Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/812c9232-31e6-460f-97a7-75be8396cb76.roa
File: 812c9232-31e6-460f-97a7-75be8396cb76.roa (raw, json)
Hash identifier: OdLXR/sehxfwh7itSpXJjnbU4n7pJ8HA98weJrcW9ag=
Subject key identifier: 46:93:28:67:0B:8C:20:9B:8B:C4:29:6D:3E:AD:A3:83:D6:01:6D:89
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 530FF2FCA17B4C6AAA3D3BD6E5A60B4B897312C5
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/812c9232-31e6-460f-97a7-75be8396cb76.roa
Signing time: Sat 01 Apr 2023 00:00:00 +0000
ROA not before: Sat 01 Apr 2023 00:00:00 +0000
ROA not after: Tue 04 Apr 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
53:0f:f2:fc:a1:7b:4c:6a:aa:3d:3b:d6:e5:a6:0b:4b:89:73:12:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Apr 1 00:00:00 2023 GMT
Not After : Apr 4 23:59:59 2023 GMT
Subject: serialNumber=79329cfd397425ae0e8278cf100dc82e7c626680590641997d893ee46b1254df, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:b4:1b:90:50:b6:ed:56:8a:09:6b:e6:bc:67:
58:9b:1e:8c:44:16:bd:66:9f:ac:f3:a0:68:3b:54:
5f:28:36:74:f3:23:f7:3f:ad:75:07:30:08:c0:c5:
ef:21:9d:25:16:7f:52:df:dd:cf:d2:94:62:e9:21:
48:e4:68:3a:dc:64:46:3a:14:06:61:c3:81:bf:76:
74:d2:a0:79:19:11:87:61:57:08:1c:84:8f:e2:0f:
9e:ed:12:c9:16:9d:65:df:ed:5c:4f:84:29:27:94:
13:be:ff:dd:24:3f:27:23:e5:fe:f0:94:96:43:77:
80:26:3c:2f:3c:24:2a:64:47:dd:37:b0:aa:8c:04:
9a:0a:e5:99:5c:38:b2:a2:f5:a2:63:b9:1a:f3:ff:
fc:57:df:85:b5:fc:b6:86:c1:38:11:bc:0b:96:59:
50:43:8a:e4:08:4f:88:c8:e2:55:f1:13:a3:3f:96:
5a:46:3f:f9:ff:8c:81:53:13:b3:86:1a:07:1a:d6:
93:52:a0:bf:73:3c:7d:31:41:51:cc:ab:a5:fc:78:
cb:94:45:1d:fd:d5:1a:39:8a:bc:2e:c8:92:87:ab:
4d:19:b9:32:51:be:ae:c6:c2:16:68:6d:cc:57:2c:
a0:78:f9:c0:5b:5f:e3:c9:ac:8d:c5:89:ca:3a:6c:
2a:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:93:28:67:0B:8C:20:9B:8B:C4:29:6D:3E:AD:A3:83:D6:01:6D:89
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/812c9232-31e6-460f-97a7-75be8396cb76.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
65:74:34:4e:1f:b3:f7:b4:20:ae:d4:f0:82:d0:67:ed:43:2a:
79:f5:3b:b9:3d:d8:45:2e:8b:c3:86:59:9e:7a:bc:90:1e:8b:
ee:74:27:d9:16:11:7b:44:e7:1b:aa:3f:2e:3c:3e:df:28:7a:
99:2c:56:12:33:e9:9d:ba:e1:bc:90:ee:23:fa:90:db:b6:7c:
7f:a8:02:ce:bb:e7:66:a7:1d:50:43:e6:c6:be:f2:9e:4c:7f:
63:7b:26:d6:ed:82:96:9f:30:fd:a1:11:41:c9:e9:87:a5:fd:
eb:23:f9:1d:c7:15:83:de:c0:be:16:3f:6f:11:28:ac:ba:21:
73:d7:bb:30:55:24:95:e1:cc:49:e3:54:7b:15:92:69:64:d7:
32:c4:c4:2d:c2:a7:5b:d9:3d:23:aa:ce:a2:b3:39:06:3f:de:
d0:71:26:95:1b:01:3b:dd:65:8b:5b:b2:c3:18:b7:df:b0:70:
ae:e1:45:50:74:ea:5b:ae:76:8b:63:7f:62:8e:32:3b:54:9d:
dc:ba:bf:46:bd:dc:d4:ec:af:c5:ce:b9:cd:29:8b:18:8a:35:
82:36:29:4f:9d:55:a6:c6:67:e4:2a:8c:44:04:03:ee:ff:3c:
8d:35:8d:be:73:69:a7:a5:8b:59:0c:1f:1c:e1:01:09:12:8a:
9a:37:8b:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:47 2023 by rpki-client on console-ams.rpki-client.org