Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/a0076af2-de0b-49c7-b14a-104ee99872cd.roa
File: a0076af2-de0b-49c7-b14a-104ee99872cd.roa (raw, json)
Hash identifier: MF10BdTLGG3ustcwxu8BW/0Y7AqqZQzp8qUYHbZUm+I=
Subject key identifier: 1D:EB:2F:5F:A2:31:52:59:39:DC:EF:46:D6:65:0F:1D:35:47:5D:76
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 57E9C61F7297BF7B1379B833D7780A3F8C568AF1
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/a0076af2-de0b-49c7-b14a-104ee99872cd.roa
Signing time: Wed 01 Mar 2023 00:00:00 +0000
ROA not before: Wed 01 Mar 2023 00:00:00 +0000
ROA not after: Sat 04 Mar 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
57:e9:c6:1f:72:97:bf:7b:13:79:b8:33:d7:78:0a:3f:8c:56:8a:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Mar 1 00:00:00 2023 GMT
Not After : Mar 4 23:59:59 2023 GMT
Subject: serialNumber=ba7436c26a075c33e763c9ca4e438975f83500d6518a6230b9a5c7c5932ab6d8, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:ec:64:f6:a1:b5:04:8c:cf:73:7d:3f:ff:c5:
1a:ae:c8:29:ac:f8:de:a5:16:25:6b:43:e8:cc:d1:
e8:17:e4:1b:4c:c8:b8:8b:89:91:01:54:db:d0:3f:
e8:d8:7d:b0:f4:fb:35:54:48:3d:53:e7:00:67:b7:
c7:6e:da:1c:d6:11:68:c4:81:bf:53:82:7a:24:8b:
46:79:6d:0f:01:25:28:c2:51:11:b9:bd:97:fa:24:
14:03:e1:3b:ed:d8:a4:0a:3a:0f:df:c1:e3:1d:25:
38:f9:9f:7e:e5:41:04:8a:0f:19:11:48:f1:80:88:
ca:37:0d:d2:72:bd:ee:ca:91:a8:e2:68:e0:0b:15:
d3:a7:8e:33:1e:7d:05:8d:47:db:a6:86:8f:e7:cc:
b1:3f:aa:22:37:be:6b:d2:c5:2f:78:16:a0:ec:56:
bb:5f:29:fb:8e:2b:0f:eb:f1:7a:0a:a2:72:21:4d:
b6:cc:ea:74:45:be:09:f8:87:84:90:60:d5:2f:ea:
e0:48:9e:d6:ae:6a:ba:84:63:f5:91:6d:ee:16:e2:
b0:87:6e:0e:da:1f:84:e4:a5:b7:54:35:28:63:6f:
15:c5:cc:9f:29:c6:28:1b:c1:c0:c7:4b:4f:ee:45:
ac:cd:23:92:73:52:19:60:08:ab:e6:13:95:f6:57:
c6:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:EB:2F:5F:A2:31:52:59:39:DC:EF:46:D6:65:0F:1D:35:47:5D:76
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/a0076af2-de0b-49c7-b14a-104ee99872cd.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
42:11:55:c5:5b:6a:2b:f2:61:da:bc:16:a2:3c:19:5d:27:bc:
0f:9c:93:03:1a:c1:e5:ef:a6:f7:3f:d6:5f:a6:69:78:d6:d7:
f2:57:f0:3f:fb:4a:cd:a9:2e:33:2a:f9:f4:e1:b4:0c:f8:d2:
09:6f:f2:95:3c:4d:52:f9:61:46:69:04:d0:08:10:ec:1c:30:
f7:bb:30:8c:75:ea:10:da:41:fc:8b:03:8c:6d:69:17:d9:22:
9c:d1:c0:2a:92:e4:a4:37:aa:36:a1:76:c6:67:f6:60:b5:ff:
54:1d:97:49:ff:25:a8:3a:39:9a:78:00:93:f3:23:68:24:3b:
b7:5a:47:d1:db:f0:05:84:2a:3b:83:c6:d0:c7:24:53:50:c0:
c0:c3:ad:22:97:65:bc:9c:46:9c:f0:bf:94:16:e4:97:12:2a:
c7:ae:6e:76:05:b9:5b:70:22:cc:69:f9:08:b0:8f:ee:7c:20:
56:a0:c7:b9:d0:60:0d:1b:e3:8e:e2:3a:82:1d:d2:81:df:d2:
f7:e5:1f:32:9e:67:3f:5e:08:8c:35:48:d8:57:0d:82:ed:c5:
6b:14:bb:82:ff:6b:32:df:12:37:c5:8e:2b:ca:a5:3b:a3:12:
63:82:04:1a:0f:0f:5b:cd:e0:16:b7:88:a5:48:82:bc:4d:0d:
30:a3:58:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:49 2023 by rpki-client on console-ams.rpki-client.org