Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/42218499-206c-46ac-acae-073605eebf58.roa
File: 42218499-206c-46ac-acae-073605eebf58.roa (raw, json)
Hash identifier: SxZt9gUg0MKTVr9J/7oZffVvgwST6xaqXr8o7JK3EIc=
Subject key identifier: A8:25:DF:BC:FE:90:52:44:82:ED:A4:9E:60:B2:5D:85:9F:75:F0:33
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 3789F1FDE0D9FCE747AAD318A0CB654D5B346641
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/42218499-206c-46ac-acae-073605eebf58.roa
Signing time: Sun 04 Jun 2023 00:00:00 +0000
ROA not before: Sun 04 Jun 2023 00:00:00 +0000
ROA not after: Wed 07 Jun 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
37:89:f1:fd:e0:d9:fc:e7:47:aa:d3:18:a0:cb:65:4d:5b:34:66:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Jun 4 00:00:00 2023 GMT
Not After : Jun 7 23:59:59 2023 GMT
Subject: serialNumber=022791cee0d72751ee6d4ab6b4a57920d6a1e9a74d304b0932e5ee7d2bc3f904, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:8a:10:18:ce:31:69:a9:16:13:e7:27:f4:91:
4b:7e:8b:f9:b9:b1:da:63:ee:24:c2:fd:06:13:7e:
04:d2:8c:b8:ff:09:2e:56:7f:0e:d5:9f:1f:c2:d6:
64:65:0b:61:3f:d3:f2:73:9e:27:15:92:58:08:55:
56:86:44:13:f1:b7:02:6d:20:08:bf:80:60:a3:5f:
41:93:7f:db:c8:4f:7a:72:44:81:9b:b3:3a:9e:6f:
88:bc:7e:1a:dd:fb:00:68:ab:35:ce:b2:9e:21:04:
87:40:d3:89:8d:e0:1d:2a:3a:0f:ef:44:ce:dc:6e:
9b:d0:fc:73:ef:38:32:cb:1b:f7:57:d3:8f:ae:66:
f4:a5:03:1b:24:92:89:ea:e1:ad:bf:28:89:c9:bc:
7d:4e:3d:87:96:b1:36:b2:fb:cb:ba:fd:b1:bc:b8:
81:dd:61:e7:bc:c1:79:9a:19:df:b7:c5:eb:e8:e8:
96:6b:19:f4:eb:9d:84:4b:02:3b:99:ef:1d:80:0a:
a4:fb:b9:3e:de:3e:a2:22:f3:4f:da:90:9f:1d:25:
e0:0c:36:02:6e:86:a2:5b:be:b5:82:2d:40:62:db:
ed:5a:2d:d3:28:f5:37:ca:9f:7b:59:1c:58:91:b6:
45:03:3e:63:94:60:ae:ff:5b:ef:a3:5d:64:ec:92:
19:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:25:DF:BC:FE:90:52:44:82:ED:A4:9E:60:B2:5D:85:9F:75:F0:33
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/42218499-206c-46ac-acae-073605eebf58.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
5f:91:27:50:e4:55:41:7b:1a:54:25:5f:a7:23:f7:62:38:43:
ea:c5:bb:5c:6c:63:1c:2e:4c:80:65:be:76:b5:df:3f:e7:42:
95:36:a4:a5:21:e1:f9:20:ba:1d:0d:fd:8a:35:10:4f:5f:74:
05:50:3c:8a:f5:4c:37:6f:75:cf:8f:07:6c:51:7d:a2:4a:81:
53:bc:cf:51:ae:32:97:d5:56:f2:f8:22:8e:e8:24:98:7c:6c:
c5:51:b6:a2:ac:f7:ed:d3:14:28:01:c2:2f:ab:80:f5:00:c7:
c5:64:0b:2f:25:9b:75:11:bf:ca:1f:e7:9e:33:92:dc:bf:dd:
2d:94:20:ec:4d:61:e9:a0:8f:aa:c7:96:a3:b2:27:c9:b0:96:
fb:fc:39:96:37:24:bd:02:d7:99:70:bc:88:94:f4:d6:8d:bd:
0a:3f:73:2e:73:ae:57:e6:e4:70:da:fb:9c:f6:48:da:20:7f:
ed:49:01:79:84:a6:20:f7:80:d8:9f:a4:07:2e:3a:1b:69:0d:
8f:90:5f:ac:1e:cd:41:58:12:4b:ce:1c:89:31:84:55:33:4b:
bd:2a:6f:32:08:bd:be:56:5e:6c:dc:71:ef:40:2a:af:ca:bc:
eb:24:b0:cd:e7:f9:47:56:cf:2e:0f:43:7d:a3:90:69:a6:67:
4f:dd:6d:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:35 2023 by rpki-client on console-fra.rpki-client.org