Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/5c56277e-0636-457c-9d73-c06a5e35a88b.roa
File: 5c56277e-0636-457c-9d73-c06a5e35a88b.roa (raw, json)
Hash identifier: yoBSoE2hK04TUERKpGGBvy92GCcpbBKCr3EhN4Dv7vs=
Subject key identifier: 24:C3:26:B6:2E:83:AA:8B:B0:09:B9:98:F8:5B:E6:33:E2:D7:58:D2
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 7E055533FE83E0EAB0F57DEE205E9F380651098C
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/5c56277e-0636-457c-9d73-c06a5e35a88b.roa
Signing time: Sat 08 Apr 2023 00:00:00 +0000
ROA not before: Sat 08 Apr 2023 00:00:00 +0000
ROA not after: Tue 11 Apr 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7e:05:55:33:fe:83:e0:ea:b0:f5:7d:ee:20:5e:9f:38:06:51:09:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Apr 8 00:00:00 2023 GMT
Not After : Apr 11 23:59:59 2023 GMT
Subject: serialNumber=364d9545aad90d9f9eafb25b0b8834da14c1af9d5c65471f9842c541ccaf8353, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:91:c1:72:c5:8a:1b:b1:7e:e5:13:3a:0a:ef:
33:da:4e:bf:d1:29:91:46:26:80:03:ee:b7:51:1c:
6a:ad:bf:76:48:8e:2a:6a:07:a8:45:0c:dd:d1:ae:
c3:b2:c3:0d:6b:fd:ce:24:07:56:00:50:be:38:bd:
2c:60:98:b2:9c:09:5c:c6:07:2b:84:e7:11:1e:f4:
f5:47:e1:2e:2c:65:55:8b:0f:02:17:ca:7a:a1:b7:
e2:2b:09:9e:11:8a:8c:1e:1f:94:e7:f6:cb:b5:cd:
33:59:08:60:5f:c1:40:f9:ca:27:11:10:5b:a1:3f:
94:e9:7f:72:ea:b7:17:7a:71:66:75:c4:75:44:52:
cc:7b:87:94:4f:ce:e5:c1:d0:53:29:89:dd:09:8d:
ae:1b:e5:15:ab:e4:6a:cd:98:5c:58:ca:fc:1a:fb:
4d:d4:ff:e7:11:db:7d:17:ba:3c:c7:e1:1c:6c:eb:
8a:a1:2b:d5:f3:1c:af:31:50:c0:05:11:05:69:96:
ec:87:d7:72:b9:40:e3:9a:58:75:40:e4:54:34:50:
85:f8:24:23:13:53:5f:b0:50:f1:17:1c:a3:77:81:
8f:13:db:f5:2d:ba:4b:10:e3:63:0e:a2:86:75:14:
b1:e7:a4:5a:c5:2f:a2:8e:0a:60:50:47:54:54:52:
0a:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:C3:26:B6:2E:83:AA:8B:B0:09:B9:98:F8:5B:E6:33:E2:D7:58:D2
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/5c56277e-0636-457c-9d73-c06a5e35a88b.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
82:a2:22:8f:58:3a:13:a5:f2:78:92:ee:97:bb:40:1a:2f:16:
83:b1:9f:75:99:29:d4:d9:8b:74:d1:ca:20:4e:5d:78:16:53:
bf:b9:c7:6c:ce:82:cf:be:c8:eb:67:1c:73:1d:22:b2:43:80:
81:19:97:9a:3c:26:25:12:25:f5:36:eb:5b:af:10:24:38:c3:
88:8c:07:44:25:b3:4c:2c:d0:c1:90:0c:5d:68:ce:f7:aa:31:
fd:2b:29:c2:9b:f0:63:ae:68:87:1e:df:df:46:a3:bd:9f:9f:
65:86:ff:b4:96:72:ec:72:15:2c:93:db:47:bb:7b:36:cd:4b:
1a:94:f3:c3:65:f1:84:59:7a:70:5f:02:4b:aa:8e:db:3b:9b:
16:87:79:74:bb:70:94:4b:48:fc:90:13:a2:ec:1e:75:72:9d:
0e:66:52:7b:22:0c:e4:e7:ad:01:cb:b8:6e:2f:47:70:c2:0b:
59:79:4c:18:07:2c:b6:72:61:8e:cc:25:8f:6b:68:44:8a:bc:
5c:ce:c1:24:de:79:cc:52:a1:14:c1:05:b5:da:87:82:4f:99:
de:f1:cd:65:60:45:79:a6:97:a6:e5:de:1d:85:c0:23:75:60:
1d:6d:13:b8:f6:72:84:82:57:6e:e1:b2:2b:59:bf:d1:1f:2c:
e7:86:6d:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:37 2023 by rpki-client on console-fra.rpki-client.org