Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/2f190870-bdd1-4592-9f74-885a71b204e8.roa
File: 2f190870-bdd1-4592-9f74-885a71b204e8.roa (raw, json)
Hash identifier: jW2kUhfxG6lvgNLwb4KHbbD2wMO9WthQxWSXer4Ymjw=
Subject key identifier: FB:13:95:59:E7:09:E7:64:19:E1:55:71:03:CD:87:31:88:D4:B8:E7
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 0C33146B38DF656D64B6F4E1AB3860F93F6539CD
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/2f190870-bdd1-4592-9f74-885a71b204e8.roa
Signing time: Thu 09 Mar 2023 00:00:00 +0000
ROA not before: Thu 09 Mar 2023 00:00:00 +0000
ROA not after: Sun 12 Mar 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0c:33:14:6b:38:df:65:6d:64:b6:f4:e1:ab:38:60:f9:3f:65:39:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Mar 9 00:00:00 2023 GMT
Not After : Mar 12 23:59:59 2023 GMT
Subject: serialNumber=f0bd794e8f549236a7c1077b9117b7d6a139396f93cdd3bc4835931ce80f43f3, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:ce:e6:5e:6f:1a:47:98:1f:bd:56:02:83:69:
cc:38:d2:c9:81:75:54:04:ec:0b:72:72:6e:b2:a2:
8f:84:e0:af:06:cc:7a:25:b5:5e:f9:02:44:72:cd:
1e:9f:fe:6b:f9:f9:a6:19:ef:87:57:07:09:22:fe:
b6:17:97:f8:14:1d:26:b2:4d:ae:b5:99:62:3a:39:
95:d3:34:cc:ab:b7:82:ab:64:59:67:d3:a8:27:4b:
66:67:01:bb:ca:ee:d4:ba:10:45:65:cb:d6:e9:d9:
85:f3:2c:9b:53:f8:96:c9:d2:99:d2:eb:3f:12:56:
40:db:76:34:32:2c:a3:3f:9d:0d:89:3c:90:ab:85:
7f:cb:cf:5c:21:f1:04:26:1a:c0:9e:31:c8:e5:8e:
89:4c:86:59:3f:6b:d0:49:c3:77:04:a9:07:17:42:
42:80:55:91:e1:ac:0f:dd:b4:54:94:7f:e2:77:9f:
1a:06:89:7d:be:49:8c:f9:8f:5b:71:2e:46:4d:b5:
cc:fc:c4:fa:58:8d:7d:2b:9f:5d:b0:82:3c:23:20:
5b:7d:2a:62:84:a1:b1:b3:9d:0a:f0:62:ad:06:46:
4d:d0:0b:b7:eb:fd:91:6e:af:fb:4a:22:37:a3:cc:
f7:8e:d9:4e:34:f3:b7:2d:b5:ea:58:b7:4b:39:56:
cf:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:13:95:59:E7:09:E7:64:19:E1:55:71:03:CD:87:31:88:D4:B8:E7
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/2f190870-bdd1-4592-9f74-885a71b204e8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
7b:5f:92:09:51:ff:15:c7:e3:af:da:62:91:15:61:d7:cf:ab:
08:27:bc:da:fd:fb:96:d7:f6:3a:df:14:0f:97:cb:3c:3b:8a:
59:de:c7:66:d5:f4:46:55:9a:93:84:e4:0e:69:45:25:f4:64:
5a:29:48:ae:45:d9:21:a3:3d:44:1d:1e:25:8b:40:46:f1:d0:
8c:75:0d:30:6f:b5:72:b1:0a:57:ab:27:a0:16:88:23:ba:70:
31:6b:fe:2d:50:8b:9c:49:64:96:8d:bf:5b:e0:be:25:d2:6c:
44:2f:31:9f:99:c1:e3:e6:65:36:f8:8f:7f:d5:85:ae:e5:8f:
e1:3b:b5:3c:9b:71:9e:b1:2c:77:ee:44:7f:6c:28:b5:bf:f5:
ad:0c:c3:89:23:0e:78:e4:95:fc:68:69:86:0d:b1:66:91:cf:
4f:d2:65:04:4e:c3:13:03:2f:cc:5e:c7:86:c0:e8:7e:e1:59:
24:d5:a6:1b:43:85:85:e2:2d:ed:45:64:71:69:a9:15:6c:78:
27:40:81:a2:32:54:37:32:b3:86:bb:35:42:76:6d:92:7e:bf:
f7:ea:7b:13:94:63:c0:d9:b1:b7:6e:33:60:a7:43:89:ad:90:
47:51:dc:da:4f:e9:70:a7:2c:a8:91:8a:35:be:0e:f6:d6:d1:
07:37:9a:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:34 2023 by rpki-client on console-fra.rpki-client.org