Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/6cf4258e-fa16-4f92-a024-1853443f1dab.roa
File: 6cf4258e-fa16-4f92-a024-1853443f1dab.roa (raw, json)
Hash identifier: 4pRTPeRHR23ex31JyEmLEB4jmkyDegnUULF0tOP7A+E=
Subject key identifier: 4E:CD:E3:8A:EF:D9:CB:14:8C:F5:23:A4:1D:AE:CA:5C:A3:31:11:2D
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 6199371C00778C08E9E7F1D3F57C86642D975D4C
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/6cf4258e-fa16-4f92-a024-1853443f1dab.roa
Signing time: Thu 07 Jul 2022 00:00:00 +0000
ROA not before: Thu 07 Jul 2022 00:00:00 +0000
ROA not after: Sun 10 Jul 2022 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
61:99:37:1c:00:77:8c:08:e9:e7:f1:d3:f5:7c:86:64:2d:97:5d:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Jul 7 00:00:00 2022 GMT
Not After : Jul 10 23:59:59 2022 GMT
Subject: serialNumber=3482c509320a97b545ffb469b0f5eec81d0cefff7e04cef3f7fe28fe0cbee16b, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:b2:1f:ce:f5:4b:e9:3b:79:c1:b8:53:77:7d:
b5:65:cf:31:36:fb:6d:e4:5a:f2:b1:17:fb:14:c2:
cd:c7:15:4d:4e:16:f5:4e:61:13:7b:59:cd:cb:86:
00:6d:28:09:96:8d:db:98:da:3f:a5:7f:f7:46:cf:
f6:8c:00:19:ba:86:d0:bc:a2:4e:2b:b7:0d:01:cf:
f0:d9:7b:de:70:d3:40:db:44:19:e8:b6:15:72:63:
13:85:5e:87:45:e9:85:a3:0d:59:43:a1:63:56:13:
c0:c0:ea:4d:46:67:44:e8:4b:20:56:49:91:7a:d0:
66:48:b0:7d:4a:df:5c:cb:be:ec:e1:fd:32:43:b9:
cb:22:3c:96:f5:31:f9:82:78:60:de:1b:74:eb:dd:
0d:bd:2c:be:26:15:84:4c:be:38:b2:eb:c5:e9:b8:
20:81:b9:c1:62:c2:2f:95:f5:2b:33:26:b8:c8:ff:
21:35:c8:37:d7:48:86:0b:cc:95:da:2d:9d:11:19:
89:6e:4f:02:ae:62:da:7f:9e:0f:e0:e5:7b:c6:be:
8a:ec:2e:45:c2:56:24:61:61:72:8b:ab:9c:df:1f:
25:82:16:77:97:9c:2c:3b:77:2a:f1:32:ef:75:e4:
b1:57:46:6c:12:4e:61:22:23:87:ec:cf:88:18:2c:
df:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:CD:E3:8A:EF:D9:CB:14:8C:F5:23:A4:1D:AE:CA:5C:A3:31:11:2D
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/6cf4258e-fa16-4f92-a024-1853443f1dab.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
3f:8d:63:2a:60:ef:11:17:ca:3e:ae:1a:c6:12:4e:19:3d:7a:
fa:a3:44:2e:e2:32:71:21:46:4f:c7:2b:49:7c:a6:fa:b5:5e:
c2:9e:34:43:45:cd:14:6b:85:b8:34:ec:36:2f:5d:90:89:21:
01:b7:d6:30:20:7d:0a:ef:12:78:a0:e4:b5:e7:e1:c3:62:65:
39:6f:2e:ed:ca:34:75:8b:ec:e5:32:e8:90:7e:ce:fa:99:86:
3c:b6:30:68:e5:42:6a:a8:4b:7d:04:e2:aa:0b:c9:14:bb:8a:
e5:29:dd:d9:7a:c9:2b:ad:6a:21:33:33:96:8a:51:87:7f:2e:
89:51:9f:8c:96:34:6c:a1:af:26:de:6b:8b:a3:60:31:6b:d3:
58:b0:bb:6e:f3:ca:96:cc:95:f8:f2:16:7b:50:d9:1d:b9:d1:
16:f4:b6:71:8a:1a:f9:48:34:6a:92:0a:f2:06:12:55:14:db:
66:af:4b:b7:27:57:bc:8d:0d:b2:9e:04:9e:b1:c8:7e:1a:da:
99:27:6a:16:52:2f:16:64:7c:80:e8:e6:f6:77:b1:61:cb:9e:
41:38:85:e9:fd:ae:b3:1b:a2:99:e0:d2:27:d1:95:cc:91:21:
07:d7:f2:7b:a0:bf:8f:c2:8b:10:15:5f:0b:51:7f:f5:92:2b:
d6:e5:30:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:46 2023 by rpki-client on console-fra.rpki-client.org