Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/090eae3d-b3b3-471a-83b0-104a43a7398c.roa
File: 090eae3d-b3b3-471a-83b0-104a43a7398c.roa (raw, json)
Hash identifier: c4qoiJmzR9Z8KgKY9Ye3cp/uepVbEqjwDNKC583sWoU=
Subject key identifier: 58:4E:2E:5C:A8:68:DC:40:59:6C:13:59:88:C2:10:37:D0:BB:C1:B9
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 2B084DC3BBC5C551CED6B7FCD1FAFAC9E4479709
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/090eae3d-b3b3-471a-83b0-104a43a7398c.roa
Signing time: Wed 13 Jul 2022 00:00:00 +0000
ROA not before: Wed 13 Jul 2022 00:00:00 +0000
ROA not after: Sat 16 Jul 2022 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2b:08:4d:c3:bb:c5:c5:51:ce:d6:b7:fc:d1:fa:fa:c9:e4:47:97:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Jul 13 00:00:00 2022 GMT
Not After : Jul 16 23:59:59 2022 GMT
Subject: serialNumber=7e9aa4f40b5f964363a5448dbc7afefebe90b931248401eb38116453f5ac3dfe, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:e5:64:0f:15:eb:ba:11:b1:26:e2:a0:f6:b6:
12:ec:f5:88:1e:40:8f:54:c5:c9:01:b9:2e:58:23:
dc:ca:51:38:f3:66:a1:97:70:89:bd:62:c4:70:3d:
e2:e7:cd:7b:0f:c3:3c:87:5c:9d:2e:46:4b:4a:92:
53:20:6d:7a:99:8e:3b:af:d9:b9:e9:de:96:6b:71:
c6:46:9f:9e:4d:0f:e3:88:84:c2:94:20:8c:84:ec:
aa:c5:da:14:0f:3f:44:90:cc:ed:11:8b:64:e8:c1:
2e:f6:51:aa:77:04:50:19:64:9b:c5:15:5d:85:00:
9f:3b:57:0b:7e:15:6a:7c:72:d3:ca:48:b5:18:74:
40:27:9a:d7:32:d4:45:d7:e8:77:fa:24:85:36:97:
9a:ff:34:a3:b6:a4:cc:8d:85:bb:ae:b9:85:01:a8:
c9:d7:b9:f1:12:af:e9:b5:61:cd:f8:58:f0:ca:57:
5f:ee:40:7c:12:98:8d:72:13:20:84:27:92:02:7b:
fd:18:24:09:4d:c9:9a:54:7b:38:3d:a9:ef:24:e1:
b4:14:e2:9b:0b:bd:28:7a:fd:67:e6:ca:f8:3e:4a:
43:68:0d:64:52:01:04:9c:8a:1f:78:59:34:9b:40:
a2:de:f0:26:5d:bc:31:24:44:0f:5e:86:dc:0b:5a:
4a:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:4E:2E:5C:A8:68:DC:40:59:6C:13:59:88:C2:10:37:D0:BB:C1:B9
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/090eae3d-b3b3-471a-83b0-104a43a7398c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
86:a1:cf:68:bf:1e:3d:84:03:74:3b:7b:34:ae:89:74:04:7e:
47:85:53:4d:78:75:11:c7:00:7c:fa:7e:11:c7:f6:78:17:5f:
a5:eb:df:d8:45:e3:48:3f:ff:da:82:b4:e6:8a:22:69:7e:ba:
d6:84:8b:98:5e:cc:1b:4c:e7:bd:f8:25:43:00:27:f3:a2:a4:
6f:39:c5:6e:06:c1:70:49:b3:3e:e0:cb:24:41:f6:50:37:d7:
86:c0:52:d9:03:12:b0:55:75:f2:8b:34:5b:b1:bb:84:1e:41:
ad:48:8b:68:ed:54:06:77:2d:91:3f:39:a1:cf:38:1c:df:af:
a8:01:be:45:58:9c:7c:6c:2f:10:90:3a:82:f0:18:1c:bc:12:
70:93:90:c7:c6:b8:fe:b5:f9:36:38:19:c1:1a:4d:46:e2:d2:
1b:99:23:3d:9d:46:46:ae:ba:29:3e:a4:e0:92:95:e0:0f:ee:
cb:39:2a:5e:01:eb:d2:75:31:32:30:bf:71:9e:e0:8c:5a:b8:
ce:5f:71:e4:44:d3:13:fb:64:d4:76:08:79:66:e7:f3:5e:1e:
ad:50:55:1e:c8:0a:48:be:a1:3a:32:c1:54:0c:c7:14:44:10:
c9:29:c2:16:0c:04:24:0f:b7:2d:bc:21:66:46:f6:66:d0:21:
4a:a9:b4:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:31 2023 by rpki-client on console-fra.rpki-client.org