Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4874638a-11dd-4d13-bf97-30658f4ec9c0.roa
File: 4874638a-11dd-4d13-bf97-30658f4ec9c0.roa (raw, json)
Hash identifier: 5eAdn1RKIfIRDCmu5RAi7BJ17O/gfl9f8tHkhQc9104=
Subject key identifier: 85:CE:7C:5C:58:68:C6:FB:A8:8F:23:2B:8F:9C:71:3A:9D:18:F3:43
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 45A1A4C40A85085D3E71D31B88940075AD5BB102
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4874638a-11dd-4d13-bf97-30658f4ec9c0.roa
Signing time: Mon 13 Mar 2023 00:00:00 +0000
ROA not before: Mon 13 Mar 2023 00:00:00 +0000
ROA not after: Thu 16 Mar 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
45:a1:a4:c4:0a:85:08:5d:3e:71:d3:1b:88:94:00:75:ad:5b:b1:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Mar 13 00:00:00 2023 GMT
Not After : Mar 16 23:59:59 2023 GMT
Subject: serialNumber=5d77fa48746a71e2ac32da820130ecf3e9da7f38d783fefed9363f71d007ae8a, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:6d:d7:ea:d4:20:35:58:5d:2a:f7:4c:09:c2:
b2:f2:8b:90:f9:74:8d:e3:5a:e7:e1:39:1c:56:b1:
55:96:30:90:23:e0:bf:7a:ce:ec:df:84:fd:75:71:
46:f5:8d:b9:4a:97:12:84:bb:bb:fb:8d:cf:c2:9e:
e3:ed:e0:2e:b5:71:5b:3c:a4:58:33:04:f7:56:ef:
0d:1e:12:86:d0:0d:78:39:f1:8e:fd:16:1d:57:79:
6e:33:0d:4d:6d:0e:91:12:e0:81:1c:8b:e8:69:26:
94:90:3c:b1:eb:e4:1e:47:b9:8a:00:38:56:51:b6:
fe:1b:08:5c:7e:6f:b2:ba:9e:72:00:4e:c5:f2:39:
ac:d5:e2:53:84:d2:f8:77:1c:38:ad:6d:38:10:f9:
32:4c:08:eb:43:01:a4:ec:a6:9c:c5:18:09:b9:35:
64:1d:16:47:d7:09:cd:51:e4:e5:3b:84:c5:8f:85:
53:19:0a:e3:1b:e3:55:0d:8e:8a:61:29:f5:ee:1e:
91:00:51:f9:1e:c6:94:2e:69:c9:9c:91:10:db:78:
6e:e9:22:a0:7a:81:c1:bd:89:d9:f1:39:85:c6:32:
be:0c:59:4b:4b:59:d8:cf:5f:a3:84:7f:1e:91:ef:
55:fb:7f:e9:e1:43:8d:95:74:79:f2:8f:26:0a:b8:
42:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:CE:7C:5C:58:68:C6:FB:A8:8F:23:2B:8F:9C:71:3A:9D:18:F3:43
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4874638a-11dd-4d13-bf97-30658f4ec9c0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
6f:4f:37:fe:0a:8e:56:78:13:ab:28:15:94:4b:ac:f9:3e:be:
ca:47:84:39:d9:e3:6d:7c:ba:2e:29:2f:98:a3:dc:43:33:c9:
8f:d0:67:de:a8:52:70:c8:1b:6f:f7:c6:c5:d3:a1:fe:2f:20:
f0:34:bb:af:9f:c8:cb:8e:16:02:05:d6:38:c3:5b:be:38:2e:
10:ed:20:34:b5:47:30:6a:e1:67:48:d4:08:e2:9a:4a:31:4d:
5e:39:79:65:de:33:69:4d:62:20:be:7e:e2:55:f0:e7:2d:72:
0a:b2:19:30:e5:18:80:a4:46:bd:c1:65:e0:ed:89:42:7c:f6:
2a:9f:9c:43:cc:fb:4b:66:ca:2a:dd:47:53:a0:02:61:80:5c:
df:91:c1:a8:04:a6:71:fe:85:75:f8:f0:70:4e:f7:f3:5c:97:
fe:36:c9:6e:3b:ed:3e:d8:88:e5:fe:e5:2c:c0:fb:5f:11:b9:
f2:53:59:c1:da:77:67:54:13:63:67:5e:d2:89:02:e6:f8:af:
d6:a6:44:1a:84:19:58:91:82:52:98:a5:f6:88:b1:6d:b6:4e:
82:d3:62:8b:a3:a5:e0:40:a6:f6:5a:23:3a:c2:70:70:f3:5d:
e6:d7:dd:b3:e8:01:5b:97:0e:ba:38:2e:94:2b:9b:46:18:87:
8d:1f:d4:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:36 2023 by rpki-client on console-fra.rpki-client.org