Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bd0a859-41ac-423b-9433-c07bbf4a2c74.roa
File: 4bd0a859-41ac-423b-9433-c07bbf4a2c74.roa (raw, json)
Hash identifier: RI1zo6rP8txxWJWLM4wwKczmt+NN567CDOCgY9f6l0U=
Subject key identifier: 76:55:E7:73:F1:D0:CB:1D:68:B2:00:99:61:96:4E:25:C6:F8:BA:92
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 39FFB81F36A624DBD0A2183F6C5213C321D327A7
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bd0a859-41ac-423b-9433-c07bbf4a2c74.roa
Signing time: Wed 01 Mar 2023 00:00:00 +0000
ROA not before: Wed 01 Mar 2023 00:00:00 +0000
ROA not after: Sat 04 Mar 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
39:ff:b8:1f:36:a6:24:db:d0:a2:18:3f:6c:52:13:c3:21:d3:27:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Mar 1 00:00:00 2023 GMT
Not After : Mar 4 23:59:59 2023 GMT
Subject: serialNumber=2107a4f796fa10e04f62162e025150f1e104e49085f657ee7ebd53fd8cb5500e, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:75:ef:90:ef:cf:86:69:8b:25:fa:76:b8:4c:
7a:aa:61:83:b2:8c:f5:71:d8:92:7d:4a:e9:d6:fa:
ae:2f:95:17:8c:96:33:51:9d:fa:66:5d:20:a0:09:
16:c8:67:7a:34:1c:14:f9:75:e7:95:e3:5a:74:42:
ad:ac:7c:52:57:7b:78:c1:9e:ed:64:09:43:e8:01:
4e:62:63:75:bb:60:11:f6:2c:27:85:71:0e:ed:52:
40:d8:d9:9b:13:a8:d0:8d:b6:3a:3f:c8:b6:c1:f9:
78:6a:06:ed:08:0a:33:6c:18:5d:e6:db:81:52:51:
12:05:49:c9:43:4b:9f:fe:5d:c0:dd:3e:79:1e:07:
91:5b:41:97:73:e5:7c:e8:e8:c5:9c:83:03:7c:04:
0a:c1:7d:c5:be:fd:28:a5:8e:85:4c:4d:a3:3b:e0:
42:12:1f:90:ae:73:06:2f:9b:dd:41:4c:6e:a1:47:
7a:52:75:12:6f:28:93:cd:1c:21:a2:d3:88:dc:51:
7d:48:05:7e:b1:df:05:72:ce:7d:3e:a5:43:bf:a8:
34:d7:79:67:70:61:3b:96:56:59:9c:21:41:72:16:
b7:64:db:8c:71:f0:0e:6f:c3:be:8a:0b:02:e2:5a:
91:b5:f2:86:fd:36:70:51:ab:77:0e:87:5f:0d:7f:
51:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:55:E7:73:F1:D0:CB:1D:68:B2:00:99:61:96:4E:25:C6:F8:BA:92
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bd0a859-41ac-423b-9433-c07bbf4a2c74.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
85:d5:b4:13:44:d6:68:27:8a:7d:49:6c:8b:b9:27:f0:8e:86:
c5:a8:cc:fa:d0:d7:42:0e:49:ef:f5:3a:ee:6d:fd:40:4f:39:
92:b3:1f:0d:76:74:02:7d:65:5c:bf:b3:b1:3b:8b:58:8c:92:
cb:19:bf:2f:2a:fa:a1:57:92:31:d4:4a:48:b2:2a:c4:6b:63:
01:65:ce:fd:b6:51:19:6f:89:59:b3:18:85:db:65:de:fa:2b:
09:50:d8:68:db:66:3e:f9:79:b5:0f:41:b9:5a:f8:98:62:ec:
7d:6f:44:ac:cf:68:df:f5:0e:06:78:a8:c5:7e:0c:65:44:2e:
56:b6:9a:30:6c:bd:0a:5a:75:54:56:5e:cf:38:4b:c0:b8:38:
c1:07:0e:c2:22:20:a6:39:f2:a3:59:b5:a5:8e:99:a8:4e:29:
53:bb:2f:6c:49:d4:51:4d:e9:7e:ed:89:b7:a9:6f:53:c5:a9:
95:cd:11:31:ef:89:97:25:e1:da:94:9a:24:a7:99:34:4f:6f:
ba:f9:c8:86:50:5d:9c:90:d8:5a:4c:e5:d9:13:10:93:5f:f6:
31:d1:05:e0:10:f7:10:5d:0f:a8:cc:0c:57:5a:e4:cb:fb:b2:
ae:ff:9f:f0:76:fd:9c:01:84:22:5a:8d:ac:14:69:89:e6:3a:
dd:b8:6a:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:41 2023 by rpki-client on console-ams.rpki-client.org