Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/6c19a6fb-22da-4667-aa25-f6d3b98e431f.roa
File: 6c19a6fb-22da-4667-aa25-f6d3b98e431f.roa (raw, json)
Hash identifier: vQ3zZI+rLLJ7y7czbiZBmMNwxP0wP6lJWsklK80mWTw=
Subject key identifier: 32:6B:CE:33:74:32:40:04:7D:94:74:FE:64:08:96:00:37:AE:F7:1A
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 352812BA315E9288A25AE4AB6874C6C397238496
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/6c19a6fb-22da-4667-aa25-f6d3b98e431f.roa
Signing time: Mon 27 Feb 2023 00:00:00 +0000
ROA not before: Mon 27 Feb 2023 00:00:00 +0000
ROA not after: Thu 02 Mar 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
35:28:12:ba:31:5e:92:88:a2:5a:e4:ab:68:74:c6:c3:97:23:84:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Feb 27 00:00:00 2023 GMT
Not After : Mar 2 23:59:59 2023 GMT
Subject: serialNumber=afc0abd062c8fb9dfa808e6ec7def2a84344e7d26233309d8c37f5f3e073315c, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:e6:b3:cf:8a:66:7c:7e:33:0c:c4:24:98:2b:
6d:88:47:e8:f8:aa:c6:57:bd:f4:69:b0:3b:64:a9:
10:d0:52:d8:a1:cd:ce:ea:e0:f8:db:fa:f1:db:f7:
5d:13:7b:ea:61:08:ca:58:a1:0e:46:74:8c:42:0d:
f4:32:7a:5f:80:3a:2c:af:7c:bb:8a:c9:9f:99:28:
c9:09:da:f1:e8:e1:f2:c9:bb:6a:2b:c6:4d:81:31:
7f:2e:d9:a2:c0:e5:b2:57:00:62:79:1c:e6:a5:70:
a3:cd:90:4e:1e:ec:69:87:51:3e:a1:cd:a0:20:1d:
53:60:e7:e7:2c:b2:89:1a:b4:61:ad:41:bb:73:6d:
e6:c5:26:75:5a:39:dc:44:16:76:b9:32:e6:8f:4e:
b1:8b:3c:1d:64:b8:9d:2e:44:a1:ac:38:8c:6c:4e:
38:b1:c8:ca:00:db:de:1c:57:9b:e5:9d:e1:57:ce:
51:b3:ab:bc:2a:86:28:85:2a:38:5b:73:d0:0f:06:
6a:d8:4d:f9:68:f3:bf:2d:1c:5a:b7:e3:01:cd:52:
f3:e0:df:49:05:fd:67:fd:72:9f:fe:fb:ec:3e:68:
74:a5:78:a7:b5:23:64:c6:71:3b:d4:44:10:8d:c8:
5c:bf:16:36:fd:60:e7:0b:ed:21:8d:aa:1a:f9:fa:
7a:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:6B:CE:33:74:32:40:04:7D:94:74:FE:64:08:96:00:37:AE:F7:1A
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/6c19a6fb-22da-4667-aa25-f6d3b98e431f.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
ba:10:fb:98:50:c9:a8:0c:40:cc:2f:1e:e6:0f:13:a3:65:a9:
2a:3a:1f:9c:5d:3a:47:d6:9f:35:f6:14:5f:a1:6d:02:d8:1b:
14:4d:a7:e4:8b:37:02:ac:27:0d:06:ef:18:7b:a9:6d:fd:de:
62:27:c5:07:e2:42:dd:fc:54:f2:da:fa:64:61:2d:73:0c:4f:
e5:94:c0:64:7e:18:10:8e:90:ef:44:13:b5:eb:71:42:82:e5:
dd:cd:46:14:07:1c:c0:b4:e4:cd:e9:80:56:69:03:42:53:ec:
06:24:d8:e9:4e:92:f7:4f:a5:70:43:56:72:1e:a3:ca:5f:4d:
6f:4f:0a:25:71:43:81:2a:c3:c1:9e:a0:2c:13:96:72:22:2f:
bc:93:cd:a9:51:bc:4b:2c:e0:7a:98:4c:ba:31:88:10:c2:c8:
46:be:a7:69:b4:8b:f8:77:79:93:07:41:d7:92:25:ea:6d:b4:
e2:73:38:13:90:67:f0:bd:a0:ac:20:53:4e:be:64:36:b1:66:
23:8a:11:e5:3c:bf:83:9c:7c:ab:7b:97:86:4f:9d:55:3b:a3:
8c:aa:6a:1d:ad:53:c5:ae:62:c5:b8:66:4e:08:8a:ae:0a:ef:
bd:cb:a0:59:7d:8b:7c:7e:f9:86:e9:90:b3:be:3c:2d:58:29:
74:4f:8b:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:46 2023 by rpki-client on console-ams.rpki-client.org