Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/1f0a26e9-d846-4dbc-9a6c-605ae88fa93c.roa
File: 1f0a26e9-d846-4dbc-9a6c-605ae88fa93c.roa (raw, json)
Hash identifier: OjtQWuWVSHfYGffiGPJY8exL8tbOx/OhscLwTBop52M=
Subject key identifier: C9:4B:1D:12:75:C8:54:1F:8E:43:8B:F0:E1:A5:1F:CD:DF:28:D3:3C
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 47A4E5BA8324DD5288C8AF44EE7EDE35B738F82A
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/1f0a26e9-d846-4dbc-9a6c-605ae88fa93c.roa
Signing time: Tue 04 Apr 2023 00:00:00 +0000
ROA not before: Tue 04 Apr 2023 00:00:00 +0000
ROA not after: Fri 07 Apr 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
47:a4:e5:ba:83:24:dd:52:88:c8:af:44:ee:7e:de:35:b7:38:f8:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Apr 4 00:00:00 2023 GMT
Not After : Apr 7 23:59:59 2023 GMT
Subject: serialNumber=538a4d1d30178db34b69d224fd0e89fafc5c93c5dcc6ac1abb49ccb844d56ed3, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:78:dc:16:1a:6c:98:f8:b7:ae:9c:d0:c5:ad:
25:6c:76:62:dc:ac:6d:c4:bc:84:e1:e5:75:13:8d:
71:87:48:aa:22:17:25:48:75:79:35:c3:7a:58:3c:
37:c4:13:87:b4:e3:e2:75:53:2d:45:2b:f8:2c:5c:
de:e9:3f:4c:b4:b1:0a:f3:34:1a:b1:4c:5e:99:0a:
0c:2a:61:ae:8e:ee:f1:3f:bb:33:05:45:74:61:25:
f3:7d:6e:d8:4c:1d:6f:54:4a:fd:a2:f4:08:e8:f8:
5f:a3:fb:ce:b4:8c:9f:a6:90:61:78:42:3f:fe:e2:
ce:ba:a2:e5:ce:32:a7:59:28:c6:58:22:fd:68:be:
b6:38:01:b2:69:c4:67:e1:e3:5b:0e:23:36:0d:0d:
52:40:2e:eb:7b:d5:81:13:db:5e:bc:a6:cd:39:bd:
a1:2c:00:3d:53:a3:5e:de:0d:91:2c:cc:83:62:58:
14:17:a0:52:82:17:20:ac:04:5a:73:28:e7:06:7d:
42:89:c6:d1:75:4b:2c:00:12:39:bb:ca:ac:24:c3:
bd:e0:9c:d7:6c:9b:e5:bd:29:85:65:25:ec:f7:af:
f9:b5:ae:e5:71:98:94:2c:c8:dc:43:24:c9:98:63:
68:c4:2c:e4:8d:f1:b7:25:e1:44:70:8c:06:5a:35:
7c:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:4B:1D:12:75:C8:54:1F:8E:43:8B:F0:E1:A5:1F:CD:DF:28:D3:3C
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/1f0a26e9-d846-4dbc-9a6c-605ae88fa93c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
97:cd:fa:0c:68:d0:34:34:2e:b7:93:a1:76:d5:93:d9:2c:36:
a2:30:c8:5b:bd:52:26:7f:d3:d9:c0:a0:4f:92:62:4e:07:b3:
ce:b4:8b:18:0d:f1:38:3a:ed:51:73:85:d7:60:e2:c5:71:b0:
62:da:34:9d:5f:c4:03:f3:09:36:87:1b:b3:3e:1b:c1:1c:70:
27:c1:78:ae:a3:a3:0e:2d:bc:dd:cd:60:48:b1:a1:00:6c:bd:
ef:df:65:69:3d:6d:65:f6:d1:66:5b:0f:90:50:f5:a6:2f:98:
07:99:ad:48:83:b5:bf:30:e5:54:11:c9:3b:10:86:57:44:f7:
57:a1:18:e9:32:b5:d3:22:17:59:5d:6c:c2:9e:63:48:af:8f:
2f:e0:ab:bd:03:c8:c3:9e:e7:be:e3:70:30:ca:83:b4:ad:5d:
c8:64:25:97:9d:99:98:a2:a8:2b:c7:9f:53:36:93:3a:5f:4d:
2d:9b:28:97:f6:a1:34:2e:f6:46:ea:5f:17:33:dd:11:59:08:
0f:9a:19:04:81:db:e8:34:ca:fc:48:ec:8b:b6:9e:00:21:82:
5d:88:93:5a:d1:fa:a8:79:a7:e6:23:c8:08:9f:75:6a:ec:4d:
58:40:8f:32:2f:0f:4e:01:d5:7a:44:56:a8:b6:c9:5b:eb:2d:
51:0c:81:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:33 2023 by rpki-client on console-fra.rpki-client.org