Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/77dc0496-0cca-486b-b492-b93b1b66a18a.roa
File: 77dc0496-0cca-486b-b492-b93b1b66a18a.roa (raw, json)
Hash identifier: ZLJVxf4SWzXVTfz9yDE/3/COe7iqgTRH0q/JfCp8iVc=
Subject key identifier: DB:AE:9F:97:C7:04:FC:5D:00:1E:FE:CA:29:73:5B:6B:64:62:33:B1
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 4E314B5C749D0B3D82FBE5C54F5897A0C86F2C7F
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/77dc0496-0cca-486b-b492-b93b1b66a18a.roa
Signing time: Mon 24 Apr 2023 00:00:00 +0000
ROA not before: Mon 24 Apr 2023 00:00:00 +0000
ROA not after: Thu 27 Apr 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4e:31:4b:5c:74:9d:0b:3d:82:fb:e5:c5:4f:58:97:a0:c8:6f:2c:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Apr 24 00:00:00 2023 GMT
Not After : Apr 27 23:59:59 2023 GMT
Subject: serialNumber=a8c36257cfa7851821335f0c83f22aed81d6f609d2bb61d76be8346d2fc4da1f, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:82:49:d5:24:3b:40:20:05:45:74:03:74:e2:
fc:d4:2e:07:5e:d0:cd:e2:72:28:53:c3:0e:a6:01:
6f:bf:91:1c:51:46:04:4d:bf:cd:61:80:e0:2a:db:
f8:7f:10:fe:1d:2a:6c:61:54:6c:79:a2:17:8e:f1:
c9:4c:4d:8a:b9:ab:e0:83:2a:99:27:40:f8:28:b0:
8d:f2:9c:61:38:29:6f:7b:a5:59:d4:1e:10:9c:57:
64:41:0d:73:61:d3:a0:00:34:9b:e0:c9:08:05:4b:
03:d9:d8:19:62:29:66:51:4b:09:96:18:8b:4e:b2:
c1:13:39:55:16:ad:6d:2c:7e:03:bc:8d:57:78:f1:
7e:cb:34:6e:89:91:78:ae:ee:92:39:09:09:0c:70:
dc:6a:c8:9f:51:30:c9:03:d2:cd:e9:01:43:85:a8:
9b:3b:6f:10:21:3a:f2:32:55:6c:f4:ff:3f:7a:a7:
94:99:53:81:d5:4b:7e:6d:33:b9:12:bc:42:27:ec:
fe:cd:ee:65:eb:8c:e0:5b:68:ec:bb:7e:65:cd:9d:
7a:d3:e1:79:a6:61:62:bb:e7:5d:0b:7b:04:1c:d6:
d1:28:a8:a9:c6:d3:cf:8b:76:6f:91:ed:55:3d:58:
16:95:9a:91:c2:b1:fa:f9:78:3e:1e:be:a1:8e:32:
a4:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:AE:9F:97:C7:04:FC:5D:00:1E:FE:CA:29:73:5B:6B:64:62:33:B1
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/77dc0496-0cca-486b-b492-b93b1b66a18a.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
55:7c:20:f5:4b:c0:e9:9f:cb:3e:d0:bc:fa:99:59:b6:ee:43:
d8:31:d8:95:67:d1:8e:bf:63:3d:1f:51:db:66:08:e9:90:1a:
22:ea:2e:b3:73:5f:e4:59:f9:c7:20:a5:25:fb:e1:12:5c:6b:
8d:68:66:4b:32:c0:d8:43:17:86:44:56:93:db:2a:e6:4f:2e:
2f:70:96:9b:1e:cc:1d:c3:c6:fa:32:f3:07:64:b8:c5:f3:c6:
36:2e:6b:75:f1:0f:26:5e:d0:6c:4e:c9:79:3b:8d:9d:f4:41:
12:f2:a9:28:d8:eb:da:44:72:aa:f5:2e:31:4e:41:4e:18:48:
f6:28:a4:5d:33:7b:fc:79:a7:d6:c3:14:df:05:b2:65:44:0d:
86:bb:2a:0a:e4:1e:ed:b9:99:67:e0:8b:47:d9:45:f2:a6:19:
02:04:b7:1e:d8:90:e0:c9:2d:11:b9:8b:ae:0c:76:15:e9:d6:
d0:ab:03:1c:f9:e6:a7:64:f1:b9:e4:57:ea:df:9e:98:50:fc:
e2:73:5d:56:d7:21:fe:dd:df:34:59:c8:bc:81:76:df:6d:74:
59:a8:f8:b4:e3:68:6d:14:86:a7:42:bd:60:68:f1:bf:e0:4c:
68:65:ac:74:aa:61:ec:af:56:a6:79:5a:2b:62:79:4f:cb:07:
9a:cf:3b:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:47 2023 by rpki-client on console-fra.rpki-client.org