Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/5c03767f-b0e5-444b-8c9e-744b333549b1.roa
File: 5c03767f-b0e5-444b-8c9e-744b333549b1.roa (raw, json)
Hash identifier: BTP8JJzRqu+/2Z1Ylegl10aCOIJDjFs440rHHF4sMlQ=
Subject key identifier: 62:BA:C3:A1:4F:18:64:F4:87:0C:05:15:14:5D:69:0C:5D:2D:4C:53
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 5231AE2592F0D6B64E05235658D10099C8CC166A
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/5c03767f-b0e5-444b-8c9e-744b333549b1.roa
Signing time: Sun 05 Mar 2023 00:00:00 +0000
ROA not before: Sun 05 Mar 2023 00:00:00 +0000
ROA not after: Wed 08 Mar 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
52:31:ae:25:92:f0:d6:b6:4e:05:23:56:58:d1:00:99:c8:cc:16:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Mar 5 00:00:00 2023 GMT
Not After : Mar 8 23:59:59 2023 GMT
Subject: serialNumber=ec12f5169b86c034f43dc57b993400dc018b931ab7f84164454aca326ec3087c, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:60:0c:fe:b4:2b:24:c6:ea:1c:47:a7:69:e6:
70:6a:70:16:0e:aa:b1:8a:51:83:a8:6e:38:bb:35:
6b:4c:17:08:37:25:b5:63:15:dd:5e:3a:37:6c:e4:
67:f9:d1:7f:43:f2:be:d7:ab:40:45:4b:19:0a:62:
56:8d:64:09:0d:1b:12:70:70:12:3e:d7:41:08:e9:
39:c7:d8:77:64:15:05:2b:91:37:ae:5d:97:b4:e0:
22:73:f8:57:8e:b4:bc:39:33:3d:31:b4:b5:2c:bd:
b4:d8:aa:26:c4:4b:de:93:8d:13:8a:34:93:b0:8d:
f9:04:e0:54:9c:be:0b:86:83:b4:27:92:62:14:7e:
41:1e:20:42:a3:0b:51:c5:56:d7:57:fc:c7:c7:70:
07:b2:0d:b4:45:91:f0:dd:fc:da:1e:d4:e1:79:c2:
0f:02:5e:ba:5a:6e:32:fd:8f:31:02:5b:f6:30:1c:
ba:b2:ea:c2:6a:0a:91:c8:a7:55:64:37:52:cb:37:
b5:a7:80:68:b6:f7:5c:50:3c:68:2e:ec:fc:5e:19:
ec:83:fd:21:28:a0:2c:5b:d3:b7:05:7f:d8:cb:7a:
a0:0e:5f:ac:12:34:d0:59:d3:db:96:05:53:9e:71:
93:bc:32:a5:e7:52:fc:bd:5f:d1:23:22:04:46:cf:
be:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:BA:C3:A1:4F:18:64:F4:87:0C:05:15:14:5D:69:0C:5D:2D:4C:53
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/5c03767f-b0e5-444b-8c9e-744b333549b1.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
91:e4:43:75:44:32:f0:67:12:39:e2:99:4c:98:51:5b:ba:ce:
34:16:4a:00:a0:c0:45:3d:65:88:a9:b8:95:1b:22:74:be:8c:
6e:79:87:d4:43:ec:66:1c:db:dc:4b:06:dd:c6:24:3b:37:d6:
68:b1:44:5c:19:a9:2c:0f:63:8c:6c:a5:1f:0a:96:34:a9:89:
75:1d:01:9e:4b:ba:d1:f9:4c:b4:9a:57:15:a8:63:3f:06:9c:
75:4a:92:63:f3:47:5f:25:84:cd:95:f0:fa:d8:c9:23:69:51:
82:2b:84:ed:a7:e9:8c:55:eb:15:4d:44:ee:00:8c:f7:16:ef:
04:36:ca:ad:5e:ac:8b:54:63:5b:0e:b9:05:3f:fa:3c:a1:be:
66:94:a9:97:38:30:65:9c:d3:f8:0d:28:2b:7c:10:b7:6f:c6:
b6:79:d5:45:59:80:77:2f:2f:2e:28:8c:3e:85:4d:94:42:f7:
19:9c:7c:ed:a3:f6:34:42:fc:9d:b2:cb:26:df:3e:39:ce:d3:
75:50:f4:23:53:25:af:cb:73:73:fa:b1:26:5b:72:d0:e4:3d:
2e:3e:84:29:4f:fd:a3:16:7c:f3:7f:24:cd:45:92:75:6c:57:
1a:9e:b1:44:d5:e3:aa:28:ac:ff:85:72:e9:b0:67:1e:d5:1f:
84:92:c7:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:37 2023 by rpki-client on console-fra.rpki-client.org