Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/848a7c9a-58f6-4bac-bb0d-68cf43c8b2da.roa
File: 848a7c9a-58f6-4bac-bb0d-68cf43c8b2da.roa (raw, json)
Hash identifier: TnFfIhNii5euCB1+39nW9RMbabA+JAbzWqKJotd1Lyw=
Subject key identifier: 0D:80:53:63:A4:2C:E9:14:09:87:5E:3A:4A:B6:65:58:8B:71:E6:F8
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 4D90F2E333B728ADB78FC58B690EF3EDFDEFC0A0
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/848a7c9a-58f6-4bac-bb0d-68cf43c8b2da.roa
Signing time: Tue 07 Mar 2023 00:00:00 +0000
ROA not before: Tue 07 Mar 2023 00:00:00 +0000
ROA not after: Fri 10 Mar 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4d:90:f2:e3:33:b7:28:ad:b7:8f:c5:8b:69:0e:f3:ed:fd:ef:c0:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Mar 7 00:00:00 2023 GMT
Not After : Mar 10 23:59:59 2023 GMT
Subject: serialNumber=9d73a17d829846e8222d59d2e3e662029fa03e803edf41c0b693a7d41314fb65, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:f8:54:0a:11:d2:1f:d2:d3:20:93:9e:c1:d9:
f5:4a:1e:04:34:88:b7:2d:45:14:51:5e:68:f2:79:
52:b4:7a:e3:3d:10:ad:1e:94:89:58:a6:5e:87:c9:
14:f0:59:38:a9:ea:39:6a:50:cd:03:03:40:ea:b7:
30:80:c0:c2:03:a5:93:46:32:f0:c5:56:8d:77:37:
fb:51:c7:cf:f0:6e:5e:59:c7:78:e0:33:ad:8f:22:
41:15:23:5a:dd:10:db:3a:4c:1a:dc:74:70:5b:37:
93:f8:58:1b:fa:4c:e2:9e:09:31:00:15:28:3e:6a:
b4:c4:46:ab:62:f8:45:48:9f:ca:29:e4:a2:36:5f:
3f:e1:66:12:71:6d:b1:a6:8e:57:c7:60:f7:18:7b:
3c:1d:9b:d2:d6:94:c6:11:03:f4:a5:e0:60:99:59:
4a:5b:29:1a:40:55:08:63:76:d0:5c:c2:4f:1f:98:
71:10:8b:59:ae:2d:3a:bb:7e:32:30:d4:31:4a:70:
f4:a3:24:bf:aa:da:d5:c5:05:00:15:85:cc:c5:56:
c4:80:eb:c2:36:83:5f:69:a4:81:65:0c:4d:65:94:
4c:3a:8f:7e:66:bb:ee:97:68:14:9b:33:e9:56:3b:
43:28:f2:66:49:69:5b:92:59:9b:65:06:c6:22:0b:
5e:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:80:53:63:A4:2C:E9:14:09:87:5E:3A:4A:B6:65:58:8B:71:E6:F8
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/848a7c9a-58f6-4bac-bb0d-68cf43c8b2da.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
28:4f:c7:09:ea:e0:a2:f2:b5:bf:67:34:c2:61:e3:2c:80:73:
74:ec:28:8a:cf:1e:f0:e6:83:0e:d8:2a:f6:f8:21:7a:87:fc:
25:ca:52:89:c4:00:b7:5a:26:11:67:e0:ec:ef:2d:1c:b1:a1:
6b:45:19:de:98:3e:5e:b6:c8:7d:04:5d:ca:85:45:c9:69:69:
2b:ce:31:ed:81:07:31:7a:b8:de:79:2e:cc:ab:25:21:1e:99:
71:09:b3:3b:64:28:72:0f:5d:22:e7:07:f6:4c:30:50:71:e1:
9b:0e:77:2e:7e:b1:90:56:39:13:82:bd:75:7c:48:c1:88:d5:
eb:0e:04:12:8f:be:30:89:f5:de:db:1a:3a:e0:1a:7f:0f:b7:
f1:9d:e8:10:00:31:a3:35:89:89:78:58:4d:73:fe:2d:cb:87:
4f:80:9d:c4:5b:d7:a4:5c:21:69:81:bf:60:9d:0f:30:06:02:
84:7a:a5:f1:91:61:ee:7b:7c:9c:7c:35:91:10:bd:8c:64:13:
7f:17:3f:22:de:e2:99:ca:54:f6:eb:53:b7:27:16:6f:ed:3a:
4c:5a:ff:b3:85:40:f5:a8:c0:5a:88:b7:08:55:93:9e:60:25:
79:74:8f:2b:ac:48:c5:55:61:19:36:3e:94:9d:fe:00:fc:05:
85:06:b4:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:47 2023 by rpki-client on console-ams.rpki-client.org