Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/b7cdbfac-07a1-40ca-8e2a-0a7c20483aa2.roa
File: b7cdbfac-07a1-40ca-8e2a-0a7c20483aa2.roa (raw, json)
Hash identifier: 05WKAl/MPFQawicCVwmnuYtgusM/z+GWv/xguI1YKjk=
Subject key identifier: F5:9A:9D:36:2A:F8:B8:4C:81:E2:4A:A4:96:AF:A3:23:03:CC:BE:55
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 2A95D2B28B0360E41D4EC798CC29BEC39EC0DDEC
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/b7cdbfac-07a1-40ca-8e2a-0a7c20483aa2.roa
Signing time: Thu 06 Apr 2023 00:00:00 +0000
ROA not before: Thu 06 Apr 2023 00:00:00 +0000
ROA not after: Sun 09 Apr 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2a:95:d2:b2:8b:03:60:e4:1d:4e:c7:98:cc:29:be:c3:9e:c0:dd:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Apr 6 00:00:00 2023 GMT
Not After : Apr 9 23:59:59 2023 GMT
Subject: serialNumber=c4ee978ec827fec00619b744f6c0c63cdf7494c6fc1e65f390443a6c595434f5, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:46:8d:19:de:1a:dc:2d:a7:63:db:30:69:be:
14:fc:e8:20:cb:6a:15:7e:bf:07:6f:79:2f:f3:8f:
fe:8e:8c:4e:2c:92:73:6a:85:f5:02:ae:0d:f0:9d:
1c:b0:bf:69:14:fa:e3:77:de:6d:a1:15:4b:d7:23:
58:22:02:0d:ec:50:bb:33:21:b3:8a:f5:07:c5:a4:
8e:fd:8b:67:5b:3c:51:cb:41:46:f8:2f:fc:68:e3:
35:17:25:8d:77:9c:9d:f6:a3:76:57:2f:af:02:87:
9e:20:69:e6:04:44:c9:86:b3:51:fb:3f:fe:31:14:
39:3c:59:f4:63:71:0f:72:19:ab:20:8f:64:6c:51:
44:a7:8c:ab:06:b5:99:6f:f9:7e:32:93:27:a2:85:
e4:3f:99:46:dd:71:58:1f:9d:01:9b:c0:af:88:a1:
88:f7:9f:08:17:ce:50:65:4e:7f:84:f2:51:ce:2b:
cb:3a:06:a8:c3:d3:fb:5b:3b:a7:3d:82:12:f2:95:
61:a6:a3:44:7e:57:b1:c6:b6:d8:bb:7f:5e:c6:2f:
e7:47:34:93:b6:82:b5:e1:2a:a1:fe:de:d0:5e:9e:
e9:f0:e2:e7:8c:1e:77:5f:b6:f4:b4:fb:c9:5d:eb:
73:3e:58:27:e0:08:79:0f:fa:d4:0b:9b:cf:c3:18:
76:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:9A:9D:36:2A:F8:B8:4C:81:E2:4A:A4:96:AF:A3:23:03:CC:BE:55
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/b7cdbfac-07a1-40ca-8e2a-0a7c20483aa2.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
8e:79:aa:23:5e:a2:99:29:85:6a:d5:8a:c7:60:75:b8:df:29:
87:9b:41:b3:dd:6b:f6:d3:5d:77:a8:dd:b2:59:f8:d0:da:c3:
00:07:b4:a4:b1:20:a2:f0:ca:3b:58:2b:c8:ce:81:e3:d0:e4:
44:d9:43:0f:5a:5f:17:2a:a1:ed:c8:a6:4a:72:38:e6:4d:80:
13:f0:f3:e6:ad:60:39:bc:21:e6:fc:fa:59:30:b2:4f:ea:e5:
5e:e5:5b:39:16:94:ab:4c:35:e9:94:14:82:67:b8:68:c0:60:
9f:74:52:14:2a:df:63:9b:9b:21:34:27:32:08:2f:db:e2:19:
2f:7e:c0:1b:ad:63:0d:76:c6:fd:b7:e2:e0:c7:fe:e6:b8:c2:
10:e0:cd:1d:4c:ac:db:35:24:c0:a8:4a:3d:3f:21:b4:26:d2:
be:ec:7f:16:08:5b:e5:49:1c:be:ff:ad:22:ca:b0:bc:c5:6b:
05:09:4c:0a:f6:a9:41:f1:78:b6:b0:f9:56:13:ac:c1:d9:2e:
40:20:f3:cf:1c:e2:69:f9:8b:05:3a:d3:fd:59:71:1f:c2:d8:
fa:32:11:ef:9c:11:b1:6f:f9:8b:db:f7:c1:0d:0f:85:e7:d0:
f5:31:09:17:7b:0a:9f:f9:5a:fd:a8:91:a4:8f:9a:06:b4:d4:
1c:03:80:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:51 2023 by rpki-client on console-fra.rpki-client.org