Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/0ec588b6-4e31-4caf-808a-c2226e75883f.roa
File: 0ec588b6-4e31-4caf-808a-c2226e75883f.roa (raw, json)
Hash identifier: DeGy9mldqvpgYo8cCOnnk5m8kCAAOUS40Gxgu1VOzDk=
Subject key identifier: 30:04:26:8B:2A:C6:85:D5:1D:BE:6D:6D:E2:40:02:85:B2:C4:5C:BB
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 6CBBBD9109AE63A22FDB5494F29DF27FC35345ED
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/0ec588b6-4e31-4caf-808a-c2226e75883f.roa
Signing time: Tue 07 Mar 2023 00:00:00 +0000
ROA not before: Tue 07 Mar 2023 00:00:00 +0000
ROA not after: Fri 10 Mar 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6c:bb:bd:91:09:ae:63:a2:2f:db:54:94:f2:9d:f2:7f:c3:53:45:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Mar 7 00:00:00 2023 GMT
Not After : Mar 10 23:59:59 2023 GMT
Subject: serialNumber=390ce1031f7d59f1c0b3bdfbe9ffed830828f51746768b147f2982a38a9717ed, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:7f:ef:af:d1:7d:17:4b:1e:48:8a:5d:0b:fc:
6f:ae:a5:28:b9:a4:68:19:81:69:8a:c1:66:38:a5:
a8:6c:9c:12:91:db:a0:e8:dd:2b:2d:61:65:38:93:
87:ea:b5:ac:42:69:04:ae:b0:f7:f4:8a:c2:df:66:
2d:ac:7d:f8:af:11:e1:d5:b9:15:97:c1:17:e0:6c:
bb:98:fb:0f:f4:91:d8:83:0d:6c:1b:2d:36:35:8d:
0e:7d:2a:9e:f7:7f:d9:d1:27:25:ff:ab:71:36:fc:
7f:df:4e:cc:5d:d6:ff:22:a7:11:75:57:ec:ee:aa:
d6:88:57:3b:be:ea:3f:b8:af:f8:cd:24:0d:d5:61:
eb:0c:b9:e8:79:4a:39:02:fe:34:f8:d3:b9:6a:da:
3d:4d:6d:65:c8:16:2d:9c:78:69:92:cb:e5:f7:9b:
9f:b6:86:6c:5a:1a:d6:65:3e:e9:9b:f7:b1:cf:ee:
bd:b4:79:a3:d3:3f:f2:20:55:56:08:08:6a:47:67:
95:14:d7:27:02:a9:00:cf:75:d6:7e:23:f1:c1:40:
6c:cc:ee:0d:32:d6:e6:d1:8b:9e:9c:18:b1:3b:de:
0f:69:b1:94:a1:58:d6:52:c9:18:6f:77:07:7d:c5:
a9:6e:7b:42:0f:65:02:c0:55:6f:2d:24:2c:73:35:
3a:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:04:26:8B:2A:C6:85:D5:1D:BE:6D:6D:E2:40:02:85:B2:C4:5C:BB
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/0ec588b6-4e31-4caf-808a-c2226e75883f.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
67:ba:69:35:93:35:c7:7f:7e:f2:5e:ee:f5:63:1b:5a:2f:99:
55:78:01:ff:c2:c2:26:81:f5:37:28:c7:9d:46:ed:d9:0b:6f:
0b:da:37:89:9e:1f:43:35:71:1e:66:7d:5c:64:60:72:78:47:
89:77:f7:a1:cb:d5:2a:45:34:6f:77:db:48:7b:4d:58:32:79:
fa:f6:c2:8c:11:5d:0f:29:0a:fe:35:01:f7:f6:d6:85:51:65:
e5:d1:ad:1e:a8:df:73:73:ae:19:40:ab:a1:73:b2:d9:a8:03:
51:db:c3:92:86:b8:2d:c3:ac:bf:a5:f9:94:90:42:42:84:cc:
35:45:32:b2:aa:a9:b5:5d:3a:0f:fa:fb:ae:a5:2c:c9:82:60:
ba:32:3d:3f:ac:da:1d:d9:c0:d6:58:42:d2:32:81:e6:73:2d:
d6:fe:98:52:ba:9b:05:d9:a7:58:bb:bf:ed:0f:14:fc:bd:fd:
11:0b:82:de:41:5c:17:a7:90:71:89:d1:fe:92:cd:2f:64:4c:
e3:51:90:a7:d4:ff:f8:f0:61:93:59:37:c7:b9:e7:6d:81:6b:
49:82:01:89:ca:d1:52:82:4a:6c:52:d8:73:6b:e8:58:a1:d3:
a4:ce:a0:15:18:c9:4a:b0:0b:35:ea:21:db:7d:46:6c:9a:51:
85:e4:cd:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:31 2023 by rpki-client on console-fra.rpki-client.org