Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/8cf23720-76ee-4c17-89da-5f69deff95fa.roa
File: 8cf23720-76ee-4c17-89da-5f69deff95fa.roa (raw, json)
Hash identifier: hAnV8rBWnHflKJkd8sPK5SVF8eBdou/NJ+Win2WyDfs=
Subject key identifier: 77:72:E7:79:BB:56:86:F4:01:F1:2A:BC:99:20:1F:60:76:59:D2:62
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 7523648A4276213BBB09B154DB7772AB24B92D15
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/8cf23720-76ee-4c17-89da-5f69deff95fa.roa
Signing time: Mon 06 Feb 2023 00:00:00 +0000
ROA not before: Mon 06 Feb 2023 00:00:00 +0000
ROA not after: Thu 09 Feb 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
75:23:64:8a:42:76:21:3b:bb:09:b1:54:db:77:72:ab:24:b9:2d:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Feb 6 00:00:00 2023 GMT
Not After : Feb 9 23:59:59 2023 GMT
Subject: serialNumber=5fcd1ad885f89482279e329c44375dc210236b3a7a0731beb2b1ff1fa39776ad, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:99:34:a5:80:2d:82:52:6a:66:0c:16:3c:32:
98:02:94:d6:58:f0:89:dc:30:0c:ff:07:8b:e7:2a:
d6:8e:74:c0:4d:bc:63:72:34:12:27:22:f8:3e:f6:
b6:f5:96:e9:b5:55:7c:e4:b4:e5:60:48:06:a1:fe:
67:76:28:92:d3:38:6d:2b:d0:6a:8a:b2:ee:92:7a:
21:91:8f:89:2b:09:bb:f8:3f:66:90:c1:82:bd:a9:
12:18:93:bd:99:b5:ff:8b:98:24:68:fe:da:92:43:
fd:c8:34:10:c8:c1:68:17:71:2d:73:e4:2b:ad:d4:
1e:83:2d:9a:49:af:d7:78:3f:2b:19:c3:b4:b3:52:
d4:cb:e0:ac:fa:39:6e:be:49:14:a4:ab:08:9c:54:
63:3e:d9:56:a0:91:17:b3:d3:31:6b:de:3a:06:50:
5f:27:f9:00:95:e9:4d:bc:7f:27:42:25:79:f8:8f:
55:2b:73:92:1f:61:15:41:dd:c5:0e:86:6a:a8:0e:
a2:13:0c:91:2a:d2:3a:08:2e:41:f6:40:48:a3:52:
79:a1:df:be:38:de:9f:90:fd:36:28:0c:06:b7:33:
63:5d:ef:82:7b:e9:58:32:d0:63:1f:65:95:de:98:
27:0d:b9:2a:e4:60:08:a7:a2:53:f0:1f:1b:31:ef:
36:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:72:E7:79:BB:56:86:F4:01:F1:2A:BC:99:20:1F:60:76:59:D2:62
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/8cf23720-76ee-4c17-89da-5f69deff95fa.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
09:ef:ec:fb:4f:77:08:65:77:f0:09:f2:55:10:c3:37:b3:ee:
37:ae:db:50:66:71:5a:63:83:38:cc:6e:28:74:be:22:bb:6c:
a5:aa:47:e9:13:ee:f6:05:c0:a5:3b:e4:46:1b:9e:e9:4e:69:
6b:d9:33:7c:99:dc:80:75:f6:bd:37:e3:4d:a6:dc:f3:8e:43:
d4:0e:81:f9:00:64:43:03:e1:cc:80:e8:06:48:33:33:14:64:
72:fd:21:8d:a7:98:54:34:f6:0e:80:04:13:d0:9a:96:9c:eb:
5f:6b:fd:5f:78:f1:66:19:b3:6f:6e:1a:9c:b9:9d:fa:38:06:
83:e9:9c:ca:f0:68:72:8e:27:a6:ab:f2:37:d6:7e:0e:15:c4:
b2:bd:4b:58:3f:d8:2b:cf:e2:4a:75:d0:b8:7d:bc:81:26:dd:
3f:e7:24:37:e0:f0:54:78:b2:fa:6e:ad:d7:14:e8:1b:d0:c2:
8b:c8:52:7d:ac:71:18:8f:7f:78:6e:74:e6:b9:7d:ad:20:ff:
56:c4:61:a8:cf:22:31:e6:e3:72:13:1d:60:66:a9:40:fd:05:
fc:03:ae:0a:fa:df:78:75:23:8e:21:51:78:3a:d1:45:8c:b6:
86:41:c2:2e:14:e8:e4:32:89:57:cc:3f:63:7e:f4:6e:f9:ca:
ad:81:31:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:48 2023 by rpki-client on console-fra.rpki-client.org