Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/64754de7-cb83-4050-87f9-f8aa9bda6b91.roa
File: 64754de7-cb83-4050-87f9-f8aa9bda6b91.roa (raw, json)
Hash identifier: 9UjSrCoTO52adyEHCvmM2A/m9cc4vYjPHLZajIGpXdM=
Subject key identifier: AF:03:F2:BD:77:E2:FB:EE:97:E9:A0:8C:CC:4B:FA:87:04:5C:A4:8E
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 1E7058EF57A52CE59C7319487DAA89C505072331
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/64754de7-cb83-4050-87f9-f8aa9bda6b91.roa
Signing time: Wed 28 Dec 2022 00:00:00 +0000
ROA not before: Wed 28 Dec 2022 00:00:00 +0000
ROA not after: Sat 31 Dec 2022 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1e:70:58:ef:57:a5:2c:e5:9c:73:19:48:7d:aa:89:c5:05:07:23:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Dec 28 00:00:00 2022 GMT
Not After : Dec 31 23:59:59 2022 GMT
Subject: serialNumber=a6db3a970ab38d2086d7421223a2f8227d4ffa18da53f0bd1e1e6b0e7c70b7b7, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:7d:2f:81:64:bb:3c:d9:af:13:0a:37:36:b5:
10:6b:8b:a3:b5:c1:c6:7f:43:5d:70:22:3d:10:76:
cb:c8:13:aa:a9:fc:48:95:32:eb:a6:1d:81:62:9e:
4c:eb:73:39:94:7d:62:89:c7:d8:b9:87:73:65:e9:
6d:14:7b:78:c4:4d:40:c6:85:4f:2d:0c:08:e3:dd:
a5:9a:d3:c1:cb:df:1d:27:06:14:4a:fd:4d:28:a0:
a8:6b:4b:8d:b6:5a:e3:22:f0:c7:83:ed:c7:10:b8:
69:5a:40:c6:f2:a3:9f:89:ce:fc:08:0b:37:9c:c7:
93:5d:14:14:fe:2b:c6:ce:e2:df:45:74:89:ae:51:
c4:5e:0b:42:82:05:2c:f2:c6:14:f8:63:7f:14:f4:
6f:87:5c:24:36:7a:24:eb:12:4d:c9:64:9d:b1:5a:
55:d8:03:1e:55:41:b9:7b:64:03:43:3c:a9:bf:16:
ea:17:a3:dd:ba:fc:94:19:15:11:ee:95:ef:46:24:
24:83:ea:01:03:8b:18:34:5a:8b:31:c0:d3:52:17:
22:bf:a9:0d:4a:48:8a:5e:7a:36:da:7b:3e:ae:a8:
8f:35:d1:2d:f0:16:bd:11:21:c3:a2:09:9f:c7:fa:
81:f5:bc:fa:80:6a:30:7f:88:27:6b:2c:bf:9d:f5:
4d:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:03:F2:BD:77:E2:FB:EE:97:E9:A0:8C:CC:4B:FA:87:04:5C:A4:8E
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/64754de7-cb83-4050-87f9-f8aa9bda6b91.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
c7:7d:9d:5a:85:eb:c4:62:76:44:61:86:10:dd:e4:1d:81:a6:
6e:20:6d:95:31:0a:20:1c:00:4e:60:ef:86:3d:62:7c:76:b5:
02:e9:c3:36:ed:ea:76:cf:5b:c9:2b:99:e9:04:21:f6:55:09:
21:8c:bc:ec:74:0b:d3:7a:13:f9:54:37:a7:fa:3d:21:6a:cd:
75:04:79:89:a3:40:7d:39:63:18:9b:5e:ae:75:50:e3:16:25:
6e:08:b8:17:1c:38:b9:41:c9:5a:97:bf:1b:20:0f:f8:67:dc:
26:8f:bd:b2:7f:1c:46:23:13:6a:6a:aa:0f:91:a5:18:58:e6:
94:aa:ea:52:b5:fc:1b:e9:cd:6d:bc:d1:1d:44:aa:68:82:4a:
8b:fc:c4:ff:5f:99:a4:fd:20:f7:41:12:6d:74:98:f8:39:4d:
ca:96:60:3e:b9:f7:b8:47:4d:c1:20:ec:cf:c2:52:84:aa:45:
44:17:a6:d4:27:ba:d2:dc:a0:0c:91:a6:aa:ea:5d:f0:1b:d2:
3d:1f:53:cd:58:bc:33:cd:42:8d:8f:69:55:be:56:3a:88:95:
24:3b:0e:36:1a:91:92:1d:5e:60:04:6a:0c:9c:89:0c:f3:75:
66:b5:a7:c1:d5:6d:ad:cd:e3:54:9d:c2:d4:d6:ac:fc:32:d8:
ee:a6:bf:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:38 2023 by rpki-client on console-fra.rpki-client.org