Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4477b134-b629-4d61-8fcd-66abcbdd8457.roa
File: 4477b134-b629-4d61-8fcd-66abcbdd8457.roa (raw, json)
Hash identifier: JYHHeaIjF2c5RvTxOV/G6qpjbLUZ/9i0a4M51FDkxSU=
Subject key identifier: 76:1A:79:F3:1A:B6:43:B1:A4:CD:B3:60:27:0C:6A:C8:85:95:EB:CB
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 020CC3B44F199C803285E0F43973E6D2C279BFA3
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4477b134-b629-4d61-8fcd-66abcbdd8457.roa
Signing time: Wed 31 Aug 2022 00:00:00 +0000
ROA not before: Wed 31 Aug 2022 00:00:00 +0000
ROA not after: Sat 03 Sep 2022 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
02:0c:c3:b4:4f:19:9c:80:32:85:e0:f4:39:73:e6:d2:c2:79:bf:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Aug 31 00:00:00 2022 GMT
Not After : Sep 3 23:59:59 2022 GMT
Subject: serialNumber=ce0b037683ee751da46a615c7c61f47925cca8a4c68fc9490e586f723ba5a391, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:9e:1c:1c:b1:40:aa:ae:96:8e:3d:6c:2c:d9:
91:b1:15:89:48:96:2d:8b:ee:23:59:08:7c:e6:31:
18:b1:3e:f1:d0:31:3d:b6:44:d3:e1:28:dd:2c:75:
d2:3b:87:15:87:f3:1b:5d:d5:6e:95:ca:8b:1e:91:
aa:80:76:c1:59:63:70:00:d2:72:fb:35:80:0e:14:
57:14:0d:93:fe:a3:fe:3c:c0:9d:b2:f1:8e:b5:15:
08:df:ff:f8:eb:92:0e:eb:06:3f:82:7d:b4:d4:11:
13:42:f0:09:c9:0e:39:d1:ea:eb:c0:a8:30:8c:29:
2a:fd:ed:0a:e1:58:ad:ed:70:57:2d:c4:da:c0:c5:
75:b4:8e:30:fe:d7:39:80:ee:7c:f9:9e:38:3c:e7:
a3:0c:62:21:1e:a0:58:d6:f6:20:86:8d:ac:0f:e7:
d8:d5:92:13:8a:07:c0:af:61:8d:9c:3f:b6:34:c2:
cc:23:1a:07:1f:a1:3c:09:89:08:8f:66:db:76:b5:
2d:a3:fd:d8:f0:e4:a2:fb:b2:b1:5d:57:56:e4:8c:
06:79:fb:b4:5d:5b:1e:cd:b0:13:a5:a1:eb:af:a6:
40:06:60:ec:e6:e1:c8:92:ad:3f:22:f0:4b:30:c9:
86:a9:4b:60:4f:d4:a9:bc:76:61:5f:89:0e:0e:e7:
1d:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:1A:79:F3:1A:B6:43:B1:A4:CD:B3:60:27:0C:6A:C8:85:95:EB:CB
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4477b134-b629-4d61-8fcd-66abcbdd8457.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
55:28:05:43:63:26:21:75:7f:2e:a0:d9:e8:66:b7:f0:27:92:
69:db:a6:a1:af:f2:4c:45:08:9e:6d:a8:e0:39:4f:56:4f:9a:
f2:11:b4:17:55:b8:85:93:ff:6c:53:a4:aa:cb:89:e9:11:d7:
c6:e6:12:e6:22:8f:9c:87:11:a1:48:41:15:ca:94:19:54:ea:
56:f4:61:da:37:45:64:28:36:3b:cb:8f:80:97:c1:08:2d:7c:
0f:b5:13:19:17:09:ad:ca:96:37:e2:7e:4e:8d:6b:8f:12:44:
fe:96:26:bb:a7:e2:f9:e1:0d:0b:25:87:24:ca:81:98:9e:98:
e1:68:b1:e2:e2:2e:f9:0b:a3:f8:37:a9:6d:39:56:90:2f:d3:
6f:6f:d0:0c:d7:e0:f1:08:dd:b3:d8:4b:2a:c3:9f:b8:34:0d:
64:e4:79:1a:e7:a3:b5:36:7e:9f:e1:09:b4:36:1d:80:66:1b:
16:85:61:87:a9:c6:f4:95:77:ab:df:e6:64:f2:48:4e:aa:a4:
30:52:70:5a:fc:2d:08:8e:c1:9e:d2:69:77:d1:d8:a2:1a:a6:
2e:b8:3d:be:1b:12:08:4b:09:ae:d6:79:69:e1:1f:30:b7:0e:
3f:55:84:3b:43:15:07:14:19:24:38:b0:84:ae:89:39:ce:60:
ba:b3:a4:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:36 2023 by rpki-client on console-fra.rpki-client.org