Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/21099836-474d-4e5e-b0d5-0dba8c3345ed.roa
File: 21099836-474d-4e5e-b0d5-0dba8c3345ed.roa (raw, json)
Hash identifier: E+VWRGsDzlmRLBUrJqJFTZooAAZI8uQXEwcwfWqsDIE=
Subject key identifier: D1:FC:D6:EE:E7:27:6F:5D:00:F7:9C:51:42:7B:61:64:10:3C:6A:E8
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 357E334E1079D9B2D5D03F0E8F49A59635917199
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/21099836-474d-4e5e-b0d5-0dba8c3345ed.roa
Signing time: Sat 29 Apr 2023 00:00:00 +0000
ROA not before: Sat 29 Apr 2023 00:00:00 +0000
ROA not after: Tue 02 May 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
35:7e:33:4e:10:79:d9:b2:d5:d0:3f:0e:8f:49:a5:96:35:91:71:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Apr 29 00:00:00 2023 GMT
Not After : May 2 23:59:59 2023 GMT
Subject: serialNumber=c4e6bb7f674a0ff0957055afb1e5afe48b4b4f3d99a81fbaf503796bde729936, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:22:5b:f4:27:08:d1:c7:35:7c:78:41:32:e5:
a7:1b:46:bb:92:67:da:e4:ba:6c:f5:e9:8b:a2:d8:
62:a7:7b:fc:b6:04:14:73:b2:10:22:c8:3a:8a:5f:
2f:84:fc:9e:dd:65:e4:a6:a7:5a:ad:12:3f:6d:2d:
ea:8b:70:6f:d5:a9:84:e6:fa:0b:ef:3a:3d:b4:e8:
ad:bf:03:cd:e8:84:de:34:84:8d:cb:a6:65:a0:a5:
98:85:3d:48:ad:ae:26:f4:75:32:0a:19:b2:7b:86:
8c:06:f9:87:1c:6f:ff:dc:13:d1:d5:f6:5b:be:91:
af:bb:ef:d1:02:12:a9:1b:61:7f:df:b1:26:16:50:
41:f3:db:f7:eb:f5:6e:91:6f:87:ba:b4:a3:e3:bc:
7b:e4:e4:d8:6d:6e:4d:f5:7f:95:77:d7:58:49:c6:
40:75:48:4e:b5:5b:8c:63:41:15:09:17:13:d8:7f:
60:20:4c:67:3e:2a:18:d5:c8:6d:f8:ac:e5:f8:b2:
1f:7b:5b:21:35:10:f9:3b:76:a9:a0:2e:90:2d:d8:
9f:09:33:8e:24:df:cf:92:b2:96:b6:98:ab:8c:5f:
c8:9b:8d:a5:8f:6a:20:9c:f3:71:f8:8b:65:b7:e7:
79:12:06:b4:cc:6a:95:07:29:fc:f4:28:67:ea:9a:
41:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:FC:D6:EE:E7:27:6F:5D:00:F7:9C:51:42:7B:61:64:10:3C:6A:E8
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/21099836-474d-4e5e-b0d5-0dba8c3345ed.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
40:04:86:80:c5:e2:2a:f4:dc:87:10:dd:71:27:95:07:b3:ad:
3d:ab:2a:e2:7d:a8:32:ef:a9:a0:4d:17:c3:5d:0d:6b:d3:bf:
33:20:72:b9:dd:36:98:7b:eb:3e:97:c6:e2:1d:ab:8d:0c:c9:
2d:ef:4c:25:0b:67:36:8d:44:dc:ba:dc:dc:d2:50:fb:4e:b4:
9f:9d:6e:98:43:9b:93:c4:8b:03:ba:4e:21:22:d6:1d:b8:21:
66:38:48:b3:8d:98:51:ab:72:bd:0a:c9:31:3c:4f:e4:b3:6e:
2d:0f:f2:49:30:58:ea:5d:ef:61:ad:5a:5d:2a:aa:23:f8:f8:
7b:fc:f6:14:b0:9c:70:ab:b3:5c:d3:a6:1d:36:9f:43:8d:38:
c5:60:c0:d7:67:63:4a:bb:cd:28:0c:08:4d:13:99:0f:20:4a:
05:dd:27:b7:21:6f:d9:03:7d:f8:8d:c9:9d:41:52:79:69:53:
49:67:ae:18:dc:f7:3c:c7:d7:0e:c8:df:f7:4a:a7:19:ce:ad:
05:b8:c5:49:f7:41:79:9d:b6:9f:f0:53:9e:c6:1d:67:21:8e:
fb:7d:5e:39:15:e1:37:c1:4c:28:48:69:a9:8b:30:79:97:a5:
b1:e1:bc:35:00:de:41:df:67:2e:f6:ce:74:a2:50:b0:ee:6a:
bb:51:65:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:38 2023 by rpki-client on console-ams.rpki-client.org