Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/dee58d18-1156-4a91-a164-28e6f5c7044f.roa
File: dee58d18-1156-4a91-a164-28e6f5c7044f.roa (raw, json)
Hash identifier: UVHZyjKUckuH99D4myTq1HZxWiNgrGjFMPuouBERPxQ=
Subject key identifier: 55:C8:EB:13:6C:9A:5C:9C:09:B6:54:30:CC:A5:ED:60:63:84:51:7A
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 675524DFEBE54732323F54A0F65FF03B8143AEC7
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/dee58d18-1156-4a91-a164-28e6f5c7044f.roa
Signing time: Thu 08 Jun 2023 00:00:00 +0000
ROA not before: Thu 08 Jun 2023 00:00:00 +0000
ROA not after: Sun 11 Jun 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
67:55:24:df:eb:e5:47:32:32:3f:54:a0:f6:5f:f0:3b:81:43:ae:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Jun 8 00:00:00 2023 GMT
Not After : Jun 11 23:59:59 2023 GMT
Subject: serialNumber=1aa5be3e256f67d627c0c6bc4ced56f2eaa2d836c9a0241c432e326581e5d90a, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:c2:4b:44:ae:8f:7c:93:d1:74:07:e5:00:59:
21:0b:6f:a1:42:e0:85:38:40:a4:76:49:e8:ae:84:
7b:c1:25:45:94:05:64:cb:da:92:4b:13:9d:8d:85:
3b:33:69:63:ba:34:10:98:e0:d4:70:0f:7c:38:74:
63:b9:79:97:69:4f:da:37:2d:73:bc:a2:f4:48:cb:
3f:3e:50:f5:74:e4:49:02:f1:d7:f9:02:93:cc:5c:
2d:71:02:23:50:08:67:4b:0c:bf:46:a1:23:7c:98:
42:16:38:2c:41:37:94:fd:78:aa:7a:aa:65:d6:40:
e7:3a:65:8f:48:9f:bc:04:88:b1:37:9b:9c:19:5c:
38:9f:30:60:69:63:9f:95:6e:89:e0:78:30:64:4e:
c9:f8:d7:26:e7:e8:5c:13:d1:ba:ef:51:f9:ae:fa:
4e:ff:27:54:b9:45:b3:57:44:57:7f:d8:84:b3:86:
75:1d:e3:f9:05:c1:6e:ed:2d:44:56:05:9a:59:2d:
b0:a4:a4:48:65:1a:30:d0:a8:bc:ae:be:be:be:de:
eb:b7:dd:5e:34:5d:ad:4c:65:71:03:84:8c:0d:3d:
67:e6:1c:26:79:19:26:5e:80:be:b8:92:c9:0d:d7:
1f:81:bc:d9:62:1e:11:91:c9:ba:4c:72:7f:54:bb:
7b:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:C8:EB:13:6C:9A:5C:9C:09:B6:54:30:CC:A5:ED:60:63:84:51:7A
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/dee58d18-1156-4a91-a164-28e6f5c7044f.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
61:33:8a:8a:42:d0:84:b2:a1:bd:c5:48:1f:90:42:dc:6d:d8:
04:32:49:a4:c3:06:a7:d8:aa:7d:8d:42:65:3c:e6:16:8a:b8:
3b:20:26:8f:a7:ee:59:bf:45:4e:1c:df:53:86:fd:09:9e:66:
86:5b:8c:4a:ba:ed:0c:27:e4:21:e0:0a:80:b8:cb:6e:04:8d:
7e:9d:c9:a6:eb:2e:b9:86:1e:0c:99:dd:16:64:60:b2:a1:53:
ea:a2:16:dd:d0:ba:2a:2d:82:e7:5a:15:a3:cf:69:17:2a:e2:
08:d6:40:ba:3a:79:67:9b:6f:2b:83:59:2f:07:ea:04:0a:35:
