Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/ab2b92fe-a0ea-4d85-8b9b-0878bcf611e3.roa
File: ab2b92fe-a0ea-4d85-8b9b-0878bcf611e3.roa (raw, json)
Hash identifier: 6V1lP0QRsmmCBtJskUftTaysp8PuSq2J+9/+zcdXtag=
Subject key identifier: B9:F6:64:F0:F6:E5:AF:B2:93:D5:6B:FA:DF:98:F7:14:89:BD:DE:7A
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 6B0B1AEE39DF330567C145B4C09B462141179CF9
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/ab2b92fe-a0ea-4d85-8b9b-0878bcf611e3.roa
Signing time: Mon 29 May 2023 00:00:00 +0000
ROA not before: Mon 29 May 2023 00:00:00 +0000
ROA not after: Thu 01 Jun 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6b:0b:1a:ee:39:df:33:05:67:c1:45:b4:c0:9b:46:21:41:17:9c:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: May 29 00:00:00 2023 GMT
Not After : Jun 1 23:59:59 2023 GMT
Subject: serialNumber=60716e357bbb9ad931b591a510b6459aaddcc1981d9dc5a85d07d039ba56da2f, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:51:c5:2d:19:ff:d5:d0:8d:10:ef:5f:3c:05:
6b:24:67:78:17:c4:e9:de:83:59:b2:e7:7e:2c:b8:
cc:f5:9d:f3:4f:7c:63:b6:de:6f:5d:8b:f6:ef:c3:
48:87:9b:ce:af:ed:dc:5c:a8:ac:b9:ab:c5:c6:33:
a9:1e:a1:1e:31:86:69:c7:c1:48:59:bc:3b:56:9b:
ce:75:c0:c3:b2:10:ee:ec:9b:5b:0e:32:a5:de:b5:
44:68:65:b1:30:f2:a9:3b:7f:f2:91:4c:fb:1b:4e:
9d:b2:70:5a:7f:88:dd:55:61:b8:96:aa:ad:da:e1:
0f:47:12:ae:16:d0:8b:85:de:eb:8a:dc:2b:55:81:
7f:b6:d9:e4:91:08:72:0e:b8:7e:90:85:63:c5:d3:
2b:15:ce:b6:de:cb:cb:c3:a9:20:c4:d3:85:3f:b3:
35:c6:13:49:02:88:eb:2a:bd:ec:37:90:e0:3a:b2:
1a:a6:0e:31:3e:5a:20:cc:50:4a:06:a8:7d:2d:0d:
1d:e5:5d:d9:69:cf:11:cb:1f:70:90:f1:79:3d:2d:
8a:3c:4f:0c:f8:77:c6:11:7e:64:81:c6:7e:2b:b8:
7f:f0:4c:3c:1a:a5:8d:76:4e:30:1e:72:e8:4d:c7:
95:6f:a9:50:62:6b:fb:dd:03:76:16:7b:5f:a8:e9:
ec:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:F6:64:F0:F6:E5:AF:B2:93:D5:6B:FA:DF:98:F7:14:89:BD:DE:7A
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/ab2b92fe-a0ea-4d85-8b9b-0878bcf611e3.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
43:75:7b:45:72:dd:5f:cb:a9:09:3b:b9:46:16:ba:e3:14:f9:
de:42:90:27:15:15:e1:fa:42:29:3a:bf:1d:10:db:42:ec:7b:
c3:a4:86:f1:8c:5c:50:fa:b8:76:4d:94:d4:db:bf:51:b5:b6:
08:68:86:1b:f2:0a:4d:19:bf:73:09:de:79:26:1e:b3:ea:58:
24:5e:05:e2:86:5d:70:77:f5:0e:7f:d2:08:7a:ef:60:73:2c:
a5:e0:af:06:98:2d:70:8a:59:f6:94:49:c9:ba:d8:39:18:77:
a7:d0:72:74:d1:0f:7d:3c:db:37:8b:f1:bc:c4:b4:82:90:99:
16:f5:fb:bd:dd:e7:ca:0b:27:2f:cb:fd:eb:de:04:b9:17:63:
9d:27:67:0e:62:de:a4:aa:d0:be:a5:24:9e:1b:48:1f:21:0a:
71:96:ee:83:79:e4:ee:9d:a8:c3:04:41:3f:4b:7b:6d:c5:57:
f3:59:ad:6d:31:04:d7:e1:48:18:48:d3:88:4c:a8:9a:6a:4f:
15:61:3a:8b:0e:90:a6:a0:f3:d0:fa:11:dc:21:28:64:27:18:
a3:c9:c2:2d:be:92:ed:42:05:d3:27:41:ed:b5:5b:c2:07:e7:
84:b8:4c:50:5e:e8:07:26:5d:c3:87:be:2f:ac:6c:4a:14:41:
76:01:47:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:50 2023 by rpki-client on console-fra.rpki-client.org