Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/371b744d-5ca5-4f5a-9020-4eb17dd1dd6c.roa
File: 371b744d-5ca5-4f5a-9020-4eb17dd1dd6c.roa (raw, json)
Hash identifier: T2kCnHRZOpuvZ91mTjZOqj0nuIUiX/cxUzieN1ekmyI=
Subject key identifier: DA:B7:98:00:65:3B:53:04:5D:F6:4E:0F:28:C9:9F:07:07:CE:B3:36
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 74B03CFC0A19753823A5CE98C957F2DB21C96A34
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/371b744d-5ca5-4f5a-9020-4eb17dd1dd6c.roa
Signing time: Sun 04 Jun 2023 00:00:00 +0000
ROA not before: Sun 04 Jun 2023 00:00:00 +0000
ROA not after: Wed 07 Jun 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
74:b0:3c:fc:0a:19:75:38:23:a5:ce:98:c9:57:f2:db:21:c9:6a:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Jun 4 00:00:00 2023 GMT
Not After : Jun 7 23:59:59 2023 GMT
Subject: serialNumber=1dd26e321ba30f69932f032e3bc13f45622cc54dd3428e6de00ab8d143ac28c3, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:f1:d5:45:71:b3:28:bc:99:2a:66:1f:0b:36:
35:93:f8:b4:90:ae:16:78:9c:a8:09:02:ff:f6:ea:
f6:1e:e8:68:8a:4d:36:73:c0:f9:cc:e5:43:f6:0c:
13:ef:a1:6d:fb:fa:e9:eb:88:2d:d5:60:47:b8:c2:
c2:77:a2:98:15:a3:37:1d:88:ee:e2:3f:f6:6e:57:
5f:a1:50:ae:4f:ad:71:9b:3c:76:87:8d:6b:3b:f3:
5f:b8:c8:b6:9e:7a:99:40:b0:cf:f4:17:bf:5c:16:
b0:25:a1:41:43:3d:35:07:36:f6:14:74:95:6b:f7:
2e:75:03:7f:48:f2:41:5f:92:a0:3a:dc:c5:cf:26:
f7:10:7a:83:b6:9a:80:24:67:fd:b9:3a:b9:bb:c6:
ff:7d:4b:9a:51:ed:26:31:82:1e:3f:41:18:5a:e1:
00:11:59:a0:03:ae:96:50:52:fb:6a:3b:2d:1b:0b:
c2:bd:46:d7:99:c7:07:4d:14:24:ea:cc:85:67:99:
b0:d4:49:8c:a6:1d:37:f0:6e:4b:f6:f0:93:6c:25:
06:e3:57:b7:69:7b:e0:10:ac:28:9b:4c:2e:f8:4f:
1a:ba:2f:b6:76:f6:c3:56:6e:0f:ca:81:ba:e8:46:
3b:f7:c7:80:72:eb:7c:9e:fa:5f:bb:5b:e0:75:a8:
85:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:B7:98:00:65:3B:53:04:5D:F6:4E:0F:28:C9:9F:07:07:CE:B3:36
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/371b744d-5ca5-4f5a-9020-4eb17dd1dd6c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
76:c3:c2:4b:fb:b6:a1:0c:22:76:68:63:a9:85:04:29:b3:cc:
43:02:15:40:a9:fe:df:35:80:98:b8:39:db:15:c9:ef:84:a7:
85:99:72:8e:41:d8:8d:75:1c:05:45:ac:c0:28:1e:36:38:b7:
11:00:9c:01:05:37:f5:ee:95:3b:be:92:46:d8:15:2e:46:1c:
3e:64:77:bb:39:72:14:c2:cf:7f:1d:2c:d6:59:93:a4:8b:02:
57:9a:5c:9d:db:19:a1:8d:dd:a3:16:15:90:14:38:7e:ef:bd:
2b:cd:a0:77:ec:3f:06:48:7a:4d:a2:58:62:d1:80:cf:bf:e7:
0c:bc:64:8a:51:83:43:8c:3d:47:4a:2e:07:16:ab:2b:26:c1:
d1:ef:17:a3:af:2d:94:ef:d9:d7:fb:d8:7a:0e:88:fb:d9:1b:
94:27:60:2d:14:62:9b:1e:76:ce:73:ca:7d:f5:7c:50:9e:45:
70:d3:bc:00:82:7c:a4:5a:42:cd:92:d7:ea:84:e5:5d:4d:84:
8d:00:65:8c:ab:da:8b:c4:96:91:6a:9a:64:10:65:2f:e2:d1:
64:88:d4:d1:7b:70:7c:80:92:5b:8a:09:03:9e:c5:74:b0:2f:
fc:11:ce:e1:43:af:e4:b1:bd:7d:65:11:0b:96:4c:33:67:38:
91:33:7e:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:35 2023 by rpki-client on console-fra.rpki-client.org