Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/60c8e326-edd7-4eab-a352-08c59e1955f7.roa
File: 60c8e326-edd7-4eab-a352-08c59e1955f7.roa (raw, json)
Hash identifier: hfzux3c2AmbMWki6LnmgaTE+4A6Rgn+JZLWLiDkhvQ0=
Subject key identifier: 89:4C:A8:A8:EA:98:E2:FC:E1:4D:55:37:6C:36:5E:5B:83:53:06:41
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 78609E4CC9E46F65E8C34514606E5F92E371C9CF
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/60c8e326-edd7-4eab-a352-08c59e1955f7.roa
Signing time: Sat 29 Oct 2022 00:00:00 +0000
ROA not before: Sat 29 Oct 2022 00:00:00 +0000
ROA not after: Tue 01 Nov 2022 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
78:60:9e:4c:c9:e4:6f:65:e8:c3:45:14:60:6e:5f:92:e3:71:c9:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Oct 29 00:00:00 2022 GMT
Not After : Nov 1 23:59:59 2022 GMT
Subject: serialNumber=dd67cbcc715627337a6838620e67d45712e6f4f6d4ed321f5e13a77fd13ae02d, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:4a:cd:71:8a:58:4f:86:85:b6:62:d7:52:97:
5f:a6:03:92:e5:59:d0:f2:1a:56:7f:73:1b:02:8b:
6f:1c:df:b5:3c:da:55:02:12:43:5f:0c:bb:69:0f:
0a:93:8d:24:fe:5b:45:dd:ac:7d:6d:b0:01:aa:0e:
3e:ac:52:cf:04:f1:c8:12:e4:c4:d4:f6:66:f3:8d:
1e:86:97:b5:99:28:52:2c:28:31:9e:b3:f9:5b:95:
d8:22:9b:71:ad:8f:43:68:2a:cf:d8:0f:72:5c:43:
80:8a:76:3b:94:c1:6a:38:52:f8:70:9e:44:68:df:
43:8f:9d:62:2c:dd:04:02:65:39:5c:f4:ff:e0:c3:
03:04:69:be:06:0a:ff:b8:78:4b:5e:c9:13:c3:d8:
a7:8b:e0:f8:8a:12:d9:8b:ac:4c:f9:49:f7:9e:9f:
90:71:a1:0c:66:f4:c0:4a:04:84:d1:68:f4:08:a2:
24:d3:fb:f2:3e:05:5a:28:dd:54:ca:16:ac:f7:4f:
ac:b0:9a:9c:ca:37:e0:f7:00:90:6d:5d:f8:75:37:
ba:e6:a5:67:ba:fb:f7:e2:0c:b5:0d:bd:57:e0:28:
bb:90:54:30:17:42:c2:64:3e:55:8a:0f:0d:4a:80:
64:6a:93:74:8c:36:31:56:3c:c5:68:4e:44:17:96:
3f:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:4C:A8:A8:EA:98:E2:FC:E1:4D:55:37:6C:36:5E:5B:83:53:06:41
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/60c8e326-edd7-4eab-a352-08c59e1955f7.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
9f:43:99:ed:f3:b0:2a:fd:b7:ca:f0:43:20:65:85:a3:0e:10:
f5:41:43:3c:f2:c9:9d:17:20:cb:ec:36:a3:cd:bd:19:0a:68:
19:e6:60:4b:0f:af:a4:a7:35:04:43:c1:11:b8:fe:17:06:fd:
51:7d:58:1b:22:90:63:b6:db:a8:18:7e:3e:06:62:66:61:ad:
98:e7:d2:19:64:cd:d9:9b:47:a2:2b:c0:87:26:c9:b5:5a:af:
35:f2:78:98:3e:64:f7:1e:37:85:4b:18:ce:42:cc:00:cb:68:
4a:44:1f:72:33:ae:5b:e7:cc:9f:f6:af:28:a1:e3:22:99:1a:
74:2c:e6:28:10:08:ab:fa:ad:f1:85:b0:57:f3:e7:a2:76:da:
2e:fa:57:f2:0a:8a:c9:68:b9:59:35:e2:3c:1f:1c:8d:66:57:
cb:b9:51:42:30:0e:11:c2:10:80:89:3b:9c:7e:a0:5d:4f:40:
59:e2:59:46:64:e2:6c:7e:42:32:2e:7a:15:fe:98:a8:70:ce:
dc:14:c1:89:63:6e:1d:86:a2:4a:db:00:1c:c2:df:05:72:58:
22:22:4f:c1:25:5f:62:0b:11:4f:b5:9d:c1:1e:79:a5:8b:a6:
a7:af:f1:bb:d2:5c:55:7b:a9:47:e6:d0:8e:8a:67:2b:b1:9f:
5d:f4:8f:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:46 2023 by rpki-client on console-ams.rpki-client.org