Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/7b2b8a83-e7af-45ac-8aed-ffe0b3209ab5.roa
File: 7b2b8a83-e7af-45ac-8aed-ffe0b3209ab5.roa (raw, json)
Hash identifier: gpPugh7dWXVueR6KGV2IuqMcOZCNrDz3WN5HXwPC6kM=
Subject key identifier: 58:C6:60:A2:59:A9:B7:FC:E8:27:92:A6:06:D7:0A:5B:DA:92:5C:BF
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 2FE62C7272BD411FDA7A3D2C285EC7EEE71662A2
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/7b2b8a83-e7af-45ac-8aed-ffe0b3209ab5.roa
Signing time: Mon 03 Apr 2023 00:00:00 +0000
ROA not before: Mon 03 Apr 2023 00:00:00 +0000
ROA not after: Thu 06 Apr 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2f:e6:2c:72:72:bd:41:1f:da:7a:3d:2c:28:5e:c7:ee:e7:16:62:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Apr 3 00:00:00 2023 GMT
Not After : Apr 6 23:59:59 2023 GMT
Subject: serialNumber=93628f6e3b9352bc5f6da10dcf041717e084906ab48e9229ce5b8b73ad0dc90b, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f6:d5:a7:ae:05:da:f5:76:d5:50:20:5b:40:ae:
59:41:41:25:3e:52:50:c7:59:c8:37:7d:0f:88:3d:
63:71:8d:02:8e:36:92:19:df:39:98:00:39:47:29:
c0:69:b4:2c:22:61:5d:f5:4a:e3:4b:ea:87:9f:09:
46:0a:02:56:32:ed:86:b2:5b:d5:2c:c7:0e:8c:b3:
ae:b9:19:82:a5:14:b4:e5:80:93:35:0f:cb:57:56:
81:68:0d:32:d4:d4:11:23:96:86:cb:23:0c:6e:8f:
d4:0e:16:a6:d3:89:08:de:8b:eb:eb:82:b8:77:32:
6f:0a:af:6f:5f:5e:cf:99:16:54:81:ad:ea:4b:a5:
d1:6a:e3:af:89:f3:d9:ac:7a:cf:9b:90:05:13:b2:
19:d9:84:bc:4d:a2:4a:e1:e8:9a:b2:af:1f:6f:c2:
d8:30:50:30:7e:a5:eb:25:91:23:e6:d9:f5:a6:28:
8e:85:c3:30:0a:04:4d:6a:c7:9b:42:dd:eb:40:c3:
7d:f3:c2:4e:4f:74:9c:01:be:eb:3c:ab:25:30:d2:
0b:5b:2c:06:a3:12:84:1a:f4:8c:1a:50:17:07:6d:
18:e2:8e:e1:fa:90:5c:02:b7:71:38:0c:14:06:59:
b5:ea:ba:28:e6:5a:62:92:aa:de:fa:47:48:e2:55:
44:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:C6:60:A2:59:A9:B7:FC:E8:27:92:A6:06:D7:0A:5B:DA:92:5C:BF
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/7b2b8a83-e7af-45ac-8aed-ffe0b3209ab5.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
a7:f0:83:62:a7:18:93:fa:df:2e:c8:c8:8d:2b:fc:b5:bd:9b:
67:11:44:89:34:c1:89:5c:10:f7:44:10:cd:7d:6a:46:29:e5:
51:c2:2a:78:6d:84:20:f5:d7:91:cb:67:fd:59:ea:a5:39:17:
cd:ec:ae:e2:c0:2b:b3:d9:14:34:0e:d6:16:7f:89:b7:5c:64:
c6:98:27:0d:88:db:f9:a0:97:4e:4f:4d:90:ec:79:98:0d:eb:
da:17:02:e2:d6:46:42:bf:fe:c6:ff:66:3b:ee:3b:20:e2:d7:
64:88:d8:73:2a:2f:97:d2:e5:18:06:71:38:bd:1a:37:88:f9:
b9:cc:90:b1:b7:a7:74:ff:7b:4f:c6:16:14:be:d3:e3:9d:65:
09:36:00:33:c1:eb:69:d4:e4:05:f1:8d:8d:54:8f:95:ba:91:
26:bc:de:55:31:5a:e7:71:46:37:b0:72:77:41:c2:5e:78:c3:
66:36:d6:eb:ca:95:fa:5b:11:52:1c:b6:80:1f:b4:63:19:f8:
bc:b9:5f:eb:28:80:78:31:f0:bc:a5:07:6a:68:5f:3e:02:60:
9e:f9:9d:ed:31:4d:d1:19:52:c3:e2:0a:fa:48:c9:12:8f:e9:
2f:b5:35:bc:d5:0b:0d:5a:72:94:31:b2:6d:fe:11:90:65:02:
42:f6:b1:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:47 2023 by rpki-client on console-fra.rpki-client.org