Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/b5593d52-c77b-4fec-ab5a-569d3f21be25.roa
File: b5593d52-c77b-4fec-ab5a-569d3f21be25.roa (raw, json)
Hash identifier: ZcAvS+wlZOzOiqrVE9qmDzhDVV06wNYVT9X4/qFatuI=
Subject key identifier: 65:12:5E:37:73:41:DD:04:CA:2A:AF:23:AB:41:DF:BF:61:5A:63:5E
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 2604497A691C9A19C12E66D8ABA252FF46D77362
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/b5593d52-c77b-4fec-ab5a-569d3f21be25.roa
Signing time: Fri 08 Jul 2022 00:00:00 +0000
ROA not before: Fri 08 Jul 2022 00:00:00 +0000
ROA not after: Mon 11 Jul 2022 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
26:04:49:7a:69:1c:9a:19:c1:2e:66:d8:ab:a2:52:ff:46:d7:73:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Jul 8 00:00:00 2022 GMT
Not After : Jul 11 23:59:59 2022 GMT
Subject: serialNumber=17e8bd0aa2c57c455239f44ade921963fcdc16c27fa2e2e6a5c1314399ed6cb0, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fc:a7:81:e0:ba:d7:55:da:3d:0d:2b:ba:fb:5f:
00:4b:8d:1b:23:5f:85:52:02:20:c0:7f:8a:b4:fa:
a4:9c:b0:d4:b1:20:d1:f3:b3:95:c0:ce:c3:eb:b5:
00:35:65:ca:a2:1b:82:11:58:e6:38:b4:b9:4c:f9:
6e:a7:bf:ab:8a:ef:e1:27:31:9d:b1:93:e8:e5:43:
b9:0a:8b:21:9e:e3:2d:6c:26:04:5d:c6:08:5c:e0:
54:e4:08:8a:a1:5a:af:cf:a8:dd:8d:e2:58:61:ef:
78:5c:a8:39:20:a2:e4:d9:50:b1:36:9a:6f:c9:5a:
da:c1:07:63:36:dd:54:e5:ea:a6:8e:cf:33:7a:9c:
13:90:fc:e3:6b:e8:78:3b:71:f6:aa:1a:6f:9e:9c:
3c:84:2e:65:1b:fb:34:3f:dd:af:96:11:78:8d:bb:
79:9c:c0:24:8a:92:47:46:d5:21:c6:d7:11:27:b7:
5e:bd:0c:f8:9e:5e:a8:74:09:3b:7f:5b:ab:e3:a4:
84:50:8b:c7:ed:7b:64:97:52:fc:3b:89:10:ef:e4:
38:5c:6b:94:d3:1f:2d:67:ff:cd:14:68:cb:83:2b:
a6:9a:d7:f1:7d:10:3a:3e:63:6c:09:ea:63:7e:a8:
3a:9d:e6:b6:cd:b0:f8:ae:00:3d:13:3e:bd:8f:17:
03:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:12:5E:37:73:41:DD:04:CA:2A:AF:23:AB:41:DF:BF:61:5A:63:5E
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/b5593d52-c77b-4fec-ab5a-569d3f21be25.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
12:c5:72:fa:1f:c3:28:74:db:0c:2a:2c:0d:88:f7:2a:ee:98:
57:ae:54:51:8a:d0:0b:e1:f9:d7:a0:c1:e8:7a:85:7e:45:91:
d2:4d:c4:24:93:55:73:4d:1c:40:96:58:16:b3:5b:2d:5d:5c:
9d:c1:4b:e1:42:bd:08:b5:86:16:f6:58:0d:c2:63:b6:d2:8f:
81:8d:83:42:fc:0a:c5:3f:b5:51:f0:a8:77:f9:48:0b:6e:6d:
77:39:ae:7a:1b:55:0a:e2:d5:93:83:95:f2:fd:9a:c2:92:2e:
4c:b0:c2:ad:4c:19:40:22:15:ee:e3:cf:af:c4:7e:6a:f5:63:
4c:08:7e:56:9c:70:d6:28:87:40:e7:70:e9:f2:67:0b:f4:db:
f8:b5:8a:b5:a4:69:68:39:31:45:72:92:47:06:48:b1:95:3c:
cd:f4:c7:dd:7a:cb:79:19:7d:bd:01:d4:93:f3:e8:2a:94:ab:
cd:a6:b8:22:86:15:cf:c8:2b:93:a9:f9:d4:d1:42:cc:0f:6a:
7b:8b:8b:c6:79:27:e1:64:36:f8:8f:03:8c:42:bc:4f:2d:52:
3b:92:5e:41:e1:31:6a:0e:a5:e8:3b:57:9e:05:a0:21:6a:be:
6f:47:a7:f4:d8:06:b6:b0:26:35:80:62:cb:7a:99:68:d3:6e:
6c:a8:74:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:50 2023 by rpki-client on console-fra.rpki-client.org