Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/abe8c327-d8f5-4f92-be4f-8db80e7f7169.roa
File: abe8c327-d8f5-4f92-be4f-8db80e7f7169.roa (raw, json)
Hash identifier: plU3ziE7eR9rdQptdprg+CzLNj9JNXvf3Z8oMH0umUE=
Subject key identifier: 49:D2:D5:75:C8:51:9B:10:31:6B:82:AD:C8:07:2B:EB:43:18:BB:FB
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 2FF325191C198C205990EC7AC2681E2BB9441871
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/abe8c327-d8f5-4f92-be4f-8db80e7f7169.roa
Signing time: Sat 08 Apr 2023 00:00:00 +0000
ROA not before: Sat 08 Apr 2023 00:00:00 +0000
ROA not after: Tue 11 Apr 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2f:f3:25:19:1c:19:8c:20:59:90:ec:7a:c2:68:1e:2b:b9:44:18:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Apr 8 00:00:00 2023 GMT
Not After : Apr 11 23:59:59 2023 GMT
Subject: serialNumber=19b5d70d2a0923f3566c65f56fd03cdd1b696fe70d685e2570d29cb9f0603e3d, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:f1:89:26:61:ae:f1:33:81:af:b6:e6:d1:5d:
3c:c6:48:a4:4b:c3:e9:46:1c:59:4d:40:da:6f:c0:
29:11:f2:ff:f9:8c:1d:37:01:06:49:7f:44:7a:56:
a3:67:3a:45:e6:fa:b9:ce:39:b8:95:72:ef:c0:3e:
33:7e:f7:89:2f:36:b8:9c:b5:20:33:01:01:f4:37:
7d:f8:4b:2c:3c:c4:7b:a9:40:d2:f6:d6:6f:2a:ac:
62:7d:32:8b:66:be:9b:9f:53:55:e5:4d:c2:29:7e:
c5:22:5a:32:e2:be:c2:2d:48:88:09:39:ce:12:72:
84:4d:88:8d:dc:aa:60:98:c8:8b:ec:68:23:70:2f:
64:60:ae:8c:14:5d:ca:c0:65:81:37:4c:0a:10:4f:
b1:87:98:85:e4:7e:19:22:25:c6:86:47:c3:3b:11:
2c:c1:a6:6d:cd:a0:03:4e:d3:58:80:9f:bb:05:7b:
14:c9:25:6b:ea:d3:f5:58:8f:bf:df:47:cb:4d:f3:
18:35:87:52:98:28:5c:bf:c8:8e:59:2d:df:a2:62:
1f:17:06:c9:3d:94:2e:57:e5:68:c4:93:a0:c2:4a:
65:6c:1d:e3:dd:43:f0:ef:20:bc:67:10:d1:bd:94:
73:0d:10:8f:38:ab:7b:2c:3e:62:37:6d:9c:68:6a:
2a:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:D2:D5:75:C8:51:9B:10:31:6B:82:AD:C8:07:2B:EB:43:18:BB:FB
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/abe8c327-d8f5-4f92-be4f-8db80e7f7169.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
05:21:0e:c1:bc:e5:ad:5d:7a:b6:54:64:0d:83:44:6c:31:19:
a2:dd:b8:af:20:eb:03:d2:e9:6e:f8:07:73:45:63:6f:14:a2:
db:a6:4a:57:b8:9b:be:c7:7b:4e:f1:71:9a:26:9f:45:6f:0a:
0e:71:3d:8b:e0:33:5d:e3:b6:73:18:97:1f:a5:8c:fb:6c:be:
bc:d8:86:ee:5f:47:8b:96:33:96:98:22:9a:71:18:15:b9:cc:
b1:dd:a1:b2:e0:e1:b0:5f:c0:7d:05:9b:d9:3b:9a:ae:e9:25:
8c:0a:21:3b:b6:c7:ee:e2:b3:0f:ac:68:4b:8d:a1:c2:8a:fc:
2d:25:bf:a3:a6:c2:91:98:b4:1f:b6:3d:9f:d4:49:23:1b:5e:
5e:41:c9:a8:58:38:3e:fb:d9:1a:4e:9b:76:8c:5b:d9:fb:b0:
4f:62:42:5a:5f:bd:f9:89:f4:16:e4:21:15:a4:50:e2:3c:04:
55:91:27:89:98:5f:ca:01:7f:51:d4:23:ec:1d:08:57:db:47:
d0:07:72:0a:0e:43:14:52:19:9b:13:2e:5b:01:73:df:67:4d:
49:83:87:22:4c:f4:42:53:29:e9:c4:10:ae:72:33:55:72:e0:
48:a4:07:24:ad:01:e4:a3:c4:54:61:12:e0:91:28:db:32:55:
1a:a8:17:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:50 2023 by rpki-client on console-fra.rpki-client.org