Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/73c346db-ffbe-496d-817f-4da5efb9eca3.roa
File: 73c346db-ffbe-496d-817f-4da5efb9eca3.roa (raw, json)
Hash identifier: dDjHW+r8Zw/YdgW6/IktgY6hsa7yk/3uonLG649vWEg=
Subject key identifier: 84:B7:9D:15:2C:8A:87:DB:F7:A6:20:66:7C:42:B9:D1:0D:3C:6B:4D
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 67B5B2E3551530CE7180808C75EE28CAF32035E4
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/73c346db-ffbe-496d-817f-4da5efb9eca3.roa
Signing time: Fri 24 Feb 2023 00:00:00 +0000
ROA not before: Fri 24 Feb 2023 00:00:00 +0000
ROA not after: Mon 27 Feb 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
67:b5:b2:e3:55:15:30:ce:71:80:80:8c:75:ee:28:ca:f3:20:35:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Feb 24 00:00:00 2023 GMT
Not After : Feb 27 23:59:59 2023 GMT
Subject: serialNumber=1b6b3c78b97112a40fe37e5e73688b20faffe2c5f9c84231f0e8f0e53a454ea3, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:01:41:e2:5b:48:c5:d7:0e:a0:88:7f:fc:df:
42:0c:30:c1:03:48:01:5a:e1:1a:f5:82:76:3b:75:
b9:8f:12:9d:5b:d5:93:c6:7d:2b:7e:30:3c:12:68:
12:a4:46:67:9e:dd:8c:88:5d:9d:4a:02:4a:f8:e4:
7a:65:49:f8:a4:a6:f3:a3:71:36:1c:42:29:d9:69:
17:26:87:bf:ab:80:7e:d9:cd:df:db:a8:9e:29:74:
dd:97:80:76:59:6b:cf:fa:8c:da:97:4a:2f:0d:7e:
c4:fb:89:18:8b:35:69:53:c1:f8:f2:a3:fa:d5:2a:
78:7c:d8:98:dc:a0:dc:00:d1:50:b9:20:06:9b:61:
fa:b1:6c:8c:b9:3b:41:9d:b7:c6:77:8f:de:9e:f7:
ec:d4:29:80:64:8b:50:6c:70:97:a5:ae:32:c7:9d:
1e:f0:d6:94:b2:fa:2c:b0:bd:ad:e0:d4:4c:2f:5c:
26:62:07:57:61:4d:f1:90:42:e5:38:d8:bd:a2:f9:
ee:d2:92:d8:20:fb:ef:3a:ed:e4:45:c8:3a:fc:eb:
4e:45:1b:07:76:a1:3b:39:8f:42:d2:17:52:5a:31:
b4:02:24:d5:d3:05:b3:44:c8:a0:b4:b4:c7:80:62:
e7:6d:26:3e:be:f2:64:a7:2c:6b:29:5b:c5:a5:73:
0b:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:B7:9D:15:2C:8A:87:DB:F7:A6:20:66:7C:42:B9:D1:0D:3C:6B:4D
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/73c346db-ffbe-496d-817f-4da5efb9eca3.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
1e:e7:7b:c9:22:37:25:b6:9c:c2:8c:fc:f4:2e:da:33:40:43:
19:d0:9e:8c:76:28:06:2a:b1:25:d4:a2:d1:b1:c6:ce:1a:26:
d6:97:1c:5e:ac:ad:17:57:e3:bb:c0:89:86:d2:cc:33:e0:56:
5a:eb:d0:af:ed:42:59:ad:75:64:b9:6e:9e:e6:70:b6:d4:f5:
6c:1c:19:f8:c4:60:35:4e:ee:9b:2c:db:c4:e3:38:3c:ee:21:
81:ad:a4:45:5a:a3:4f:20:96:12:ae:63:6d:39:b2:e3:16:e4:
3a:98:f2:4f:55:9e:46:15:07:52:78:13:0f:da:e4:c6:e0:47:
a9:b5:7e:87:61:e8:11:6e:8e:ca:59:4d:85:c3:bc:8b:9e:99:
55:70:c8:eb:19:2e:7a:61:7b:b3:fe:5a:a6:0c:6a:48:17:fb:
74:8f:be:95:70:fc:38:d5:c2:1d:30:0c:4e:a0:e8:02:5a:35:
c2:b1:88:a2:c7:7f:28:40:da:be:aa:8b:bb:07:82:8d:50:11:
f0:ab:5e:5a:b0:e4:05:30:9f:91:c0:65:99:cf:e3:e6:08:74:
d6:ac:93:d4:fb:91:07:4d:f9:8c:5c:06:c0:86:50:fd:7c:fc:
74:6c:16:3a:80:91:40:00:29:39:1f:ab:3e:0d:6a:45:ae:54:
79:f0:25:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:47 2023 by rpki-client on console-fra.rpki-client.org