Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/17b1f027-6ef2-4fdb-bb3a-28c46684d0cc.roa
File: 17b1f027-6ef2-4fdb-bb3a-28c46684d0cc.roa (raw, json)
Hash identifier: E7aglqOIWGf0NqXo8CcqOR2EOPgNTGglpeeZw0p2KTI=
Subject key identifier: 6C:24:FA:86:70:B4:DE:ED:08:64:EF:DB:0E:3D:43:0C:49:E8:CD:53
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 2A51F97E18913A817A4760859746E417A9068945
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/17b1f027-6ef2-4fdb-bb3a-28c46684d0cc.roa
Signing time: Wed 31 Aug 2022 00:00:00 +0000
ROA not before: Wed 31 Aug 2022 00:00:00 +0000
ROA not after: Sat 03 Sep 2022 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2a:51:f9:7e:18:91:3a:81:7a:47:60:85:97:46:e4:17:a9:06:89:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Aug 31 00:00:00 2022 GMT
Not After : Sep 3 23:59:59 2022 GMT
Subject: serialNumber=73672ab4693e7952f77a7c471d9bf815c4392ad37b2ea69f9290d9f533bc6e0c, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:17:b0:f1:e2:e0:b8:48:3c:2e:97:e8:ec:39:
c1:80:4c:81:90:29:6c:6f:14:21:0a:82:6a:3a:ab:
48:19:ba:54:68:d1:51:84:68:f7:f1:fe:03:9b:70:
fd:48:67:8c:95:a4:e7:81:71:6d:06:3d:b5:1f:47:
5b:ad:01:5b:bf:11:b2:9f:b6:8f:76:09:96:e8:bf:
1a:26:23:9e:69:0d:ab:34:94:04:80:17:a4:9e:ef:
5d:9f:d1:f9:76:61:35:44:77:a5:43:be:17:50:cc:
49:2f:44:e8:30:d3:e8:a1:0d:e9:9b:ab:34:10:01:
a0:6b:70:bd:36:46:5a:4a:3d:d5:a8:d9:c9:74:9e:
11:47:60:a0:f3:25:b1:e9:33:0c:56:ce:b8:20:a3:
e1:02:de:2f:c9:40:0a:88:8a:2d:b0:82:d4:03:b1:
78:6e:fc:de:34:ee:12:c5:74:5f:3d:4a:13:4d:f4:
44:4f:af:de:ef:78:63:a5:7d:d9:4e:aa:75:d0:35:
49:59:21:d9:ac:d9:34:7b:7a:0f:3e:3b:c2:49:ce:
4a:94:fe:a0:3f:b4:d7:79:cf:8e:02:72:31:aa:20:
1d:96:d3:03:b0:12:3c:d6:af:0e:a5:f8:24:7c:33:
50:98:25:07:e3:52:4d:38:0c:08:b9:38:36:e3:cb:
43:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:24:FA:86:70:B4:DE:ED:08:64:EF:DB:0E:3D:43:0C:49:E8:CD:53
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/17b1f027-6ef2-4fdb-bb3a-28c46684d0cc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
b5:e2:1a:c2:0a:e8:1a:34:ba:af:d9:76:8b:38:56:59:02:70:
f7:41:50:1d:a6:57:8a:c2:74:bf:da:33:a6:b4:72:74:4a:fb:
05:d7:91:22:e4:5f:d4:6a:66:6e:7a:40:7b:f6:c6:09:54:89:
00:6f:9e:a2:b0:2f:b7:03:48:ed:b8:35:c0:26:41:b2:5c:96:
e5:68:39:29:7a:df:50:36:a3:d1:e8:f7:55:8f:c7:54:b7:f3:
38:6e:c6:4b:65:dd:cf:a3:f0:8f:f7:17:e8:ad:9b:21:8d:b7:
55:0f:fc:0b:ec:a9:15:0c:cb:db:98:6f:fd:78:41:e6:91:ab:
9d:a9:d8:f4:36:f4:8c:95:24:90:fa:b5:82:a6:65:6a:9d:a3:
68:7e:03:03:9d:86:4f:8d:68:6a:66:47:a8:09:88:1a:29:37:
01:46:29:d9:ff:13:13:60:11:ef:02:cf:cd:93:50:32:30:7d:
36:6d:27:50:bb:e5:ce:43:0b:05:d7:0d:3b:10:d7:82:5d:69:
d3:8e:96:bb:2b:b0:1d:88:1b:a5:72:21:16:ed:1e:45:fc:01:
57:b7:cf:60:6b:e1:53:c2:8b:4d:17:98:04:29:c4:ac:6f:75:
11:1e:c9:74:c6:d2:4d:b9:56:87:51:e4:d2:9e:ca:3e:2c:77:
3a:e1:c3:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:32 2023 by rpki-client on console-fra.rpki-client.org