Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/81390a97-38c5-4dbf-9865-680d9f568692.roa
File: 81390a97-38c5-4dbf-9865-680d9f568692.roa (raw, json)
Hash identifier: x0VURIwMWdu0r3ZFPcl35cNr7zZE/BCeCL5jzhCkT5A=
Subject key identifier: 9E:83:18:9D:3A:7A:9A:3D:58:62:22:F8:AC:72:65:3B:D7:27:3C:64
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 52E1D0C2086976C152A62A72BAE93D8AB18C5240
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/81390a97-38c5-4dbf-9865-680d9f568692.roa
Signing time: Sat 13 May 2023 00:00:00 +0000
ROA not before: Sat 13 May 2023 00:00:00 +0000
ROA not after: Tue 16 May 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
52:e1:d0:c2:08:69:76:c1:52:a6:2a:72:ba:e9:3d:8a:b1:8c:52:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: May 13 00:00:00 2023 GMT
Not After : May 16 23:59:59 2023 GMT
Subject: serialNumber=9914e4aba0003632926246fbce10f53d9e1d601431e6f96dac48e9d35e8717e9, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:0b:e1:71:2f:82:b3:cd:95:1c:fd:a8:c4:4b:
ad:28:13:5c:3c:14:3f:1c:82:88:1c:0b:db:a4:99:
43:c0:62:09:8e:20:35:19:de:46:3b:6c:22:cd:e6:
dd:3e:24:20:93:75:d1:55:b0:07:dc:47:fa:f3:58:
1a:18:8b:5c:ce:c3:30:a7:5e:c0:15:76:e1:f3:72:
3d:bc:ca:ce:81:14:fa:f2:fa:99:61:a8:87:77:db:
60:d9:85:01:b7:32:f5:30:ee:5e:cd:73:d6:bd:39:
90:b9:95:28:b8:0b:aa:9c:11:cc:7b:16:1b:86:4e:
bd:cf:7b:e7:96:91:97:b2:4e:ee:f1:45:5f:cc:c0:
d6:7e:e4:7a:15:a7:02:f8:cd:b1:22:cb:65:fb:06:
23:24:7e:a2:bb:8e:d3:eb:29:48:61:53:86:ad:95:
0e:ab:6d:b4:16:b3:42:8a:40:1c:f5:72:e1:02:5d:
fb:f5:f0:a4:c4:6c:06:2f:91:e0:43:a5:63:cf:43:
41:a0:1c:a3:60:c4:cc:86:02:a0:e6:60:5e:1d:df:
30:ed:3c:8d:af:d9:ed:9e:2e:d7:55:61:5e:aa:42:
d1:77:f9:77:8f:86:bf:94:7a:cc:04:f2:b7:55:5c:
6f:ea:36:d4:20:80:1b:4b:b7:35:9a:71:ee:75:82:
6e:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:83:18:9D:3A:7A:9A:3D:58:62:22:F8:AC:72:65:3B:D7:27:3C:64
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/81390a97-38c5-4dbf-9865-680d9f568692.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
14:bd:63:f2:01:bb:18:4a:3c:1f:37:23:c2:5a:1b:4a:90:f0:
8b:69:04:4d:78:8f:08:87:d6:8e:19:4e:98:e5:96:0e:d0:bc:
7f:b4:f5:25:25:78:33:0b:c0:69:d4:0f:fd:cf:65:7b:52:ef:
63:2f:67:d8:9b:b6:52:c1:3d:f3:d7:0e:ce:22:1a:f6:7f:83:
bc:27:8c:3c:d5:50:80:a8:20:d2:7f:16:d0:28:82:14:89:a4:
be:4b:25:5b:3d:03:79:34:7c:42:51:fc:26:e3:91:39:8f:fe:
dc:cb:9b:b0:eb:b0:e3:9f:ae:c7:4b:be:43:30:0a:57:da:22:
0d:a5:ce:da:38:86:24:7b:3f:90:a5:44:b8:49:29:03:a1:9f:
b2:eb:4b:e3:6b:c3:63:d4:ed:0f:71:36:93:1c:dd:35:a5:ae:
6a:a1:b4:08:b6:77:ff:3d:69:c8:36:c7:c5:82:55:17:7b:96:
32:a1:45:d1:cc:2c:fb:27:a3:4d:4c:53:ca:65:63:e8:2d:4e:
a5:fe:bb:55:06:a3:dd:4b:c8:18:13:48:20:2b:ed:bd:be:30:
d3:c1:78:eb:84:87:e1:9c:b9:c4:17:bc:ac:0f:af:c0:fd:07:
4d:49:be:0a:2a:6d:a8:58:8f:47:4f:6c:7b:0c:8b:cc:df:f5:
70:5d:d3:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:47 2023 by rpki-client on console-fra.rpki-client.org