33:5f:3a:40:07:93:b4:9c:6d:4b:66:cf:23:df:00:d0:cb:d3:
c5:ef:80:f9:a9:81:21:67:7a:1b:55:ab:7e:99:c5:22:96:45:
dc:76:a5:03:cf:a2:7a:6d:6b:4f:19:8d:ab:5e:f6:d0:2b:9e:
2e:ae:29:51:c6:b2:4a:90:41:8a:c3:74:3f:9b:96:de:a2:e4:
6a:69:44:48:26:60:7b:9e:db:81:cf:8d:73:27:1f:a4:aa:6b:
c8:8f:ef:10:34:77:22:8d:a7:94:7c:91:bb:09:cc:87:f1:68:
5f:7e:96:5c:df:6a:b0:5a:a7:16:38:03:a0:9d:1a:42:62:36:
fb:03:95:02
-----BEGIN CERTIFICATE-----
MIIGBTCCBO2gAwIBAgIUZ1Uk3+vlRzIyP1Sg9l/wO4FDrscwDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyMjc4YWFiODc4ZjI4MzFiYjE4MjNiNTg3OTRiMDkyZDg2
ZmIxZDdhMGY3NGUyODE2MTEwHhcNMjMwNjA4MDAwMDAwWhcNMjMwNjExMjM1OTU5
WjB6MUkwRwYDVQQFE0AxYWE1YmUzZTI1NmY2N2Q2MjdjMGM2YmM0Y2VkNTZmMmVh
YTJkODM2YzlhMDI0MWM0MzJlMzI2NTgxZTVkOTBhMS0wKwYDVQQDEyQ2YWU0ZTU2
Ny02MzQ4LTRjNGYtOThhOC0wNDIyYzRjNTJmZjMwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQDvwktEro98k9F0B+UAWSELb6FC4IU4QKR2SeiuhHvBJUWU
BWTL2pJLE52NhTszaWO6NBCY4NRwD3w4dGO5eZdpT9o3LXO8ovRIyz8+UPV05EkC
8df5ApPMXC1xAiNQCGdLDL9GoSN8mEIWOCxBN5T9eKp6qmXWQOc6ZY9In7wEiLE3
m5wZXDifMGBpY5+VbongeDBkTsn41ybn6FwT0brvUfmu+k7/J1S5RbNXRFd/2ISz
hnUd4/kFwW7tLURWBZpZLbCkpEhlGjDQqLyuvr6+3uu33V40Xa1MZXEDhIwNPWfm
HCZ5GSZegL64kskN1x+BvNliHhGRybpMcn9Uu3s1AgMBAAGjggK+MIICujAdBgNV
HQ4EFgQUVcjrE2yaXJwJtlQwzKXtYGOEUXowHwYDVR0jBBgwFoAUkUTtx6QO6ZC3
+jZv9uF9ea3Eg5cwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy83M2YyMWMyYi04
ODIzLTRjMjQtYjI1Yi00M2M4MGNiNmQxYmIvMjc4YWFiODc4ZjI4MzFiYjE4MjNi
NTg3OTRiMDkyZDg2ZmIxZDdhMGY3NGUyODE2MTEuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvYjY4YTMyZWUtNDU1ZC00ODNhLTk0M2QtMWE1
YmU3NDhiZmVhL2RlZTU4ZDE4LTExNTYtNGE5MS1hMTY0LTI4ZTZmNWM3MDQ0Zi5y
b2EwgZUGA1UdHwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVz
LWVhc3QtMi5hbWF6b25hd3MuY29tL3ZvbHVtZS9iNjhhMzJlZS00NTVkLTQ4M2Et
OTQzZC0xYTViZTc0OGJmZWEvNGJiOGFlNWMtMTI0Yy00MmYzLTg3ZmItNGYzNGU3
NGUzZGEyLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEH
AQH/BBAwDjAMBAIAATAGAwQAxyR4MA0GCSqGSIb3DQEBCwUAA4IBAQBhM4qKQtCE
sqG9xUgfkELcbdgEMkmkwwan2Kp9jUJlPOYWirg7ICaPp+5Zv0VOHN9Thv0JnmaG
W4xKuu0MJ+Qh4AqAuMtuBI1+ncmm6y65hh4Mmd0WZGCyoVPqohbd0LoqLYLnWhWj
z2kXKuII1kC6Onlnm28rg1kvB+oECjUzXzpAB5O0nG1LZs8j3wDQy9PF74D5qYEh
Z3obVat+mcUilkXcdqUDz6J6bWtPGY2rXvbQK54urilRxrJKkEGKw3Q/m5beouRq
aURIJmB7ntuBz41zJx+kqmvIj+8QNHcijaeUfJG7CcyH8WhffpZc32qwWqcWOAOg
nRpCYjb7A5UC
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:58:02 2024 by rpki-client on console-ams.rpki-client.org