Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/07c218e6-6826-4b60-8a94-547d5b953d87.roa
File: 07c218e6-6826-4b60-8a94-547d5b953d87.roa (raw, json)
Hash identifier: x3/9wBmZWN6WTU7lOS7IJCWk39fYtA4S/U5CwJeMQEg=
Subject key identifier: 81:00:BB:E2:0C:46:78:A3:A6:31:5B:49:87:E2:E8:30:E0:60:DC:65
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 46D4758D7DAA0BD23B58A0FFC972848263B9926A
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/07c218e6-6826-4b60-8a94-547d5b953d87.roa
Signing time: Mon 05 Dec 2022 00:00:00 +0000
ROA not before: Mon 05 Dec 2022 00:00:00 +0000
ROA not after: Thu 08 Dec 2022 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
46:d4:75:8d:7d:aa:0b:d2:3b:58:a0:ff:c9:72:84:82:63:b9:92:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Dec 5 00:00:00 2022 GMT
Not After : Dec 8 23:59:59 2022 GMT
Subject: serialNumber=f317494d19fe4a52aebdb7da1ba92685327e06a0122f1b56bbda07992bcb0a0c, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:66:5d:d3:56:33:96:81:98:5e:7d:f9:00:51:
06:fa:23:45:ef:47:25:82:88:30:75:95:65:8c:88:
5c:30:47:21:3a:f3:11:92:aa:fc:fb:1c:8c:5b:10:
d7:5d:50:d4:eb:26:b6:6d:9d:15:f6:6f:81:6e:9d:
e7:20:0c:56:61:57:3c:67:b4:76:52:55:22:c8:fa:
7c:d9:ae:ea:fa:5b:2e:79:4d:9d:94:9e:38:f1:95:
20:9a:3e:a4:2c:58:7a:4e:85:ac:a4:d9:7f:a9:b5:
44:8d:b1:48:e5:99:5b:ba:83:67:da:9c:88:ca:c7:
fd:25:fe:dc:09:10:da:31:5f:b4:85:c1:3d:16:dd:
dd:44:3a:94:d6:36:a9:44:4d:9e:83:4b:f9:a6:69:
8a:cc:24:91:b2:e3:0a:fd:45:8a:71:e1:68:df:31:
2f:bd:02:9c:51:3b:05:0c:66:82:dd:22:d7:58:89:
4e:8d:f6:d4:00:e1:d3:c8:7e:e2:28:04:c6:98:df:
f5:d2:c9:d2:f4:61:20:df:41:b4:84:fc:88:b0:d0:
23:4d:af:4c:73:8d:99:c8:da:31:95:67:47:1f:5d:
46:b9:62:2a:d0:95:8c:d3:57:e1:a9:ee:d3:b5:2b:
81:c1:a6:1d:38:f7:2c:dc:94:5e:e2:9e:27:0f:57:
ff:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:00:BB:E2:0C:46:78:A3:A6:31:5B:49:87:E2:E8:30:E0:60:DC:65
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/07c218e6-6826-4b60-8a94-547d5b953d87.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
b7:da:19:f1:6d:fe:8e:65:50:1f:e1:d7:bf:78:d3:60:90:48:
25:83:e5:9c:4c:06:ba:5c:74:1d:17:9c:f6:98:9b:03:95:9e:
c1:37:0f:03:da:7f:6c:ae:95:7e:23:ad:e6:8a:e0:a7:6f:65:
fc:2c:33:e7:ef:46:e0:e6:4f:1d:a1:b2:82:00:5c:e3:ac:ac:
28:a2:c9:e6:89:d7:b1:d4:80:05:0e:21:b6:ed:f0:08:90:6c:
b3:e6:ef:e1:b8:88:30:15:86:85:df:a7:ee:4b:20:5d:28:ca:
74:4c:09:bd:ec:b8:78:e8:5f:66:55:94:f9:49:29:15:bd:2e:
a2:45:e8:01:9e:fc:e1:4e:61:36:46:55:c1:a3:3b:65:80:ce:
19:a3:3a:0e:f5:b1:36:d5:7c:c9:c6:f0:41:a0:7c:80:a1:40:
c4:d5:40:26:7e:3c:e6:82:7c:c7:dd:a8:84:3b:74:a5:7f:da:
03:9e:72:05:52:fe:b8:45:19:88:79:24:64:70:df:e6:f8:2f:
8c:0f:a2:10:e4:50:bc:71:a2:84:dd:19:35:37:34:cc:45:f0:
84:1a:88:30:f0:e2:c2:86:d2:8f:33:4a:4b:f4:15:5b:9e:76:
54:8f:95:2a:e8:f8:be:3f:48:b7:b8:cb:cb:c0:fd:3c:3a:bd:
b8:2c:24:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:31 2023 by rpki-client on console-fra.rpki-client.org