Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/264eb6ca-e39a-4783-9ee7-318871f6a19d.roa
File: 264eb6ca-e39a-4783-9ee7-318871f6a19d.roa (raw, json)
Hash identifier: xHr7i0izttqbHvDcnCh0eT6eTZWaT2uNh2vWj03EXiM=
Subject key identifier: 3C:81:53:97:30:72:3E:D5:D6:92:E9:CB:72:4C:C4:B7:60:A0:19:A1
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 338C30F300A2D99DE2DED6CD2D0EC630342AFE19
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/264eb6ca-e39a-4783-9ee7-318871f6a19d.roa
Signing time: Fri 28 Apr 2023 00:00:00 +0000
ROA not before: Fri 28 Apr 2023 00:00:00 +0000
ROA not after: Mon 01 May 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
33:8c:30:f3:00:a2:d9:9d:e2:de:d6:cd:2d:0e:c6:30:34:2a:fe:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Apr 28 00:00:00 2023 GMT
Not After : May 1 23:59:59 2023 GMT
Subject: serialNumber=331364ccdd2bc74a5a5368aae080076983237c9f1d183080617a886c1b6c1b65, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:96:2c:a4:a4:8a:b8:b5:dc:be:96:e2:7c:0e:
e0:8e:d5:2f:24:fd:4d:d3:93:61:5e:ad:cc:e8:0e:
cf:f6:58:bd:07:1a:87:cc:e1:5e:be:26:11:62:11:
6e:11:50:4b:f1:93:c5:54:d7:ee:9f:fd:b9:02:fd:
0b:e5:0e:42:0c:fd:f9:b1:23:f5:eb:d8:85:0a:6a:
3b:9a:f9:18:bf:7e:6b:b9:83:84:00:53:59:36:f0:
e1:ca:63:d9:93:a2:bd:21:a7:e0:0e:2c:0a:d8:96:
e5:2a:24:f9:c9:a4:eb:98:94:1e:aa:84:1c:34:5f:
45:1c:57:dd:ff:41:09:b9:e3:de:cb:6c:74:6b:59:
0b:d7:5c:33:80:a5:40:fb:e0:c5:e8:a6:b2:7f:85:
d4:cc:58:ea:ab:28:40:cb:4a:e3:2f:d6:db:ea:3f:
7c:04:d8:44:d7:fa:01:c1:a5:55:86:fa:74:84:77:
ea:02:ca:23:7a:ce:30:46:e5:ac:42:84:6e:60:81:
fb:d0:d8:79:01:8b:ca:6e:88:a9:43:b4:e9:f1:63:
26:03:20:13:27:f3:7e:ce:3e:01:7a:3e:75:11:25:
76:4e:d3:9b:a6:94:9d:02:d7:92:e5:95:ba:c1:6c:
d2:b1:81:40:28:84:ed:92:c1:c9:71:d3:27:4b:f9:
f9:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:81:53:97:30:72:3E:D5:D6:92:E9:CB:72:4C:C4:B7:60:A0:19:A1
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/264eb6ca-e39a-4783-9ee7-318871f6a19d.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
a0:14:30:93:53:4d:a5:71:d6:08:17:99:71:ec:1e:d3:77:cf:
eb:bb:2c:1c:14:35:d3:93:3f:af:6c:a1:12:34:8f:e7:99:24:
41:cd:b8:2a:2a:b7:33:e4:65:ac:68:ca:b1:1b:b5:fd:35:39:
5f:3d:19:a9:ae:e1:07:9c:3d:e8:16:4e:39:dc:9b:12:18:3a:
c6:09:fc:80:03:2b:df:8a:72:a9:80:1c:85:3d:d5:73:da:f6:
75:bd:42:39:91:af:43:12:b2:0f:f3:ee:44:1d:d8:89:d6:4f:
e5:bd:81:0b:92:7e:3e:5f:2a:4d:38:83:04:0d:96:73:b4:17:
4e:6c:25:5c:3b:ac:e2:ab:6d:c3:58:d8:e7:1b:3e:d9:b7:b2:
b1:f3:d5:12:61:c8:f7:6c:5f:59:46:91:a8:c5:39:91:5b:76:
16:21:38:eb:4a:a8:05:03:fd:b5:f2:03:77:9f:ce:36:34:01:
21:21:8a:39:cc:f4:64:13:59:52:6f:31:36:7d:07:72:74:1a:
c1:3a:ab:f4:01:ec:26:d1:b6:47:7f:e2:5a:de:c4:4e:18:66:
98:bb:b9:6f:db:b3:0c:d9:fd:66:7f:7c:72:18:9f:a5:ef:d0:
8a:42:e9:b6:af:e5:ea:f6:e1:62:b3:ac:a9:19:70:52:dd:0e:
bd:b3:31:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:33 2023 by rpki-client on console-fra.rpki-client.org