Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/aa73c41b-e04d-4d7a-b4a0-fc1a8abd2d7a.roa
File: aa73c41b-e04d-4d7a-b4a0-fc1a8abd2d7a.roa (raw, json)
Hash identifier: TtBSR/Sd6hikTgep9HC4tnaqbiiVJBgkKxv2RIgR7rc=
Subject key identifier: BA:A8:A8:D4:C3:F6:2A:FF:59:04:3B:AC:EF:C7:87:F0:33:A5:AA:53
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 4A7DFC305154586983DB1D4A5CCA1F4CD054AF63
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/aa73c41b-e04d-4d7a-b4a0-fc1a8abd2d7a.roa
Signing time: Mon 03 Apr 2023 00:00:00 +0000
ROA not before: Mon 03 Apr 2023 00:00:00 +0000
ROA not after: Thu 06 Apr 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4a:7d:fc:30:51:54:58:69:83:db:1d:4a:5c:ca:1f:4c:d0:54:af:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Apr 3 00:00:00 2023 GMT
Not After : Apr 6 23:59:59 2023 GMT
Subject: serialNumber=7b4cff1c2b5e7c3eb42eafe61d505b5e52d22c730b7c97259f7e414320e13c90, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:11:b0:2c:a2:e9:5b:66:82:f5:59:d8:56:88:
31:9c:de:16:5f:98:47:f3:04:4e:40:f8:21:ac:4d:
07:b0:90:a8:1f:59:43:91:e7:01:2b:a3:54:e3:68:
01:45:78:b5:86:fa:f2:d5:1b:b5:93:b0:c8:81:ee:
ba:56:dd:ed:b9:8f:28:81:c5:c2:f5:8f:0e:bf:ec:
93:05:81:22:17:16:f4:ff:06:62:8c:90:2f:ed:f7:
7b:4b:fe:f9:7e:d4:ac:5a:a4:73:9e:a3:50:59:0c:
83:e8:43:99:3e:b5:57:66:45:57:af:9a:36:5e:11:
08:06:dd:e9:91:e3:84:34:79:e8:03:bc:99:df:2e:
54:be:ac:26:21:38:a8:4e:32:0a:2b:33:91:cf:a0:
53:e8:ff:49:8f:6c:ca:71:d6:46:68:36:1a:6d:12:
10:76:cb:b3:2c:57:d5:e4:3f:74:10:47:27:8e:b7:
ff:23:5f:c4:c4:91:93:00:2b:7d:4b:27:f9:ed:a6:
84:c8:f8:df:64:98:a9:e6:73:96:81:a2:61:dd:c4:
70:36:91:34:b4:88:83:96:9b:93:67:b5:f4:cf:c9:
3f:c3:10:75:92:46:97:75:52:e8:b3:ab:19:35:97:
ae:b6:94:70:e8:75:1e:7e:57:63:36:55:b1:c0:af:
13:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:A8:A8:D4:C3:F6:2A:FF:59:04:3B:AC:EF:C7:87:F0:33:A5:AA:53
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/aa73c41b-e04d-4d7a-b4a0-fc1a8abd2d7a.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
a3:85:3e:f9:24:f5:81:4d:06:2b:31:97:6c:70:58:a4:ae:9a:
5e:81:d2:23:dd:f6:c9:9f:c4:e5:ea:a7:15:24:01:d9:9f:fe:
04:50:9e:7c:87:7e:49:fc:68:23:ef:11:4a:e7:29:3e:88:11:
22:0a:65:39:65:2f:e4:c8:89:d7:20:1b:9b:80:df:ac:c8:15:
47:2d:0f:90:4d:5b:02:b5:8d:97:99:ec:d0:97:1f:7d:23:f0:
ea:5c:09:2a:a9:68:c1:97:7b:a5:d3:79:26:71:5d:81:25:32:
1e:8b:89:3b:65:8b:89:99:a3:74:4d:0d:2a:d6:c0:78:68:13:
06:7f:18:13:e0:43:76:61:ee:00:6d:8d:26:89:70:82:5a:08:
f4:a0:62:a9:6f:b0:0f:7a:59:af:a9:89:e3:b4:ba:3f:04:31:
4d:4e:e4:fb:50:93:cf:ab:25:fe:c7:04:d5:94:c7:1f:7f:86:
17:19:5a:3a:f1:1e:16:e1:41:bd:1f:6c:c6:83:66:43:dc:85:
da:aa:b5:8e:bf:db:63:c4:f2:01:50:94:36:a1:73:72:40:23:
ed:21:bc:91:1a:5a:6c:84:e6:6a:49:8d:77:e4:03:95:84:87:
e0:50:0e:a9:ee:82:4a:ae:97:f1:76:a7:49:5e:10:c0:a9:01:
e8:fa:06:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:50 2023 by rpki-client on console-fra.rpki-client.org