Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/1d07304f-d561-46c4-b89d-74fc9fa6876d.roa
File: 1d07304f-d561-46c4-b89d-74fc9fa6876d.roa (raw, json)
Hash identifier: 3LMIQ6ASfCfBFR8qkS0bNppMZ0cNfZB6s1Jaka5wg5Y=
Subject key identifier: 5D:0D:96:9D:19:FE:CB:C5:BC:2A:5B:07:03:25:07:3D:2F:60:17:E1
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 3844D859672B57FD631543C8D7E28E4AE9D0A08A
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/1d07304f-d561-46c4-b89d-74fc9fa6876d.roa
Signing time: Sat 25 Mar 2023 00:00:00 +0000
ROA not before: Sat 25 Mar 2023 00:00:00 +0000
ROA not after: Tue 28 Mar 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
38:44:d8:59:67:2b:57:fd:63:15:43:c8:d7:e2:8e:4a:e9:d0:a0:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Mar 25 00:00:00 2023 GMT
Not After : Mar 28 23:59:59 2023 GMT
Subject: serialNumber=810c3507422205057ca788a415d0e44be8e25d901bd352c93ed1733bb6205ec2, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:af:16:e0:35:aa:23:15:b1:d2:79:24:5c:fb:
4a:6b:66:12:c2:5d:1b:5d:2b:08:d2:a4:aa:29:90:
f8:99:b8:1b:76:16:52:6c:a7:d7:d7:60:eb:21:e1:
a9:3b:bf:1b:c6:aa:3a:ba:09:4b:8f:a2:12:be:c3:
43:f5:d6:77:ec:99:bf:9f:a6:ce:17:a6:fe:c9:d8:
2c:0b:be:40:d5:46:b2:e0:6f:f5:60:21:cc:eb:3c:
9d:53:d4:9e:88:7a:d6:21:9c:1e:db:2a:65:bd:bf:
dc:66:3c:50:79:ce:c6:ea:e8:03:e5:9e:ac:ab:83:
4a:11:33:da:3c:fc:01:2d:74:fb:22:74:c0:96:eb:
3c:5a:cb:f5:ae:c3:89:33:52:fe:e7:91:9e:6a:42:
cd:76:3a:fc:17:40:c3:81:97:1c:bc:68:4b:07:45:
07:0b:23:55:25:6c:bc:1b:2e:a8:c8:41:55:e0:d6:
42:fd:d4:6d:62:92:58:30:36:10:fc:2c:28:c6:6a:
ba:99:b0:91:d2:54:13:a8:67:ce:66:c6:af:e1:99:
b4:b9:b6:01:b3:bd:74:ee:97:17:29:f6:de:30:39:
25:c3:6b:ac:53:0a:dd:44:4a:20:9e:f0:95:cb:3b:
20:43:24:e2:92:42:fc:23:99:af:61:bf:02:80:f3:
a6:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:0D:96:9D:19:FE:CB:C5:BC:2A:5B:07:03:25:07:3D:2F:60:17:E1
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/1d07304f-d561-46c4-b89d-74fc9fa6876d.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
ad:a6:a6:77:d2:19:7e:a3:67:7e:cf:2c:b4:4c:b9:ad:f9:66:
aa:22:44:b4:54:b1:87:c9:b1:92:4f:fd:ca:c6:06:fc:a3:bf:
27:3c:5b:09:cb:53:a3:8d:f2:2e:6b:04:ab:db:e1:34:fc:f3:
2b:cd:04:54:50:48:fe:31:40:57:0b:ed:05:a4:0d:52:f7:6e:
e1:7b:41:35:e0:24:9f:96:f5:6f:b2:dc:4e:53:6d:b3:5e:c5:
4c:c7:47:46:3d:bb:95:0e:8c:c8:f2:9a:e0:c4:60:da:35:00:
c2:0c:cc:db:9e:e3:b8:7f:e9:d3:af:9b:b5:68:1d:96:14:a2:
88:06:b1:55:3e:13:d4:60:28:7e:37:bb:da:33:99:71:ef:3e:
94:b5:f6:ef:f0:ac:00:b8:d5:53:cd:de:ed:94:40:59:a5:db:
83:17:51:96:70:b1:bf:95:77:0e:43:ef:5d:fe:23:e1:f0:56:
aa:5e:b5:c7:1a:fb:11:64:43:8f:df:9f:2f:7d:bb:67:6d:fa:
68:a2:0a:f2:98:48:46:09:06:c7:8d:f9:7d:59:56:4e:8d:73:
82:9b:e1:46:1d:66:81:e5:1a:ac:10:57:43:0b:a9:4c:9b:ce:
74:88:5d:56:f3:cc:79:dd:2a:5a:63:c2:cd:91:81:6b:5d:f7:
24:bf:22:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:32 2023 by rpki-client on console-fra.rpki-client.org