Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/6137f396-5a0d-471d-8270-2b5f0fbc784d.roa
File: 6137f396-5a0d-471d-8270-2b5f0fbc784d.roa (raw, json)
Hash identifier: AEKlyhhOnUsyeAvU8UQodGKmoENJDJ0GzQJ8ApbNXTI=
Subject key identifier: 1A:AA:36:5B:F1:E4:0E:38:5D:8D:0F:64:E1:1D:58:85:56:72:D2:19
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 12B91CE2AD4AC36902F42DC0881A9ED56544DF0A
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/6137f396-5a0d-471d-8270-2b5f0fbc784d.roa
Signing time: Sun 07 May 2023 00:00:00 +0000
ROA not before: Sun 07 May 2023 00:00:00 +0000
ROA not after: Wed 10 May 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
12:b9:1c:e2:ad:4a:c3:69:02:f4:2d:c0:88:1a:9e:d5:65:44:df:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: May 7 00:00:00 2023 GMT
Not After : May 10 23:59:59 2023 GMT
Subject: serialNumber=d512fe8823d2815b4119c17d56ac875909267cb897299a770786dc3ad7b75a1f, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:81:f8:48:5d:a3:e3:de:4e:60:74:4f:0c:85:
d5:de:9b:dd:11:94:13:39:b5:57:17:4f:98:5a:15:
b8:ae:89:83:d4:15:7f:68:c8:ea:55:83:03:1e:f5:
fc:8c:ed:28:28:3a:1d:53:6e:67:5d:a4:26:04:79:
5d:d7:da:42:33:bf:59:47:d8:9d:b1:bb:9e:9a:59:
69:e8:26:9e:2a:b2:8e:52:cc:a8:5d:8e:05:d3:02:
1d:e7:b9:17:d0:1c:10:b0:f8:5a:12:be:06:a3:dc:
44:07:ff:a9:7b:53:8d:b9:1a:8d:73:7c:9c:3f:9f:
66:bd:26:8a:6e:27:62:16:4f:31:03:c3:c1:ad:e6:
00:f2:f0:14:19:4e:f1:d8:6d:70:dc:00:6e:3c:88:
6f:98:86:83:fd:c9:ba:da:3c:f2:01:cb:41:64:ce:
7e:48:73:0a:48:61:ee:13:50:3c:01:30:3d:97:b5:
af:41:bd:41:07:6c:84:b6:fa:cc:a0:e6:bc:e8:76:
0f:8a:ad:10:06:0c:30:9f:53:c8:f1:b9:b9:d7:cb:
07:14:9c:45:13:d3:8f:b4:96:5e:5a:65:e4:6c:7a:
bc:b6:eb:2d:ac:9e:ee:8e:a0:a8:40:c6:aa:40:a5:
44:44:6b:71:79:1a:f0:e0:34:10:1f:a6:56:f7:82:
c4:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:AA:36:5B:F1:E4:0E:38:5D:8D:0F:64:E1:1D:58:85:56:72:D2:19
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/6137f396-5a0d-471d-8270-2b5f0fbc784d.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
96:60:ee:20:c0:b3:3b:52:20:67:ee:d2:3b:82:11:92:08:60:
01:07:64:24:e5:c7:0d:d5:3c:79:84:c6:dd:95:a4:be:ee:b1:
d7:d0:6e:d3:4c:10:50:0a:55:70:47:ae:c8:56:e4:d5:8e:25:
21:df:09:d8:ff:f1:ac:fb:c4:75:f4:93:64:36:5f:f0:10:fc:
49:ad:b9:a1:39:c9:24:ea:52:c0:ae:3f:bf:6f:57:71:34:4c:
0e:13:7c:82:c0:52:3f:9a:43:bc:e1:ba:be:92:e9:01:c7:8a:
42:1f:a9:d0:65:94:1b:e0:53:7d:22:30:da:62:32:a6:98:36:
78:4a:e9:a1:4d:e6:28:0c:18:b0:e1:6e:27:ca:74:81:2a:33:
a2:bf:b6:16:c1:a1:0a:f8:46:d7:ae:1e:90:ad:28:f1:d9:62:
22:80:79:2c:1d:d1:d9:8e:95:5f:61:a4:14:1f:a1:9a:6b:59:
c5:17:66:ce:16:6a:55:62:f2:0a:c9:4b:e2:66:93:fa:46:18:
f6:e8:f7:ed:9e:d4:7d:54:93:b7:ad:39:47:65:7c:c0:e5:10:
bc:0a:63:4f:69:dd:ff:2a:be:41:a3:36:7d:3c:66:21:5e:fe:
c6:d5:a5:fe:30:8b:0f:5c:39:ef:87:26:d1:72:ce:25:12:3a:
1f:5e:b4:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:38 2023 by rpki-client on console-fra.rpki-client.org