Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/7df0b2ee-6877-4926-a5d9-5c727e2dfd8c.roa
File: 7df0b2ee-6877-4926-a5d9-5c727e2dfd8c.roa (raw, json)
Hash identifier: Ft2ybik8EqPMY9qA8UcRSKbavNUSiDn0UByqX0y4ydc=
Subject key identifier: BD:6D:A7:DD:8B:F8:E0:13:6C:92:F3:60:5D:E2:5B:7B:C1:E4:33:2E
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 567F5E270C679F45578F3AFD22CECF5E1423AEA4
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/7df0b2ee-6877-4926-a5d9-5c727e2dfd8c.roa
Signing time: Thu 09 Mar 2023 00:00:00 +0000
ROA not before: Thu 09 Mar 2023 00:00:00 +0000
ROA not after: Sun 12 Mar 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
56:7f:5e:27:0c:67:9f:45:57:8f:3a:fd:22:ce:cf:5e:14:23:ae:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Mar 9 00:00:00 2023 GMT
Not After : Mar 12 23:59:59 2023 GMT
Subject: serialNumber=4ca19caf645e64ce6ff8e78a82712af9a188e1bb54ced9185762d844d1a9a964, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:d1:d7:e7:9c:fd:08:0d:30:43:87:55:4c:ea:
ab:81:2f:84:a7:89:46:0a:28:7d:35:29:6c:31:22:
a2:f9:c6:a5:98:fe:07:99:23:44:c5:ef:de:ff:f1:
35:f8:0d:49:1e:6b:33:dc:7a:d8:89:66:a2:c8:28:
ac:59:b2:ba:36:e4:56:ef:69:e7:69:87:ff:7b:3a:
65:d2:28:f7:9f:b2:7f:f8:36:88:2f:da:28:5b:cf:
48:21:e5:75:14:90:fb:2c:58:d5:2b:ea:dd:e8:fa:
e5:b8:05:5a:46:95:8c:c9:c4:a2:3e:bf:e5:46:4d:
da:6a:a9:9d:07:3c:e3:af:ae:ed:86:d0:9e:49:54:
94:c3:35:f2:1d:70:55:b6:fd:30:00:c8:1b:ca:3c:
63:c5:84:1a:b8:15:13:44:f2:54:9f:38:3c:cb:89:
12:20:55:99:3d:14:11:99:ba:48:53:ab:5e:bf:52:
e0:d1:ad:da:bd:46:f8:05:04:85:1d:74:23:b5:6d:
1a:0f:be:bb:f2:56:e5:e7:35:6c:69:1a:0f:f8:34:
44:5c:1d:6c:a4:09:7b:85:e9:34:f0:48:5d:34:20:
26:bd:81:ba:30:d9:78:8c:c5:bf:5d:85:47:0f:34:
50:d5:a4:ef:31:5e:e3:d8:4c:bf:8d:0e:90:54:1b:
30:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:6D:A7:DD:8B:F8:E0:13:6C:92:F3:60:5D:E2:5B:7B:C1:E4:33:2E
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/7df0b2ee-6877-4926-a5d9-5c727e2dfd8c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
48:5e:05:a1:0b:e1:9d:dc:1b:e6:d7:81:7b:a0:8c:12:13:2b:
70:72:be:00:d1:8a:d4:78:3b:15:8f:a9:d8:40:10:7b:50:e5:
21:a6:d8:da:52:34:7b:6b:b4:04:ef:d1:76:48:0c:67:68:e8:
31:92:30:c1:06:83:a3:7e:93:55:e9:e4:4e:63:d0:26:11:a0:
02:dd:02:1c:87:8c:9a:4e:7f:87:ee:ae:ce:72:28:cc:d5:2f:
37:34:9f:8d:e7:cd:d0:c0:98:68:5f:16:7f:50:e1:cf:ca:41:
f1:e0:67:f2:05:9d:ad:d0:60:93:9f:38:11:8c:d9:ca:77:68:
bf:3d:65:fe:a6:df:d4:9f:c6:1a:1e:94:1b:56:79:80:da:f5:
ed:27:19:66:68:2d:70:52:90:4d:ac:88:5f:f6:6b:61:95:3e:
98:0b:f4:64:67:23:3f:e3:56:2e:b7:44:44:d5:7c:ba:88:21:
25:b2:84:c4:89:5a:0e:d0:3e:1a:d0:44:f9:8f:e8:b5:b0:cd:
1b:7d:1c:51:b6:eb:0a:c8:b6:14:b6:84:1d:7b:47:67:d6:d1:
6e:48:e3:06:01:67:72:76:d9:c6:9d:4b:80:01:30:eb:58:b0:
f1:76:e7:e1:c2:c5:c5:ba:76:fb:6a:e8:d9:5b:96:41:fb:5f:
4a:93:3b:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:47 2023 by rpki-client on console-ams.rpki-client.org