Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/3bde74a1-63bf-4bcc-8010-94ca227b1d2b.roa
File: 3bde74a1-63bf-4bcc-8010-94ca227b1d2b.roa (raw, json)
Hash identifier: tyjRJlvCCJjLrpQWt1U0t3Lqtz8qbbvChOqDTebQ3Do=
Subject key identifier: 68:31:6D:87:A0:8B:2C:F0:72:65:D6:94:D5:48:E3:C4:DA:2B:9B:8E
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 6DDB7E7DD908D654767F790192CB8787719B16D5
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/3bde74a1-63bf-4bcc-8010-94ca227b1d2b.roa
Signing time: Fri 07 Apr 2023 00:00:00 +0000
ROA not before: Fri 07 Apr 2023 00:00:00 +0000
ROA not after: Mon 10 Apr 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6d:db:7e:7d:d9:08:d6:54:76:7f:79:01:92:cb:87:87:71:9b:16:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Apr 7 00:00:00 2023 GMT
Not After : Apr 10 23:59:59 2023 GMT
Subject: serialNumber=3c8642c9010d00ccdf9567350af47b8d5bb66e446df99987029a7437903e3f2b, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:b5:b3:2a:7f:66:57:44:96:d0:d4:59:6d:6a:
d7:2e:a2:a6:7c:5f:3a:89:8a:8c:ba:ee:8e:95:16:
ad:37:d9:6d:45:88:95:3d:c1:9b:01:af:09:00:5c:
fb:03:74:61:73:59:da:1d:42:f5:97:c0:ef:a3:3b:
8e:f1:b7:56:08:5f:92:a4:70:b5:6b:16:e2:72:5b:
4c:ee:92:2c:0e:d0:14:8d:3b:e3:c7:9b:5b:e9:78:
ab:77:dd:9a:11:bc:94:b6:b1:27:d2:32:b0:5a:fc:
b8:89:f6:9d:13:50:9c:97:41:b0:36:5e:c2:72:d4:
e2:8a:cf:48:6c:da:77:39:64:d0:43:61:36:e2:e0:
2a:42:64:d0:09:71:1d:a3:34:b9:d8:f5:75:0b:ac:
89:48:45:a2:58:35:be:b8:8d:1d:8c:5f:d7:c6:f7:
25:ce:6f:e1:c4:dd:e7:45:6a:3d:04:08:3e:67:0a:
5c:af:9f:bb:10:e5:c8:80:e7:48:45:1d:28:09:97:
ff:69:49:9d:99:e4:15:8f:43:bc:81:b2:4e:41:b5:
c9:fe:51:78:5a:56:60:db:62:a8:38:9b:e6:83:18:
e2:72:5a:ef:73:f4:b1:20:7b:10:a5:68:a6:6d:eb:
7f:2c:e0:02:da:6f:c7:a8:21:1f:23:a3:9f:90:eb:
9c:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:31:6D:87:A0:8B:2C:F0:72:65:D6:94:D5:48:E3:C4:DA:2B:9B:8E
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/3bde74a1-63bf-4bcc-8010-94ca227b1d2b.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
79:fe:6b:4c:5c:f2:0b:ef:f6:67:ae:f7:42:da:e5:73:ee:1a:
51:eb:d0:12:91:76:71:f2:15:77:c1:ea:ee:25:4f:7b:13:17:
8a:e7:94:01:04:68:ca:db:41:9c:12:56:14:aa:3c:0a:67:fd:
d9:2e:f4:bf:e2:41:63:5b:f0:2c:97:11:c1:57:21:83:e7:ed:
ac:1c:e2:50:d6:81:4e:bd:e8:c9:d9:8a:ab:04:68:6d:96:42:
6c:3e:1a:28:75:70:e7:74:aa:04:03:96:9c:6c:6a:f2:ca:59:
da:99:b8:2f:95:0c:d3:a5:0e:fa:09:c6:f8:38:bd:91:ef:7b:
35:98:34:19:e8:16:52:a2:74:70:9f:d6:e4:60:bf:a1:7c:0b:
d8:cc:7b:22:f5:40:4e:74:6b:0b:e4:3c:f1:2b:18:bd:8c:8d:
a3:1e:df:58:36:33:65:93:b7:6e:1a:2f:49:cd:f5:5f:75:78:
ea:b7:79:c3:3f:8a:ef:ae:e5:77:98:e4:61:00:63:42:3c:54:
8c:be:47:88:5e:58:86:f2:ed:8d:4b:56:89:f6:01:c3:2f:54:
65:b4:cc:c1:e1:5b:7e:44:e8:23:6a:dd:4a:57:69:87:71:c2:
f1:26:43:de:61:3a:63:5f:19:90:5e:46:4d:08:51:49:4e:b7:
81:d8:4f:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:35 2023 by rpki-client on console-fra.rpki-client.org