Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/2528bd28-a7dc-4c00-8f87-0bee51f9e83f.roa
File: 2528bd28-a7dc-4c00-8f87-0bee51f9e83f.roa (raw, json)
Hash identifier: OPo5hDKMKS676m1BMSm+7GE5ZovdnwOwMd3PNeRmOM4=
Subject key identifier: F8:83:9F:CE:7F:1A:DE:31:74:94:48:E1:99:31:6B:1A:2A:42:2A:81
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 7D005BFC9F8CC31699815E613D3E5B3B7EC111D2
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/2528bd28-a7dc-4c00-8f87-0bee51f9e83f.roa
Signing time: Sun 05 Mar 2023 00:00:00 +0000
ROA not before: Sun 05 Mar 2023 00:00:00 +0000
ROA not after: Wed 08 Mar 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7d:00:5b:fc:9f:8c:c3:16:99:81:5e:61:3d:3e:5b:3b:7e:c1:11:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Mar 5 00:00:00 2023 GMT
Not After : Mar 8 23:59:59 2023 GMT
Subject: serialNumber=009469bb0c481f6367adb4b3ffee08bc51e72b6d8321a91ed861e13962c8c5b1, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:88:71:19:b3:35:43:b7:5b:09:a4:40:fc:d2:
78:ea:93:ac:0e:db:12:64:8c:d8:0c:b7:3c:8f:a2:
c8:ef:b4:38:1a:89:74:22:44:93:cf:82:c2:b6:f9:
f6:9b:91:04:0b:66:bf:34:2b:c2:e9:5a:dc:94:da:
69:aa:cf:7b:99:1a:78:e9:ca:87:d8:ab:36:e3:22:
44:e1:e4:1f:fa:52:66:dd:ed:2c:43:b7:c3:fb:2f:
3b:dd:8a:34:da:8a:bf:d4:f1:01:a5:83:d7:5f:99:
8b:e7:0e:b0:7b:85:73:0b:13:65:04:9b:5c:ff:88:
7e:4f:1b:7e:20:5b:1a:33:fa:83:db:54:32:6c:fa:
47:68:74:c8:c2:34:b8:dd:fd:31:72:d3:e5:fc:e3:
91:f1:7d:ef:d3:62:7a:89:7f:dd:54:30:29:02:7c:
0d:bc:ee:97:1c:fd:c6:28:a1:5a:d8:f9:9a:2f:53:
9c:72:8e:e6:da:c9:c5:ed:c2:cf:6f:78:d8:30:22:
d9:42:18:19:26:0c:c4:7a:31:70:0e:9b:3d:75:3d:
d3:14:75:4c:65:62:b9:84:4e:a4:14:cb:a6:8d:75:
db:94:f3:d0:81:ce:8c:71:db:65:a0:6f:a0:42:54:
28:b7:65:78:07:5e:ae:b1:8d:ba:6c:90:84:a0:df:
c1:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:83:9F:CE:7F:1A:DE:31:74:94:48:E1:99:31:6B:1A:2A:42:2A:81
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/2528bd28-a7dc-4c00-8f87-0bee51f9e83f.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
a5:a4:51:6c:91:85:34:e8:9f:c6:be:78:e1:7e:38:ee:3c:e7:
f6:b7:c6:cf:7a:04:74:80:5a:70:b4:c9:73:0a:a4:88:f7:db:
7a:34:e7:aa:22:8a:82:c9:ce:e5:e6:b9:6c:3f:bc:62:3e:a3:
39:11:e3:d0:c7:5b:6d:58:c2:8a:11:53:67:3a:7d:d8:a5:9f:
e6:92:0c:1d:e6:d4:9e:d2:39:0a:24:ff:61:e9:23:f8:1e:d6:
5e:60:e7:6b:02:48:3c:15:25:24:55:9e:62:b4:fa:d0:5a:3a:
11:c4:1d:2b:3d:28:77:70:68:f6:55:70:36:e0:e1:67:8e:55:
ff:e6:87:4c:51:2e:90:b9:da:2c:36:7b:7f:48:b9:e4:26:68:
d7:fa:b8:92:7d:9d:91:84:fd:51:c6:0b:93:c1:a3:14:eb:da:
f9:dd:5a:99:e9:33:4c:7a:22:93:4e:18:f5:9d:39:ec:95:7c:
30:da:ac:1c:10:25:61:39:82:27:e5:c5:a8:71:f8:1a:93:80:
6e:20:1a:24:0c:c4:15:3b:ba:8e:b2:c5:80:11:ff:71:1b:9a:
8a:af:99:95:fe:17:69:64:94:07:1c:b1:30:b8:cf:5f:9b:df:
9e:0e:ff:b7:6a:bf:3d:f1:7b:18:ce:51:4e:62:37:14:7c:69:
14:7f:0e:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:39 2023 by rpki-client on console-ams.rpki-client.org