Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/ccb16fbd-3919-4bbf-999e-bd3aa3a4344a.roa
File: ccb16fbd-3919-4bbf-999e-bd3aa3a4344a.roa (raw, json)
Hash identifier: MgyVUFuBdZ83HKkuYFbtl446Vnv8TWa7R+5s15Vp3KU=
Subject key identifier: 6C:DD:19:FE:5A:DE:AF:B0:83:5B:ED:39:0F:B3:0C:68:B2:D6:C9:A4
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 46AFA9C918DD7F40522638260DAF814C16AA6495
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/ccb16fbd-3919-4bbf-999e-bd3aa3a4344a.roa
Signing time: Fri 20 Jan 2023 00:00:00 +0000
ROA not before: Fri 20 Jan 2023 00:00:00 +0000
ROA not after: Mon 23 Jan 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
46:af:a9:c9:18:dd:7f:40:52:26:38:26:0d:af:81:4c:16:aa:64:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Jan 20 00:00:00 2023 GMT
Not After : Jan 23 23:59:59 2023 GMT
Subject: serialNumber=82cdc6b7cdf61f1a1362e9d98ba7f4ca9940b5932f6653889cd7ea85f4e9ccd9, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:e5:4f:8c:e2:af:62:73:df:98:bc:30:e1:f6:
f5:60:31:bc:8a:a7:51:0e:cf:14:8c:dd:49:f1:f7:
fb:34:3f:a5:6b:1b:37:a4:67:64:1b:08:63:d5:92:
12:90:de:f3:40:81:ce:3b:a0:40:63:31:43:44:a8:
1c:ab:81:6f:c5:33:22:71:85:47:00:9f:99:bd:f1:
e1:96:0a:ff:a8:39:ac:ce:e6:f2:f9:ce:fc:cb:4f:
cc:96:3a:fb:bf:8b:ea:e3:aa:e1:2a:3d:e5:89:cb:
2f:ca:fc:02:95:2e:95:08:28:de:08:50:25:85:f4:
84:9b:de:7d:64:31:1b:62:ae:57:34:eb:c6:ea:77:
fb:68:3a:12:b7:bc:65:59:29:3a:ea:9b:1e:a2:19:
8d:1d:e9:2e:d9:46:6a:50:39:e8:7d:aa:9c:18:2c:
19:46:02:fb:80:d4:27:20:17:aa:eb:c8:f6:fc:b1:
e1:cc:61:50:4e:c8:a6:0a:35:8e:10:88:95:9a:90:
2b:bc:7e:c9:4f:a8:66:a8:6c:b2:c6:e1:e9:13:91:
cc:88:4f:b1:ea:42:ce:61:ad:92:55:43:58:c3:48:
fe:7e:b1:13:08:43:3a:ee:cb:c0:0f:22:7b:a0:bf:
22:56:f4:70:74:a6:70:28:a8:7f:90:43:c4:76:90:
f5:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:DD:19:FE:5A:DE:AF:B0:83:5B:ED:39:0F:B3:0C:68:B2:D6:C9:A4
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/ccb16fbd-3919-4bbf-999e-bd3aa3a4344a.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
20:49:52:e4:ca:f3:f9:45:02:d5:ed:8f:13:f9:94:7e:a8:b5:
69:9d:03:26:76:97:ed:7e:dd:24:6e:c2:df:f0:59:74:3d:d4:
c1:db:17:0b:9f:ed:d7:48:22:1d:1c:f4:09:b3:d8:7e:b5:f3:
73:57:b7:1f:d5:24:8a:b3:d3:0e:25:87:06:82:2c:cf:d1:47:
8b:95:5f:b1:0d:91:60:ce:bf:7f:80:78:c9:3d:9d:76:f0:34:
25:66:d5:cf:9b:39:83:ef:82:e3:c0:ef:56:ac:69:9e:6f:f0:
52:8f:53:b9:15:e8:7a:64:51:01:39:c9:48:ac:f8:ca:81:c8:
c9:81:4c:d9:03:44:44:b1:49:33:ee:b5:a2:0b:17:b7:4b:fb:
e8:0a:b7:75:13:52:03:bc:74:81:81:5b:6f:e4:58:0f:61:6f:
fd:9a:73:6a:90:39:0e:14:10:b5:05:e4:c1:9f:7c:37:11:b4:
84:f2:81:08:36:ad:40:5a:33:49:60:34:c0:45:87:b7:04:44:
2f:e6:05:7c:29:42:87:66:fb:b0:e0:95:9e:d3:03:14:01:51:
0f:d8:af:8b:f9:fd:bb:02:47:94:e8:c2:ac:02:d4:ac:9a:0e:
49:e4:6c:81:ff:32:9d:a3:bc:05:cf:f8:29:c7:ea:ff:da:93:
c8:31:3e:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:53 2023 by rpki-client on console-fra.rpki-client.org