Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/83e180a5-56b0-4151-970f-761f8a34d4a9.roa
File: 83e180a5-56b0-4151-970f-761f8a34d4a9.roa (raw, json)
Hash identifier: OzJEnv/9KpuXXZJdUlInoaOd1CwF2FNuWthxb2CmsJI=
Subject key identifier: 67:29:EA:F2:07:91:11:38:8D:71:CE:42:0A:57:90:7E:2D:90:A2:29
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 423AC477520B272BCE519823ADB0AC4A81756098
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/83e180a5-56b0-4151-970f-761f8a34d4a9.roa
Signing time: Sat 30 Jul 2022 00:00:00 +0000
ROA not before: Sat 30 Jul 2022 00:00:00 +0000
ROA not after: Tue 02 Aug 2022 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
42:3a:c4:77:52:0b:27:2b:ce:51:98:23:ad:b0:ac:4a:81:75:60:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Jul 30 00:00:00 2022 GMT
Not After : Aug 2 23:59:59 2022 GMT
Subject: serialNumber=4f109634f50104fe42930a7662b83baad71b696b14a51fd41cb2d357ba821588, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:1d:a0:71:64:16:16:cd:b9:b3:03:ee:63:a1:
75:c6:ce:45:f7:ef:9d:8f:bf:fc:b8:a8:42:bc:50:
7d:12:2b:36:46:b0:1e:09:a0:34:4a:b3:76:a0:19:
02:13:91:ae:4c:ca:40:7d:a1:ef:95:5b:b2:90:5b:
b1:d9:87:6e:66:35:6c:25:64:e5:ca:2e:f3:9e:57:
80:8f:31:02:4e:4e:78:59:ed:22:48:1a:ef:21:14:
9f:a4:f6:9a:67:54:42:79:34:35:7d:18:58:9f:e4:
b6:60:d5:d8:f6:1e:44:c2:0b:8e:9b:f7:cd:7b:3f:
65:9d:76:25:27:9b:07:b4:69:e2:8f:58:9c:e3:fe:
0a:5f:5e:9a:1e:9e:11:76:ab:1a:66:4c:6e:5c:2b:
40:4c:10:bc:c5:af:1e:7e:32:51:2e:e3:7b:41:19:
33:3f:7f:f4:b5:e6:b1:8c:cf:e7:60:b9:9f:9c:bc:
35:d8:61:6f:26:22:f9:fa:7b:0a:8d:97:82:3e:08:
a2:ae:b3:b3:1a:ae:d9:61:50:6b:53:59:3d:83:1e:
93:e2:63:a6:51:63:91:11:78:34:6f:ba:a2:cd:69:
16:1c:29:64:08:d6:ef:9a:13:f1:e3:20:69:e0:21:
ca:d4:88:ea:ab:8f:3d:8e:28:e9:59:91:a0:89:f2:
31:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:29:EA:F2:07:91:11:38:8D:71:CE:42:0A:57:90:7E:2D:90:A2:29
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/83e180a5-56b0-4151-970f-761f8a34d4a9.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
c6:a9:5f:3e:39:99:17:34:45:17:fc:f8:db:2c:57:a4:dc:50:
b6:2e:ca:48:96:68:3d:c4:12:a1:9a:e5:0b:19:e7:1e:54:c2:
2a:fe:ee:32:2c:ee:af:6f:b0:b1:8e:b4:5d:1c:9b:b3:55:4e:
5d:d5:45:7c:33:78:63:b4:da:68:d6:ad:7b:48:84:1c:ad:0d:
7d:7f:c4:7b:26:15:69:55:8a:a9:57:c6:d0:7a:1e:a6:3b:04:
12:7d:b9:dc:4f:97:0b:9d:c7:9b:13:a2:2c:7e:15:b5:81:b4:
e0:47:13:ef:4b:71:e9:a7:a8:5d:96:c8:4e:45:d6:36:2c:ba:
c3:37:a0:48:d1:e5:68:ea:03:92:34:4b:d8:97:43:d7:42:74:
0d:12:67:3c:06:7f:52:15:0e:68:81:68:ca:82:d6:c8:98:b3:
2a:13:40:60:9b:1d:b4:3b:93:24:d0:da:95:95:8a:e4:8a:f2:
bc:dd:53:78:5d:60:26:56:2a:5e:89:a6:e9:a9:47:f5:24:7e:
ff:5c:8e:6f:f7:f6:73:fa:b1:24:37:b8:8a:a0:ad:ff:d5:3a:
4c:76:b6:00:2c:b8:53:5d:25:1a:3f:98:4f:d8:92:ea:c6:a3:
99:9d:0d:44:57:80:49:44:2f:1e:cb:99:e5:8c:00:78:2b:c0:
77:58:09:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:47 2023 by rpki-client on console-ams.rpki-client.org