Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/044e15fe-ec1a-43eb-aac1-c5074ce2c91c.roa
File: 044e15fe-ec1a-43eb-aac1-c5074ce2c91c.roa (raw, json)
Hash identifier: ogp8ytUm6sic+WToAZVM+8pMkeZzbbMt941uq+4/JxQ=
Subject key identifier: 04:05:D4:BC:0F:27:4C:F6:DD:5D:AB:1C:E2:F1:CE:5F:9A:19:15:60
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 4334CDE8B00A7DFA239AFD63D0FCD110495625B8
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/044e15fe-ec1a-43eb-aac1-c5074ce2c91c.roa
Signing time: Mon 27 Feb 2023 00:00:00 +0000
ROA not before: Mon 27 Feb 2023 00:00:00 +0000
ROA not after: Thu 02 Mar 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
43:34:cd:e8:b0:0a:7d:fa:23:9a:fd:63:d0:fc:d1:10:49:56:25:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Feb 27 00:00:00 2023 GMT
Not After : Mar 2 23:59:59 2023 GMT
Subject: serialNumber=ff44173646ba9ddb91957674316cca01777314753b8626b8798a94ce527f3d0f, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f5:2b:df:f9:5b:a8:dd:92:6d:82:b2:56:14:24:
20:4c:9a:9f:7e:93:f6:14:ea:3a:9c:5b:05:f5:f7:
29:12:0c:d8:81:28:b3:ef:d7:a1:17:6c:fa:35:42:
2c:56:0a:49:63:0a:f1:7d:3a:0c:7c:5b:e5:ef:19:
f2:7d:e5:af:bd:b8:e4:0e:c9:0a:24:4b:ad:3b:b3:
31:e3:d8:1a:f7:30:33:2b:e1:20:85:76:8e:95:e7:
ee:8b:d7:52:a9:c3:1d:73:ca:7f:aa:90:da:58:4d:
08:c9:76:05:11:73:0c:d2:d0:8c:0f:01:ae:16:7d:
ad:57:6f:1e:fc:92:b6:2c:d0:54:35:91:a4:3c:cf:
fa:bf:58:e4:eb:2f:c0:ab:b3:7a:9b:6d:d2:90:d4:
e6:d8:16:9c:e7:5e:1c:0f:75:8e:e1:3d:c4:60:01:
8c:17:e7:5c:51:00:bb:c6:4e:b0:71:a1:ce:dc:b6:
dc:c3:7a:f8:53:15:de:f8:be:ab:f3:33:2b:2e:fc:
80:0c:3e:72:b0:bb:a9:68:bd:17:9a:0e:4b:af:5e:
e7:b8:ee:c8:ba:36:3d:f6:20:ea:7e:eb:43:60:21:
3f:40:3d:9e:13:6a:db:d6:63:83:11:18:1d:9b:2e:
61:fe:de:5c:c2:6f:45:05:da:0c:03:9b:aa:98:9e:
b6:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:05:D4:BC:0F:27:4C:F6:DD:5D:AB:1C:E2:F1:CE:5F:9A:19:15:60
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/044e15fe-ec1a-43eb-aac1-c5074ce2c91c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
81:26:32:26:cf:45:12:57:a4:f5:9b:ed:f0:75:b5:90:29:50:
61:fb:51:1c:fb:ea:fb:16:e6:df:25:e0:ca:b6:34:1d:8c:84:
bc:6c:7c:50:a7:21:35:c1:a1:a5:3a:74:ff:81:2c:86:64:03:
63:27:30:fb:3d:17:26:e8:82:23:78:45:fc:11:89:13:5c:4f:
ad:29:57:68:3f:4c:03:c7:06:9e:e4:50:12:2b:37:3a:90:8e:
4d:b5:b0:4f:f8:f7:de:37:fb:54:70:f7:d4:f9:9d:9b:70:70:
78:c7:de:cb:d5:9c:63:9f:80:db:61:5e:b3:02:e2:36:94:17:
17:2f:b6:8e:74:f3:1d:82:dc:f1:db:22:af:5e:23:4c:08:e1:
11:51:05:1c:88:bc:50:98:53:a1:2f:67:1a:b3:b9:d7:80:d9:
ee:4e:1f:04:96:4b:29:b8:a2:a3:4b:ed:60:79:32:53:9b:ab:
19:52:ad:2e:e5:7b:b9:72:1f:ae:5a:82:c5:fd:77:8f:cc:22:
ee:5b:a8:f1:4f:7b:dd:6e:35:c2:8f:61:51:e2:d6:05:39:fb:
39:84:88:f7:c6:81:46:a9:8d:d0:55:98:25:02:91:f2:ed:0b:
0f:39:53:76:7a:3c:cb:57:e4:65:ce:fe:a3:5c:67:93:e1:a0:
e8:25:b1:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:31 2023 by rpki-client on console-fra.rpki-client.org