7:f7:92:fc:1f:c8:b8:34:03:a5:30:d2:f0:
39:5a:14:2b:5c:14:b8:fd:fa:fd:a5:fa:3c:97:bf:
1d:16:06:0e:d7:29:91:41:12:86:ad:8b:c6:16:7a:
52:fb:b2:90:99:3d:c8:5e:1a:4e:53:9c:db:13:88:
11:43:81:ba:37:c7:64:c6:47:23:c9:28:2b:4f:3c:
75:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:D8:59:69:D0:E4:E1:33:4F:72:A6:05:CF:BC:C8:CC:74:4D:CA:86
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/0d425bec-8eca-4939-a601-d22f9bf1434c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
5a:a7:35:29:04:8f:90:eb:d7:34:68:93:1c:13:02:de:4e:af:
8b:00:2b:42:16:e2:5a:9d:ad:da:b2:a0:a0:89:21:1c:23:e6:
c7:b8:9a:11:93:f7:03:5b:b2:04:c8:29:26:28:cb:d1:1b:b8:
92:d5:19:49:6e:15:70:27:cc:e8:60:32:f0:c7:12:cb:21:14:
d7:9f:09:cb:2d:0c:36:ff:92:52:ba:5f:55:25:14:9b:e6:07:
77:b9:30:e8:26:6b:f2:0a:e9:1e:10:1a:5b:f2:3b:d1:ca:ec:
27:85:79:21:fb:da:97:e3:c1:9c:d5:f5:6c:ba:18:b8:dc:f6:
48:a0:ba:6d:95:6a:6d:c5:02:73:f8:03:21:e4:cf:12:ff:dc:
2d:fc:bc:4b:d5:13:87:6c:1c:17:65:4f:e5:03:13:a0:70:c7:
9e:9d:17:ee:89:0c:5a:ee:9a:03:97:ff:77:8f:dc:37:39:20:
47:94:48:5e:84:29:49:c3:6b:3a:72:ed:32:89:ca:47:67:bd:
cf:e8:8c:8b:a5:96:df:8d:ab:8b:84:e6:74:dd:50:e8:69:18:
e6:a8:ad:1a:d4:6b:41:e7:51:a5:b5:3c:65:22:3e:e1:8b:8e:
d1:fc:4d:c9:d0:bd:04:d1:46:8f:3d:4c:c7:fa:d3:ae:5a:f6:
f5:62:07:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:37 2023 by rpki-client on console-ams.rpki-client.org