Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/398590ef-5166-41fc-bf66-cbed20bc15e8.roa
File: 398590ef-5166-41fc-bf66-cbed20bc15e8.roa (raw, json)
Hash identifier: 9xMxLGvQKaYVgdiNStoAt9kAghNhmN5LObQwqECOQpc=
Subject key identifier: 08:7B:AC:30:4A:C7:09:E5:F1:FE:04:E6:3B:E5:B1:B9:07:5E:ED:77
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 6BF072DA851DDB0CF4B4D30C315B90903DF30380
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/398590ef-5166-41fc-bf66-cbed20bc15e8.roa
Signing time: Mon 20 Feb 2023 00:00:00 +0000
ROA not before: Mon 20 Feb 2023 00:00:00 +0000
ROA not after: Thu 23 Feb 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6b:f0:72:da:85:1d:db:0c:f4:b4:d3:0c:31:5b:90:90:3d:f3:03:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Feb 20 00:00:00 2023 GMT
Not After : Feb 23 23:59:59 2023 GMT
Subject: serialNumber=94089a3391a12a8c88aa30412e4008c648c739dfb974f3e434d9076568424fb5, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:ca:05:fb:fc:93:37:2d:26:04:7e:65:ed:bc:
6f:14:0a:fc:c2:c3:59:7b:ae:70:c4:e0:d5:d5:d7:
46:f1:96:18:61:90:36:fd:74:42:6f:db:00:4a:93:
17:0e:d0:cb:48:d3:9e:de:e0:81:4f:69:44:1d:90:
5f:d3:a1:68:cb:cd:56:72:e5:c0:95:8d:69:bb:d2:
59:8d:f1:af:93:76:55:d3:c8:cc:c8:f5:cd:43:b4:
79:95:b3:98:eb:bc:2b:4e:ff:98:3c:ba:e0:79:72:
77:0f:5c:a0:f1:1b:d6:dc:80:4d:07:b4:6a:07:e4:
e7:b0:2e:b0:a5:7d:e5:37:eb:87:be:c0:c1:b2:91:
a6:54:b0:14:42:3f:25:2c:57:04:04:b7:6d:d5:3f:
2c:a5:ff:90:a1:8a:d9:cb:98:f5:9c:96:d8:37:cf:
f1:b7:31:52:e4:af:09:e5:a1:11:df:00:cb:a7:17:
f4:6a:e3:68:20:07:60:a2:d2:fe:4a:87:ea:de:f8:
f1:b0:31:62:61:eb:58:a0:8e:0f:46:05:fc:6f:1d:
58:04:bc:6d:31:41:7c:67:fe:60:f7:2b:e4:59:c8:
ac:33:c3:7d:db:ca:03:65:0a:0a:0a:ae:9b:02:3d:
6f:60:cc:6e:78:5d:d3:40:58:0f:92:fb:5a:3b:ed:
60:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:7B:AC:30:4A:C7:09:E5:F1:FE:04:E6:3B:E5:B1:B9:07:5E:ED:77
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/398590ef-5166-41fc-bf66-cbed20bc15e8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
2c:49:99:b4:0a:5b:e4:e8:8c:8c:40:a7:74:1a:c2:7b:b9:82:
ec:59:ce:01:ed:a9:b2:79:11:fd:d3:c9:a7:0c:9b:2a:b5:1c:
6f:06:b7:07:95:08:81:14:39:35:62:bf:2b:87:09:a5:3f:cc:
a1:e0:95:27:88:17:ef:24:c6:a7:34:c5:d3:08:f8:31:2e:37:
2e:39:73:bb:25:1f:40:12:8e:55:1d:ed:5e:81:be:a3:d5:cc:
43:fe:41:2e:ef:3d:c1:9c:04:0e:49:cc:85:05:02:32:67:4e:
81:94:e4:c9:4f:74:fd:92:da:38:bc:c8:b0:f0:cb:94:75:8f:
93:f0:05:d6:48:d3:b7:95:5b:a8:27:f6:04:8b:e6:bd:2d:b6:
41:01:fc:b2:16:23:90:e4:6b:70:99:3f:f8:f1:d4:8b:99:61:
bd:b2:aa:58:01:6f:40:e4:12:d5:11:82:62:03:2b:b3:13:96:
df:bb:94:78:f3:a3:f7:86:7c:bd:23:16:84:c0:ae:64:59:dd:
9b:7d:8a:b9:23:23:ba:d5:7a:0a:a0:0b:ff:9c:53:53:ee:e9:
b5:95:34:46:5d:79:38:5e:0b:be:f2:1f:db:1a:05:21:7f:c8:
e5:64:37:86:0f:1c:cd:89:94:ad:72:26:c1:56:4f:20:54:ef:
5c:f2:ae:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:35 2023 by rpki-client on console-fra.rpki-client.org