Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/01c2f813-d0e2-4e8c-ab68-c45a93856834.roa
File: 01c2f813-d0e2-4e8c-ab68-c45a93856834.roa (raw, json)
Hash identifier: YxUTdbMNZ5W7RM0wp7NVd/5DYW2o6O76uIAusdpqGes=
Subject key identifier: 3D:D4:61:CB:5B:E7:87:C9:A6:E4:11:B0:49:09:9B:D3:35:93:D5:21
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 7F7F99F16927EE6EC57D66E4FCD81965C2AF0B71
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/01c2f813-d0e2-4e8c-ab68-c45a93856834.roa
Signing time: Tue 06 Dec 2022 00:00:00 +0000
ROA not before: Tue 06 Dec 2022 00:00:00 +0000
ROA not after: Fri 09 Dec 2022 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7f:7f:99:f1:69:27:ee:6e:c5:7d:66:e4:fc:d8:19:65:c2:af:0b:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Dec 6 00:00:00 2022 GMT
Not After : Dec 9 23:59:59 2022 GMT
Subject: serialNumber=d5c0659eac8830de948fb523089927877f1f25bea52049ae25b991b38694ba88, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:a7:ef:35:3e:29:ca:65:fa:d0:04:fc:f3:b4:
41:ca:b5:c8:6d:9a:04:ee:a0:38:d9:72:22:a7:a1:
cb:56:d6:48:4c:0a:b4:d6:6b:30:8d:06:e9:03:e0:
41:9d:6e:72:86:04:93:19:67:bf:39:5d:a0:c8:ed:
0e:51:12:c9:6b:79:5e:35:9d:ce:fb:44:f0:1d:14:
03:66:fd:5a:eb:32:aa:63:fa:7e:25:35:05:b0:41:
1d:b5:10:78:f0:c2:79:37:a1:bc:57:4e:fc:c8:c6:
e7:97:5a:9f:a7:f4:4e:90:55:d2:10:21:63:fe:83:
4f:b6:6d:d0:c7:f8:fc:40:de:12:fa:99:24:35:3d:
ab:9f:7f:ac:69:18:1d:5a:c6:04:c1:6d:b9:3c:84:
bb:c3:6a:0c:1a:39:c7:14:45:0b:a9:75:f7:22:08:
83:dc:0e:d9:0f:5b:df:ad:4b:2d:f9:a1:70:d1:36:
86:6a:64:0e:a0:92:77:a7:8e:f5:63:36:2d:ae:2c:
0c:f2:29:1c:a7:8f:cf:d7:7a:c1:a7:22:a6:b4:25:
92:d2:0b:cd:3d:f3:13:8d:04:11:33:87:b3:9e:8a:
7c:07:30:dc:43:e7:2d:26:d8:b7:9a:b8:96:72:0c:
57:0e:2b:12:fb:87:ae:98:fe:8c:3c:fb:d5:da:e5:
bf:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:D4:61:CB:5B:E7:87:C9:A6:E4:11:B0:49:09:9B:D3:35:93:D5:21
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/01c2f813-d0e2-4e8c-ab68-c45a93856834.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
31:29:06:3f:1e:ef:eb:f2:39:59:e4:46:19:84:fd:f5:32:ae:
6f:b1:45:a4:f6:c8:45:fa:ba:e8:e8:8f:12:22:82:2a:5a:da:
8d:1d:47:0d:e8:cb:65:5a:72:1b:93:51:82:d0:97:68:12:34:
4b:9a:97:d2:41:fe:d4:5a:d6:9a:24:13:e5:50:6a:41:6e:68:
bb:85:aa:53:70:f9:ac:50:3d:03:64:5e:a5:9d:24:53:f3:9b:
5a:2e:d2:29:af:1b:d6:a0:6c:3f:65:16:95:ef:c3:f4:38:67:
ee:a6:26:76:b1:6b:bd:2e:7f:50:b2:a8:d8:b1:7c:a2:f9:dd:
56:37:1e:70:ec:f7:51:d4:b4:05:bd:d6:fe:89:4d:a6:16:85:
b0:a2:de:ab:21:3b:0a:bf:e5:6b:d2:d2:0a:b5:a1:a1:74:13:
65:85:de:27:9a:6d:1d:c9:7f:c8:74:fc:39:d5:60:30:b3:05:
93:01:7a:15:dd:d5:c3:05:26:ab:45:30:9d:64:bb:1c:21:1d:
c3:91:98:df:e5:61:c4:30:52:ca:55:04:d1:b0:82:2d:7e:b9:
87:35:2a:99:9a:7e:fd:c2:04:15:ba:2d:f4:82:2d:25:e6:5d:
30:89:1a:78:cb:06:2d:a2:65:be:8f:5f:4b:f3:e7:e3:cc:dd:
5d:70:e5:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:31 2023 by rpki-client on console-fra.rpki-client.org