Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/d4429a8d-1115-4935-aa8d-5043ae7593bd.roa
File: d4429a8d-1115-4935-aa8d-5043ae7593bd.roa (raw, json)
Hash identifier: tyfziUgxnFzBoStuajj2KxWpBCCgMbH0nBDOldPrqsg=
Subject key identifier: 1C:E1:41:2E:5E:12:8D:EA:FC:C2:78:69:6F:65:15:94:57:C2:74:A2
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 11FD3376164A26CF0699517DCE1C243A2644C149
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/d4429a8d-1115-4935-aa8d-5043ae7593bd.roa
Signing time: Wed 08 Mar 2023 00:00:00 +0000
ROA not before: Wed 08 Mar 2023 00:00:00 +0000
ROA not after: Sat 11 Mar 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
11:fd:33:76:16:4a:26:cf:06:99:51:7d:ce:1c:24:3a:26:44:c1:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Mar 8 00:00:00 2023 GMT
Not After : Mar 11 23:59:59 2023 GMT
Subject: serialNumber=463137a39ac05ec6036227c0de5dd7fbab0fabb54fd44bc619fad5d65859ec8a, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:dd:84:2b:d1:eb:83:7c:3b:48:c6:b2:98:04:
f7:f8:58:80:c9:ae:e9:84:de:23:f5:e0:35:cf:f9:
fb:18:63:09:a7:42:3d:93:0f:40:03:9f:61:79:8c:
67:0d:27:c5:a3:e3:17:57:fe:d9:19:8c:ce:a7:64:
05:78:a9:90:b2:53:ec:46:5c:3f:26:56:66:62:e8:
09:3c:83:78:f4:eb:65:47:a3:fe:82:04:b6:f2:21:
20:b1:16:bb:fa:6f:49:56:bd:75:d1:a3:d0:d4:bd:
be:01:9a:cd:ea:13:13:7e:6c:85:5e:49:b3:c6:8c:
a6:d8:75:08:d0:0a:1c:d6:8a:ed:27:c3:d6:9c:5a:
73:9c:da:1a:fb:fe:b4:82:e8:22:f6:58:14:c4:63:
9e:79:35:02:06:7d:21:21:74:ec:7e:47:55:0a:d6:
0d:72:60:8b:b1:34:64:f7:1a:77:60:79:7d:23:4c:
31:36:92:26:bd:f6:12:a8:fb:83:16:8e:5e:91:c6:
4b:94:3e:0f:2d:19:f0:00:e1:0b:86:f2:28:0b:ff:
52:fd:40:18:d0:a5:10:17:76:e2:91:0d:d7:87:76:
2e:ec:ef:78:e5:06:80:50:02:c1:bd:c0:3e:47:5a:
23:0f:2f:87:23:e1:f2:02:02:74:34:1a:2c:a0:ed:
3c:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:E1:41:2E:5E:12:8D:EA:FC:C2:78:69:6F:65:15:94:57:C2:74:A2
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/d4429a8d-1115-4935-aa8d-5043ae7593bd.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
89:34:61:74:f6:e9:39:5e:4c:a9:e5:49:83:0f:ce:b3:66:84:
5a:b3:8f:87:37:1e:67:5e:a9:a4:ae:ca:29:db:a6:b2:58:d8:
d9:61:32:d8:4f:2a:0b:3e:f7:d8:6d:b0:98:aa:24:29:c4:e4:
12:5d:aa:c4:ed:0d:6a:0a:35:f9:ec:f4:b5:1b:27:da:95:ff:
ce:43:9a:15:a6:b1:ef:99:0f:9e:96:c6:86:a8:29:e8:f1:ef:
f0:e3:e2:14:03:f4:d5:2b:8c:8f:6e:fa:f8:48:bb:67:5d:36:
11:04:df:30:c1:59:ce:9c:96:da:f1:ec:a1:9d:68:c5:c4:7f:
ee:ea:68:4d:20:01:23:42:01:12:77:92:0e:2d:c2:ef:4a:a0:
4e:c8:ce:7f:b6:f9:1d:2f:ae:7d:a2:6f:93:03:0c:42:4d:b5:
29:61:1e:96:fa:fe:96:ba:df:28:ad:69:86:5d:65:cf:74:a1:
7f:b9:c6:02:96:fd:3f:d3:92:fc:40:fe:7a:39:6c:09:43:87:
45:fb:ef:14:13:86:4d:a5:b3:f7:02:8d:d2:77:56:3d:b7:45:
86:7c:1b:8e:43:bc:4c:68:fa:1f:c7:c6:91:d1:62:9d:9b:5e:
02:2f:d7:e2:0e:1e:bc:4a:bd:a8:13:1a:b7:3c:5a:c3:99:63:
df:ed:b1:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:54 2023 by rpki-client on console-fra.rpki-client.org