Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/72b8f452-469a-493b-b403-3722c5107798.roa
File: 72b8f452-469a-493b-b403-3722c5107798.roa (raw, json)
Hash identifier: ajJgR2Onrp0Lg9mz4hhknlDWnxLBbFbfDPeqiuxAoww=
Subject key identifier: F4:ED:5A:30:11:D1:F8:68:1A:9A:DA:E5:59:FA:85:08:85:8F:1A:24
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 7D0574E517677F6729EE9389C03CD606C19DEE1E
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/72b8f452-469a-493b-b403-3722c5107798.roa
Signing time: Mon 28 Nov 2022 00:00:00 +0000
ROA not before: Mon 28 Nov 2022 00:00:00 +0000
ROA not after: Thu 01 Dec 2022 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7d:05:74:e5:17:67:7f:67:29:ee:93:89:c0:3c:d6:06:c1:9d:ee:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Nov 28 00:00:00 2022 GMT
Not After : Dec 1 23:59:59 2022 GMT
Subject: serialNumber=1ecd545709c60fb4762956bb69c9c8af56f0b9ccbeac81febfa923cd2f990c75, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:7b:a2:a7:c1:54:32:ae:0d:e1:ce:31:07:d2:
fa:dd:13:c6:06:5f:a1:e2:72:dc:32:27:d6:35:5e:
4e:74:96:38:67:6b:bd:0a:ee:67:8a:23:f3:ea:4f:
cb:ed:f2:1d:2d:5d:f7:c5:5f:d4:ae:cf:68:d2:ae:
a9:15:d6:3a:47:d4:27:5f:8d:9d:74:76:17:90:21:
12:66:23:07:d7:43:5d:7a:18:9f:eb:07:2e:7c:0c:
5a:2e:64:02:74:53:0e:4f:c9:f6:28:70:d2:47:ad:
73:c2:8e:85:ca:03:5a:e0:ca:3e:50:7f:dc:8a:8f:
88:41:92:92:f8:76:e6:51:7c:e2:f3:7f:66:59:3b:
9d:30:d3:49:24:92:4b:03:c4:d2:10:be:e0:eb:0c:
0d:35:7a:c3:18:ef:66:fc:75:48:bc:7c:9b:be:f4:
8c:d0:61:ba:b5:8b:cf:d5:e2:fb:e4:30:02:fe:2e:
11:c6:c2:c0:2c:35:75:69:cb:db:a1:c3:56:d1:59:
8e:16:84:eb:df:5a:b7:bd:e2:f5:dc:ac:16:70:33:
c1:d5:cd:d9:7b:ca:e7:71:7a:93:3c:96:14:98:75:
4e:44:af:09:fc:b4:6f:59:6c:b2:3f:74:43:d0:4a:
85:16:cb:d8:91:cf:d1:15:9c:cb:38:4c:46:1f:bd:
1b:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:ED:5A:30:11:D1:F8:68:1A:9A:DA:E5:59:FA:85:08:85:8F:1A:24
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/72b8f452-469a-493b-b403-3722c5107798.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
76:fc:93:2d:8a:f1:5b:7b:a5:63:cd:50:b6:60:2c:82:07:fd:
6b:af:7a:e3:dd:92:3e:29:e8:2e:d6:5b:e9:47:73:4e:ff:a5:
ab:d7:a9:b3:7f:6e:2e:16:e7:3e:35:d2:87:6c:af:9a:c6:04:
1f:38:7f:b9:32:ba:af:9e:03:28:84:22:1f:c8:94:1c:b0:72:
95:22:a8:a0:b5:c4:4f:a0:e5:4d:ef:59:99:27:cc:93:35:79:
b3:fa:4a:c2:1d:14:15:bc:c1:3b:63:50:3c:17:9d:68:09:09:
45:4a:33:09:24:49:6f:c1:06:5e:b9:f4:55:f0:c3:cd:bf:15:
88:a2:93:93:49:43:be:40:54:be:7c:25:a4:3e:b9:19:e9:35:
7c:1d:a4:5a:cb:2d:5b:37:fd:21:14:67:d6:9a:33:29:f3:a3:
3e:8b:56:31:b3:d0:f0:08:e9:2c:cd:cc:87:b7:ef:52:fc:e6:
93:29:10:09:92:05:dc:e7:f3:4c:53:ad:e2:8e:34:f9:17:5a:
da:2d:6b:8d:10:ed:38:33:5c:d5:4a:e9:60:3c:54:4d:56:c3:
45:e0:af:a3:52:96:68:e6:fe:7f:03:e7:c4:23:b6:2b:2a:69:
d4:a2:37:41:59:c3:ef:37:e7:02:38:73:fc:a9:bc:93:c7:89:
9b:b5:f1:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:47 2023 by rpki-client on console-ams.rpki-client.org