Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/bf886713-59e8-4abd-ad52-a83bf32dadaa.roa
File: bf886713-59e8-4abd-ad52-a83bf32dadaa.roa (raw, json)
Hash identifier: n9bSEjL8f6FrjUfaibof1eaTz3NtLYTT2p1Y9B1ni5E=
Subject key identifier: 68:74:FA:4A:14:5B:E6:0E:44:6A:33:EB:E3:80:9F:B6:1F:46:E0:BF
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 08B65BFAA633C3CF7BA8362E2A756618A25C9392
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/bf886713-59e8-4abd-ad52-a83bf32dadaa.roa
Signing time: Tue 07 Mar 2023 00:00:00 +0000
ROA not before: Tue 07 Mar 2023 00:00:00 +0000
ROA not after: Fri 10 Mar 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
08:b6:5b:fa:a6:33:c3:cf:7b:a8:36:2e:2a:75:66:18:a2:5c:93:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Mar 7 00:00:00 2023 GMT
Not After : Mar 10 23:59:59 2023 GMT
Subject: serialNumber=db51fa2410f62ed7f86ba16cda1059dfa7f4dfe17b0ef85d6a9bb87b53aff319, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:94:64:6b:d5:80:50:d9:a8:92:3f:7c:6c:a0:
ef:bd:27:27:50:8a:51:99:50:21:3c:72:7a:fd:41:
ad:57:7f:66:ce:08:a9:69:da:b6:bb:08:ee:b3:2f:
7e:ae:b8:31:70:41:1b:0e:d4:8e:f9:57:c7:e7:b8:
73:93:90:f4:cb:64:a1:d9:37:e5:29:10:0c:e3:cc:
80:8a:2c:39:90:f0:d2:38:7d:c3:32:90:62:5a:0e:
5c:64:9f:d6:6f:bc:bf:6d:5e:3d:95:2b:33:e2:cb:
15:b4:1c:9c:29:14:83:c4:68:15:b3:b2:86:e4:d3:
e7:b3:f5:ee:c3:3c:b8:a3:cb:be:d7:72:3b:1c:d9:
70:67:98:49:44:88:11:5b:af:d8:f0:ed:e2:2c:7b:
c5:58:df:ae:8a:ee:00:7f:b1:a6:b7:37:a8:ab:a5:
0f:96:c5:65:d4:26:40:a5:9d:53:e2:29:cf:76:35:
78:8a:03:0f:26:d9:21:0e:28:16:fd:00:aa:49:1c:
45:ac:c4:0d:c6:09:df:b9:ce:cf:bf:75:d8:e6:ea:
ce:9c:66:c1:c2:8b:0e:11:46:6b:e6:ec:a6:6b:9a:
40:4a:18:6c:dd:86:9d:76:2f:39:da:cc:45:ae:94:
cf:b9:24:dd:38:1d:73:a7:4f:4f:9d:c0:31:b0:e1:
62:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:74:FA:4A:14:5B:E6:0E:44:6A:33:EB:E3:80:9F:B6:1F:46:E0:BF
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/bf886713-59e8-4abd-ad52-a83bf32dadaa.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
05:29:80:3d:8f:26:95:65:c3:e1:bd:7d:8d:39:35:4e:f0:8a:
2e:03:a1:e1:e7:85:9c:f5:16:6e:7a:93:6e:80:ef:08:36:a2:
52:22:94:4c:8a:9d:f8:cc:fc:63:ac:f1:dc:d9:be:8d:61:1b:
41:8a:e5:42:7d:b7:56:50:34:d5:53:61:a1:ce:00:f2:ac:3f:
03:55:92:fa:65:27:d5:49:87:af:6e:5b:7a:fa:a6:27:7f:78:
ca:17:38:df:f0:47:08:b3:99:ab:98:bb:f8:19:55:5d:99:ab:
39:09:eb:31:1b:03:be:97:68:79:0e:d8:72:5e:38:01:6d:9e:
67:a5:87:aa:e5:83:02:e3:e1:96:83:e2:45:c5:cc:d7:55:e8:
ea:7d:11:b2:8e:c1:11:83:c2:92:a1:dc:82:c8:96:b8:13:90:
3f:dc:7d:68:cd:01:b3:30:da:7a:3a:09:48:89:b6:f5:25:fa:
72:97:e5:c7:df:a8:3a:ba:61:4d:28:06:53:33:1a:3f:87:b0:
f3:87:06:da:7c:c5:22:0d:8a:95:0d:67:10:52:77:f6:2c:40:
24:6c:24:a8:30:ca:ad:e5:a8:6f:79:59:fe:26:03:e8:57:d3:
6e:5c:2e:03:18:a7:38:58:8c:38:07:70:d5:8f:d7:10:03:75:
77:eb:6f:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:52 2023 by rpki-client on console-fra.rpki-client.org