Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/aa07c49b-2f1b-498a-b830-1e99c8521cc4.roa
File: aa07c49b-2f1b-498a-b830-1e99c8521cc4.roa (raw, json)
Hash identifier: BNKZ9TYicYU3xmDs4M2kt0Ym8dw929UszQ9zhiw4Vag=
Subject key identifier: AD:75:3A:61:87:7A:13:D3:B1:45:22:A7:60:B7:4F:2E:99:3B:36:F2
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 05FA0A1B457791A24657FFC921C6BD3BA115DB93
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/aa07c49b-2f1b-498a-b830-1e99c8521cc4.roa
Signing time: Tue 14 Feb 2023 00:00:00 +0000
ROA not before: Tue 14 Feb 2023 00:00:00 +0000
ROA not after: Fri 17 Feb 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
05:fa:0a:1b:45:77:91:a2:46:57:ff:c9:21:c6:bd:3b:a1:15:db:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Feb 14 00:00:00 2023 GMT
Not After : Feb 17 23:59:59 2023 GMT
Subject: serialNumber=d6d1d3579accf0e55aedbcfbf15d7e59b2d8074b6c3e24873af83108642c2779, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:1f:72:f1:4e:90:1c:73:4f:e6:96:80:26:0d:
f3:24:4c:fc:63:2e:a8:8e:c0:78:45:41:22:b8:14:
82:87:9e:59:72:3a:54:4a:63:6b:20:d6:28:78:6f:
71:f1:2c:8b:4d:38:5a:8c:6a:7a:f4:a5:94:71:63:
43:02:c7:83:82:08:3d:63:2d:de:81:40:d6:21:ec:
2e:4a:c6:e9:8d:ab:b4:1f:38:07:f0:0e:97:5c:55:
a7:fc:19:72:38:6a:cf:73:6d:26:9e:d0:72:e6:67:
b8:3f:71:dc:bb:3a:7b:bf:08:30:9e:b7:9d:d9:e3:
0d:af:82:7c:8c:fd:3f:91:90:c0:8c:82:c2:d3:bc:
74:06:3f:d7:32:f1:51:d0:be:5e:44:87:56:2d:a7:
37:8f:e7:e2:f8:03:10:0f:8d:2a:8d:a4:a7:a8:40:
a3:91:3e:25:ac:f9:bb:04:0e:e4:9e:87:24:c2:85:
13:95:1b:81:e5:5f:e2:7f:01:12:7d:c7:b9:2c:22:
e2:94:36:14:96:b2:4a:8a:b3:4d:c1:03:99:36:10:
20:aa:47:85:8f:e6:3a:b5:e8:ca:7b:80:e2:8e:ad:
a7:fb:27:31:e3:d1:59:f4:49:87:13:33:75:98:25:
9f:64:d1:6c:f0:73:47:93:d8:f1:e0:01:d8:69:a8:
f6:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:75:3A:61:87:7A:13:D3:B1:45:22:A7:60:B7:4F:2E:99:3B:36:F2
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/aa07c49b-2f1b-498a-b830-1e99c8521cc4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
53:21:ae:65:b6:05:db:aa:6c:71:3d:2c:99:a7:79:dc:db:63:
f0:fc:0e:03:c4:42:f1:4e:19:9d:04:41:3c:1b:41:2a:42:33:
87:e9:97:4e:45:4e:d3:c3:8d:6f:f8:11:cb:f3:80:c9:b5:6e:
85:43:bf:b4:f0:0b:5b:21:00:f8:d0:f3:ad:69:33:20:89:51:
62:6f:c4:9f:ab:a7:f1:4b:0c:f0:92:6a:6f:ce:a9:97:dd:f0:
31:ea:b7:b3:f5:b1:38:59:19:63:14:ca:ed:85:ff:57:62:0c:
9d:13:71:76:c4:33:57:c6:9a:9f:2a:c4:04:58:5d:13:78:5f:
cc:de:35:bb:52:df:56:c4:00:9c:4a:28:dc:a8:a7:86:c1:c9:
f0:06:15:fb:33:74:a0:e4:ff:23:2a:cb:3d:6f:d9:9c:f5:5a:
36:c3:04:d5:af:e5:16:90:e5:2f:38:4f:e4:6c:02:f0:05:31:
0b:ca:56:63:fc:5a:80:28:29:c9:2d:2c:b2:8a:02:8b:90:a8:
a8:b0:fc:97:9d:20:ee:09:dc:1f:d1:46:35:c2:22:63:ae:02:
97:b0:4f:58:66:66:44:2a:ce:72:57:83:ab:71:2f:41:62:a5:
84:99:04:bf:2a:88:e0:b5:70:6d:13:76:41:79:2b:7f:c9:01:
0e:e4:8d:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:49 2023 by rpki-client on console-ams.rpki-client.org