Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/ab286d5c-3c59-446f-8fbb-d8c11182185f.roa
File: ab286d5c-3c59-446f-8fbb-d8c11182185f.roa (raw, json)
Hash identifier: 0g/8vKvww7sDh0LQl9B1FDa2BrKrUOUDi/Jq6J8cq9I=
Subject key identifier: B2:DD:C4:7C:95:9B:6E:04:20:00:34:21:61:7B:3B:CF:11:4D:0A:D4
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 6584D68690BB238A5A8D41857B697DF530895FED
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/ab286d5c-3c59-446f-8fbb-d8c11182185f.roa
Signing time: Mon 25 Jul 2022 00:00:00 +0000
ROA not before: Mon 25 Jul 2022 00:00:00 +0000
ROA not after: Thu 28 Jul 2022 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
65:84:d6:86:90:bb:23:8a:5a:8d:41:85:7b:69:7d:f5:30:89:5f:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Jul 25 00:00:00 2022 GMT
Not After : Jul 28 23:59:59 2022 GMT
Subject: serialNumber=04ba71b85cf9fe36c09866ad866750b4c2fad34e0b6b6cd66c2d985a7daebafd, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:bc:9a:e6:61:07:cc:62:08:e7:4b:81:8a:0c:
49:0c:50:85:dc:f4:0e:f1:34:bb:44:9a:dd:4e:df:
07:23:96:94:a8:9f:da:85:19:8d:22:49:2a:d6:2f:
87:8e:b0:1c:95:82:2d:cc:af:00:3b:30:62:79:9f:
2d:1c:48:a6:fa:e1:00:4b:3d:36:d6:59:74:27:9a:
6f:b6:8a:da:2b:c2:51:aa:d0:74:8e:37:cf:42:41:
51:2a:92:75:92:43:71:0c:66:06:a3:1f:eb:5e:b5:
79:76:d6:59:79:40:b3:a7:40:68:43:8b:7f:6f:99:
1e:49:f4:d6:c3:72:c5:a0:01:37:56:c8:4b:a3:0e:
d4:f2:8c:7a:65:b0:0c:ad:10:bf:06:d1:4a:62:e7:
60:e4:a2:c6:48:fa:a6:3d:de:06:8b:51:04:28:76:
c3:8f:63:35:de:b9:09:ce:a0:61:84:0c:87:a7:a4:
1c:26:95:b8:51:fd:d0:ba:53:99:4c:d9:f5:fc:6e:
9c:46:42:57:e9:cf:73:69:70:04:d0:75:0a:37:5c:
82:cd:18:72:4f:d8:36:73:f4:a7:c7:2e:79:8c:32:
e3:48:50:ab:53:55:39:b6:56:3e:71:78:fa:27:73:
65:7f:90:bd:30:f2:34:5d:4d:ea:fc:96:55:84:a8:
86:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:DD:C4:7C:95:9B:6E:04:20:00:34:21:61:7B:3B:CF:11:4D:0A:D4
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/ab286d5c-3c59-446f-8fbb-d8c11182185f.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
4d:c7:68:b1:f7:e7:1c:64:27:9b:61:33:02:b5:ed:40:33:33:
60:dc:bb:08:2b:16:0c:4a:9f:07:30:96:5d:2c:de:51:e2:a9:
b7:46:1f:60:0d:54:13:2b:7f:ac:09:80:14:f3:c8:b0:91:74:
ad:c2:4b:d9:f9:f4:a3:8d:3c:da:78:b8:e4:b0:15:fb:d6:4c:
60:0a:fb:cb:74:46:30:ce:85:19:16:b7:4b:7d:7c:f1:3e:3a:
61:13:37:05:41:b8:48:68:dd:00:b1:c9:71:39:42:68:05:44:
5b:cb:1e:64:bb:98:38:60:c0:0a:81:cd:68:d2:6b:4c:14:79:
41:79:65:68:6a:3c:4b:ac:cd:5f:4b:6f:91:2d:23:34:b0:ab:
0e:c2:8e:49:20:46:14:f8:b0:bb:7b:5b:e6:8b:1a:c5:f5:bd:
0b:d5:9d:78:d0:df:d6:0f:72:d7:75:43:12:17:7d:47:6f:a2:
48:38:d7:0c:61:88:56:34:79:68:70:e4:56:19:8c:9d:55:ea:
32:95:4a:bc:87:ef:91:bf:1d:0a:bc:a1:b7:74:6b:b6:78:ff:
17:16:ff:12:29:1f:3d:97:f8:98:43:26:23:bd:01:36:41:4c:
be:ee:a0:50:8d:1b:80:47:47:0b:d5:9e:9f:87:76:a6:1a:2f:
3c:a7:3e:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:50 2023 by rpki-client on console-fra.rpki-client.org