Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/62e84793-4606-44d8-97dc-b3eb4bd1280d.roa
File: 62e84793-4606-44d8-97dc-b3eb4bd1280d.roa (raw, json)
Hash identifier: K87+SWkI4uOk311qt0In/A4tCBQiyHetrtvTk2xSSk8=
Subject key identifier: 3D:25:4C:08:D8:A8:65:71:BF:22:2E:4D:8D:43:BE:AC:1D:79:04:63
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 0BEAB6BD5B712C2C4854AD3058E0F592961D6232
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/62e84793-4606-44d8-97dc-b3eb4bd1280d.roa
Signing time: Thu 23 Feb 2023 00:00:00 +0000
ROA not before: Thu 23 Feb 2023 00:00:00 +0000
ROA not after: Sun 26 Feb 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0b:ea:b6:bd:5b:71:2c:2c:48:54:ad:30:58:e0:f5:92:96:1d:62:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Feb 23 00:00:00 2023 GMT
Not After : Feb 26 23:59:59 2023 GMT
Subject: serialNumber=9c5d2f6c88cdfdf5775fb938f4f28811664c3f57c288bdaba6d950666417667c, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:4c:ac:9a:aa:d1:bb:8f:a2:e3:db:c9:ca:39:
c1:eb:d3:09:d5:0e:72:c0:05:7f:ca:cd:b1:cc:2a:
8f:d1:34:7a:72:77:16:e2:b7:ca:ab:5d:24:ee:ef:
53:05:27:e2:5c:0b:ee:94:ff:b5:c2:a5:bc:e2:0d:
0d:5e:94:19:22:8d:2d:9e:28:71:1c:df:3a:34:4d:
41:7f:03:f1:de:b9:7d:88:eb:4f:9c:dc:18:a7:52:
ad:b4:b7:35:ef:98:1d:71:0b:28:5d:db:2a:e2:ca:
ef:e7:78:5f:f6:02:3e:12:bd:ba:4b:9e:f5:10:91:
39:a2:f4:15:9c:7d:8d:ce:63:32:2a:8e:6f:07:3e:
73:7e:78:79:06:a4:4b:55:6f:b5:4c:e6:0d:d0:ba:
16:a1:21:2b:e4:68:4e:3f:9a:d2:b1:13:bd:e4:b4:
55:17:11:f5:1e:9c:60:7d:13:9d:dd:88:8c:17:fb:
2c:78:a2:9f:c5:ab:09:17:8c:9f:fc:da:b4:52:27:
7d:34:fe:6b:58:16:40:8d:4c:9a:47:f1:50:eb:6c:
13:e4:00:1a:74:b5:3e:b5:e9:54:10:04:19:95:a8:
09:49:71:33:cd:17:f5:d3:18:ba:c7:b5:6a:15:e9:
d5:8e:a3:6a:2f:f9:16:5d:84:bf:46:ec:40:7e:be:
6f:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:25:4C:08:D8:A8:65:71:BF:22:2E:4D:8D:43:BE:AC:1D:79:04:63
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/62e84793-4606-44d8-97dc-b3eb4bd1280d.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
7a:2c:63:9c:d4:33:b7:12:11:24:84:36:d0:ea:aa:56:23:8a:
fa:04:4f:28:bb:37:8f:d3:96:f3:97:6d:24:de:7c:e2:91:a2:
2e:6f:55:bb:c5:c4:6b:1f:b5:27:57:0c:63:36:60:e0:40:8f:
13:d1:0e:ee:c6:69:70:2d:71:18:48:e8:18:7c:90:06:ce:7a:
b2:6b:f8:c0:73:06:58:d2:25:58:b5:46:e1:1f:66:6b:d1:5c:
aa:1f:66:34:06:cd:33:94:40:08:22:6d:ee:ae:80:fd:b5:be:
9d:8c:c1:7e:fd:69:db:57:53:50:fd:0f:90:b6:8c:31:1e:d6:
08:7d:92:94:71:6a:fe:30:4a:79:b3:8d:6f:72:49:0a:ae:99:
fd:b0:5d:df:c5:75:28:6c:c3:51:a2:4a:32:6e:84:2b:79:0e:
c1:e1:b2:c8:17:69:87:8f:1c:c0:e3:40:3b:ab:73:84:7e:1d:
bf:0a:4d:17:2a:5b:92:27:03:f7:f1:5a:c3:d9:74:ba:a5:bf:
00:a6:4a:96:33:06:f3:4e:f0:ab:4d:4f:82:bd:77:51:f9:57:
5c:ac:0a:d1:86:f2:75:e8:6b:0f:d0:55:20:81:5a:45:a8:a9:
95:dc:f6:84:fe:0e:81:97:ce:81:04:f6:a5:cc:24:52:8d:59:
b0:ea:49:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:38 2023 by rpki-client on console-fra.rpki-client.org