Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/8f137edd-0d73-4204-b222-ff283b8c0e61.roa
File: 8f137edd-0d73-4204-b222-ff283b8c0e61.roa (raw, json)
Hash identifier: TxSMfYP1yC8mPc+GmYMwxsUiDa2c83XO1C4S72dwJ8k=
Subject key identifier: 14:09:7A:0A:7C:83:A1:F1:F4:06:21:3C:14:7C:B7:20:13:04:E3:EC
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 3ADD5AC1289CA7ACF9EFB9BAE69949E1D8D92AB8
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/8f137edd-0d73-4204-b222-ff283b8c0e61.roa
Signing time: Sun 05 Mar 2023 00:00:00 +0000
ROA not before: Sun 05 Mar 2023 00:00:00 +0000
ROA not after: Wed 08 Mar 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3a:dd:5a:c1:28:9c:a7:ac:f9:ef:b9:ba:e6:99:49:e1:d8:d9:2a:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Mar 5 00:00:00 2023 GMT
Not After : Mar 8 23:59:59 2023 GMT
Subject: serialNumber=342bcacd37bd6cb0ccd7d9aa02dc065cbc785c6cd935c71644105bdc912e456d, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:d9:cf:92:0e:e5:b4:ca:f4:80:5e:f7:c4:cb:
e6:fe:94:17:d9:c2:7e:9d:df:31:db:cb:f4:3d:90:
a2:7f:49:91:b4:10:05:1e:08:d6:72:5a:d0:3d:fb:
56:1c:a8:19:46:23:87:11:39:17:a2:69:02:47:2d:
e8:04:d5:b5:93:c4:61:bd:71:b1:de:20:89:07:f0:
48:07:ba:40:ed:c4:ee:88:e3:e0:00:c2:98:24:3b:
0b:7e:08:fc:c0:03:fb:04:65:a1:3e:cf:ea:4d:ca:
11:0e:ef:d3:24:dc:de:13:cb:ac:06:6f:e7:7f:90:
2f:57:6a:57:8a:9b:9c:b9:ed:b7:bc:b6:3d:08:9d:
cb:1a:0f:58:d5:7e:a2:56:02:e4:a6:9a:f6:61:84:
02:a0:c6:9f:5a:4c:50:96:e7:a6:df:6f:b3:30:31:
f0:b2:af:f8:3b:54:82:44:9c:c5:95:e7:f8:1d:fb:
61:96:3e:55:a2:7f:f7:b9:e0:51:38:5d:d2:e8:34:
c5:23:1b:96:c7:2e:ed:08:b0:d9:ac:fc:24:c4:27:
d3:77:45:ba:f5:af:a9:13:16:5c:95:fc:a1:cd:5d:
d3:b0:bc:11:6a:27:01:74:41:5e:1b:bf:f2:98:89:
1a:5a:4f:a8:31:15:4e:48:e6:fe:02:37:ee:07:dd:
0f:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:09:7A:0A:7C:83:A1:F1:F4:06:21:3C:14:7C:B7:20:13:04:E3:EC
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/8f137edd-0d73-4204-b222-ff283b8c0e61.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
2d:0e:71:f9:99:30:74:c0:e8:41:44:ca:09:84:d3:1b:ba:14:
74:e4:4c:43:cf:b7:6c:8e:17:b9:9e:b1:e9:7a:68:d7:4c:e7:
f8:bf:0f:99:19:1c:d9:82:40:c0:cf:92:33:a8:86:1b:ba:bb:
8d:09:33:6c:bb:f3:9c:7b:a5:9f:95:17:00:84:26:30:0b:b0:
47:69:52:5c:e3:76:f9:7e:75:43:d8:bb:2b:6a:01:fb:ad:60:
22:c0:5b:b0:40:c0:b0:2f:8c:90:87:ad:09:ff:2d:3b:07:27:
a2:94:4d:09:c0:62:7d:07:b5:59:8e:17:73:86:f3:fd:89:9f:
46:03:32:03:cb:99:ec:47:56:61:fa:94:12:86:6f:70:c2:2c:
b4:08:3b:ea:b5:31:e0:dc:06:14:34:e8:ee:37:21:aa:4b:39:
86:92:de:8b:5a:d0:b6:39:d2:91:e8:9b:55:1a:a0:94:15:44:
b7:cd:fd:ee:12:14:7a:80:4e:fd:9e:67:fd:1c:c2:a3:22:13:
67:a7:a4:86:44:69:8b:3b:ff:02:87:28:04:a3:a9:8c:40:c2:
ec:3a:12:ea:69:5d:75:72:a7:8f:84:06:bf:2e:e9:aa:ed:0e:
d9:67:88:ec:2d:8a:57:c3:f1:09:4f:0b:d3:95:92:20:c6:87:
93:1f:f7:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:48 2023 by rpki-client on console-fra.rpki-client.org