Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/74beccbc-458e-43e1-877f-ec65fbe6c4e1.roa
File: 74beccbc-458e-43e1-877f-ec65fbe6c4e1.roa (raw, json)
Hash identifier: bGnMT6+7t84jD5CKwtr/iFtqwIVfx9Rnqxc25b5QmHs=
Subject key identifier: 74:7F:D4:9E:51:71:C0:58:3F:B1:05:1F:B3:06:3A:D0:6F:02:06:45
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 75EA94CB8718C731BB5FB2B60171524BC65DE95E
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/74beccbc-458e-43e1-877f-ec65fbe6c4e1.roa
Signing time: Mon 06 Mar 2023 00:00:00 +0000
ROA not before: Mon 06 Mar 2023 00:00:00 +0000
ROA not after: Thu 09 Mar 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
75:ea:94:cb:87:18:c7:31:bb:5f:b2:b6:01:71:52:4b:c6:5d:e9:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Mar 6 00:00:00 2023 GMT
Not After : Mar 9 23:59:59 2023 GMT
Subject: serialNumber=e8e40276b11d61357b19586414efb2d3313feee94f0421e6b1a546e024905285, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:c1:be:27:1d:32:a0:f2:49:77:d9:78:a3:23:
70:d3:e6:41:9f:fa:23:ba:a4:8f:4c:63:09:ce:df:
84:fc:8a:b0:49:49:d1:19:32:c4:a5:de:b1:4c:1c:
ea:22:cb:05:64:81:5f:e2:94:ba:5b:4e:56:70:e7:
b7:78:ab:6e:55:4c:46:88:88:6d:d2:ba:52:a0:85:
2e:ce:3b:5d:5a:01:e4:1a:8c:0b:c5:0a:7b:b7:1c:
5c:06:91:fd:57:66:1c:6f:33:dd:1a:2d:18:dc:83:
28:db:cd:b5:30:8a:e6:d9:39:cb:51:c7:a2:ac:9d:
e2:eb:d7:9e:c4:3a:7b:93:75:ab:3d:ad:39:95:69:
46:96:be:67:44:1c:24:58:bf:58:12:b6:f1:7a:e7:
a0:1f:83:c9:4d:fe:d3:26:68:0a:84:71:f7:fc:a5:
ff:ee:29:6c:f9:c1:d3:0f:4c:f3:5e:7f:6e:eb:d6:
54:32:0c:b8:30:9c:5c:9d:80:c6:13:ea:ad:9f:6a:
4b:35:d5:a4:7a:38:cd:b6:28:a5:02:05:97:03:8b:
69:c6:57:a6:95:9e:32:cb:a6:aa:e4:b0:4d:e3:ea:
da:42:e6:2e:90:1e:a8:39:d3:50:b1:88:bc:5c:48:
32:73:b6:03:d9:05:bf:bc:b5:d0:9c:17:2b:b9:42:
2a:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:7F:D4:9E:51:71:C0:58:3F:B1:05:1F:B3:06:3A:D0:6F:02:06:45
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/74beccbc-458e-43e1-877f-ec65fbe6c4e1.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
99:be:7d:df:bb:5b:d1:a3:59:6f:e3:59:79:83:c2:6e:3b:45:
12:b3:f7:8a:f5:1f:d8:29:74:05:b3:5a:c1:c3:5b:94:b6:3e:
7f:db:f0:e1:8e:19:51:f8:5c:cb:f3:a8:89:24:da:76:26:ec:
25:e4:36:c6:f8:bb:12:05:8f:20:12:e2:ba:28:b0:fb:53:9c:
57:82:79:0b:0b:50:76:60:80:00:91:22:57:62:03:45:c9:73:
f6:ec:2e:6d:d8:c8:e1:7b:35:50:f5:bd:a7:38:ae:7b:5e:12:
55:ed:0a:d7:6a:68:03:6f:0a:d2:eb:19:b1:d9:f7:64:9b:25:
1b:8e:5f:ca:f8:b8:aa:58:c0:8a:7c:2f:98:1c:c4:f1:5b:aa:
dc:a7:11:3e:ac:c7:30:d2:1f:36:eb:ff:ec:f5:fd:0d:47:d4:
21:1d:a2:8f:4f:78:04:bc:a5:00:77:30:a7:db:1e:c9:2a:76:
34:62:73:6c:ce:34:74:c0:29:96:98:4e:20:48:f8:9c:40:7e:
08:3e:0f:a8:84:5a:21:64:8d:40:ac:0e:1e:1c:cc:b8:be:54:
44:87:af:e6:0d:76:6b:b2:88:ea:52:02:d5:29:1d:72:ed:67:
e0:17:cd:fa:81:a9:56:1a:a7:38:ee:2b:0c:e7:4b:65:0a:c2:
29:01:3a:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:47 2023 by rpki-client on console-fra.rpki-client.org