Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/e7236054-ee96-4d53-8faf-174afc28210b.roa
File: e7236054-ee96-4d53-8faf-174afc28210b.roa (raw, json)
Hash identifier: C9bDA+pzpjyHCLPtAszWg/5Ej1jLMreX4qnjJ1TRX+Q=
Subject key identifier: C3:60:B6:11:0B:46:A6:AC:D4:3B:FF:3B:4E:5C:EF:28:6E:6D:07:78
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 6300DE41F009302F2F6E866467B0D6960ED6B6D5
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/e7236054-ee96-4d53-8faf-174afc28210b.roa
Signing time: Sat 22 Apr 2023 00:00:00 +0000
ROA not before: Sat 22 Apr 2023 00:00:00 +0000
ROA not after: Tue 25 Apr 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
63:00:de:41:f0:09:30:2f:2f:6e:86:64:67:b0:d6:96:0e:d6:b6:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Apr 22 00:00:00 2023 GMT
Not After : Apr 25 23:59:59 2023 GMT
Subject: serialNumber=fe83c23ee8200f8fedc3eda1e03ef2526204720668ad8ef4007e481a4efc55c5, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:9e:be:e6:ad:58:77:5b:70:66:3d:b8:04:85:
87:f0:66:fd:99:9f:a4:87:5d:67:29:f5:73:31:7d:
26:4d:0d:0f:e6:e7:09:47:03:bc:5e:65:2a:a5:14:
d2:2b:ef:a9:5a:c6:ab:fd:a3:5a:30:06:53:0e:f9:
5f:6a:13:2b:d7:00:2a:59:5c:46:53:4d:34:67:c7:
ff:8a:97:bd:6b:a7:96:b1:71:d3:58:40:e7:04:a5:
9f:8f:f7:99:b4:64:26:02:a9:02:3b:d7:3e:2c:3f:
53:6c:a5:0e:a9:2c:82:ca:79:3e:fd:34:67:fa:95:
4b:dd:01:48:8a:4e:eb:28:9d:20:e5:b2:61:64:cb:
ab:8c:99:35:20:89:6f:8f:10:a0:2c:b6:d6:bc:61:
87:22:64:d1:14:7a:1e:e5:ba:44:04:3e:02:ff:b9:
7b:d0:4e:f6:8c:6d:05:63:da:e4:56:48:fd:30:a2:
a3:29:e7:7b:ea:b0:07:81:ed:63:0e:6b:f1:be:1e:
be:f0:52:5e:4d:c0:fb:6d:6c:82:d4:9e:6c:cf:69:
00:87:1c:69:2e:cc:6f:c3:49:96:a8:d6:6d:47:42:
94:d9:9a:46:92:d2:a7:2a:90:e6:a1:cf:57:fc:73:
42:e2:3f:44:1b:1e:84:77:1b:f4:c0:7a:3a:e9:7f:
0c:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:60:B6:11:0B:46:A6:AC:D4:3B:FF:3B:4E:5C:EF:28:6E:6D:07:78
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/e7236054-ee96-4d53-8faf-174afc28210b.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
66:30:92:03:27:12:be:27:55:a2:a8:72:11:27:f7:1b:2e:23:
82:d8:07:37:67:30:35:de:34:1f:2a:ca:84:9e:18:aa:c7:97:
ed:60:d1:bc:40:89:4b:2d:c3:7a:c2:ba:79:c3:9c:73:21:ae:
65:e5:b8:52:4a:19:ed:47:0d:fc:f9:5c:ea:f2:4a:40:ae:eb:
06:26:69:2f:4e:b5:15:07:7c:fe:2a:d5:eb:f4:a4:3d:72:ea:
6e:af:9e:3b:a1:5c:28:f1:f6:cf:87:0f:a7:cd:99:4f:72:e0:
80:c1:10:eb:d0:68:63:13:d4:3b:07:04:18:13:70:c5:2f:39:
dc:f0:f8:69:ba:5a:5a:16:d5:78:15:3e:dc:74:06:66:8b:54:
4c:f6:66:0e:af:b4:77:ea:d3:85:93:8e:d6:f5:1e:3b:54:47:
c3:c9:47:bd:45:f1:09:1e:6b:99:73:0b:72:7d:9a:a5:f0:c9:
82:70:0a:90:4b:c0:03:69:70:ab:3f:07:cc:4b:db:34:fc:88:
72:c8:f8:35:6d:07:e3:b5:c7:77:59:43:fe:91:01:0e:89:21:
dc:de:a8:2d:31:c3:d4:5a:02:e6:28:2d:69:db:94:f5:2d:18:
d1:80:88:e3:74:a0:c9:ef:2b:a3:66:37:82:fb:5f:bc:84:db:
9e:32:29:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:55 2023 by rpki-client on console-fra.rpki-client.org