Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/463b4753-5d1d-44c1-8e6d-d2e4156e6580.roa
File: 463b4753-5d1d-44c1-8e6d-d2e4156e6580.roa (raw, json)
Hash identifier: DspufwFgNzZ0JmWgm3bKFDoin6ZoGcxy9ABCrEZn33k=
Subject key identifier: 7D:69:E7:21:89:E2:15:03:D4:4D:06:3C:9C:6A:AE:13:1A:32:65:C4
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 7C8D0D4AEFDE555DC36DB64588E238B59012C415
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/463b4753-5d1d-44c1-8e6d-d2e4156e6580.roa
Signing time: Fri 17 Feb 2023 00:00:00 +0000
ROA not before: Fri 17 Feb 2023 00:00:00 +0000
ROA not after: Mon 20 Feb 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7c:8d:0d:4a:ef:de:55:5d:c3:6d:b6:45:88:e2:38:b5:90:12:c4:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Feb 17 00:00:00 2023 GMT
Not After : Feb 20 23:59:59 2023 GMT
Subject: serialNumber=bc22345af4c50dc38a27d67bc9f63d99b7f9e93d809877d90ec59366987fc4a9, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:22:16:68:32:e1:ac:fc:02:77:e6:34:e0:42:
40:d3:72:d6:9a:95:57:9b:f9:3b:cf:49:8c:3d:42:
26:7a:a5:e4:cc:2c:3d:74:e2:f5:00:e2:d9:1e:24:
7e:39:99:7a:ed:48:07:da:e1:68:ce:d4:ad:47:32:
8a:27:89:02:95:a1:4a:ac:16:fb:5a:5b:68:79:6f:
d7:33:f2:97:4b:17:32:e9:54:80:5f:03:6c:fd:fa:
89:d5:f9:79:a7:3d:a0:6e:1f:63:ad:65:52:6d:b4:
eb:73:61:8c:c7:d6:8f:7a:63:90:77:6a:70:95:0d:
c8:eb:83:dd:d8:85:70:56:07:ae:b9:c5:a2:b3:e6:
0a:61:2e:6c:06:f3:70:3a:ab:9f:98:bb:c6:d9:88:
a5:c6:02:83:cf:3e:05:2e:82:bf:82:99:ac:75:79:
5f:32:0c:ec:b2:74:f5:b1:cf:c8:cc:70:ef:fa:76:
dd:db:ea:8f:01:d2:ef:44:2e:0f:83:1e:39:c8:d7:
86:22:3e:9f:0b:5a:9a:47:4d:eb:ee:d8:68:f2:68:
73:a3:20:4b:07:3c:cf:cd:62:7a:ae:58:92:5e:c4:
43:39:a6:aa:ec:bc:1d:12:1b:c2:1d:0c:ab:fc:00:
6e:7e:14:2c:ec:10:d0:57:51:cc:08:ba:ce:94:18:
69:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:69:E7:21:89:E2:15:03:D4:4D:06:3C:9C:6A:AE:13:1A:32:65:C4
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/463b4753-5d1d-44c1-8e6d-d2e4156e6580.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
2d:a7:a3:f1:e7:54:6f:28:b1:83:45:54:de:c1:b5:d1:68:5f:
8d:25:39:bc:bf:46:8a:d8:6e:a4:37:17:2a:46:fb:0e:8f:57:
e3:06:f4:61:14:46:43:00:2e:ea:c4:2a:b6:ea:03:0e:b8:e6:
e7:4a:40:6f:68:6a:f3:f6:78:21:6a:f7:6e:e8:4c:da:81:ea:
14:a9:9f:e2:f6:e0:82:ac:ee:42:6f:aa:a1:2f:fc:23:a3:17:
fb:35:85:2a:b3:f2:7c:ce:e9:54:5d:36:46:f0:31:98:62:86:
91:6d:7b:1d:99:11:e5:93:6e:61:f9:68:af:0c:73:21:ff:57:
b4:30:da:da:85:0a:83:89:ce:88:9b:70:da:04:a7:e1:6b:bf:
f0:1a:e5:b0:36:35:27:ea:1b:8a:55:36:ab:02:57:58:e5:2e:
3a:cb:64:8e:39:b7:60:d1:87:81:89:98:08:6a:42:4d:09:d0:
13:25:66:6f:b5:d9:7e:4d:ca:64:7b:5c:ea:b1:b4:8a:4d:fd:
df:18:58:4d:5c:73:eb:3a:f4:bd:f1:6c:b4:85:7f:44:8b:c8:
a7:10:bc:36:58:f5:15:20:1d:92:f3:32:17:7c:43:73:7b:62:
b6:4b:52:aa:cf:ea:42:a7:2c:54:b6:31:29:e6:6d:44:75:e7:
cb:91:28:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:36 2023 by rpki-client on console-fra.rpki-client.org