Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/2225e293-15dd-469d-9024-b696547c858c.roa
File: 2225e293-15dd-469d-9024-b696547c858c.roa (raw, json)
Hash identifier: XVHhXsd9itjPDY2B2uyOm8+aN5wxuyhqo6zILt4TRy0=
Subject key identifier: 57:54:5C:94:46:5D:F7:85:B5:D8:61:92:61:D5:16:02:F0:64:84:5A
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 6DB0CAFF6272789844D238ED9CE0682C1C885211
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/2225e293-15dd-469d-9024-b696547c858c.roa
Signing time: Sat 06 May 2023 00:00:00 +0000
ROA not before: Sat 06 May 2023 00:00:00 +0000
ROA not after: Tue 09 May 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6d:b0:ca:ff:62:72:78:98:44:d2:38:ed:9c:e0:68:2c:1c:88:52:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: May 6 00:00:00 2023 GMT
Not After : May 9 23:59:59 2023 GMT
Subject: serialNumber=78f4b21cab334fd33f1d29daa5b89d9aea1c54799778c7d7742e925c3c345e90, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:29:5c:81:0f:28:f6:c8:59:2b:a8:8f:7e:e2:
41:a5:81:52:6c:41:b1:99:8a:4f:7d:dd:28:ce:58:
ba:57:f9:4e:0f:45:64:83:dd:c0:38:2f:eb:af:41:
b7:65:0f:d9:cc:e8:24:07:ca:d0:75:f2:e9:b1:b8:
bb:eb:64:9f:bc:80:47:f6:eb:f9:7a:a8:76:48:80:
89:af:d2:4e:f8:78:70:0f:12:46:74:38:85:ce:27:
69:83:ab:e6:36:38:63:30:2f:b6:02:36:cc:0d:e3:
65:ba:04:3c:eb:51:39:ae:e1:b9:e1:f2:46:6c:78:
d1:40:92:63:a4:96:b5:c9:90:a9:5c:9c:e9:e9:ac:
6c:08:9d:d5:fb:c5:5a:49:7d:90:d0:b5:f7:77:ec:
13:88:95:1c:f9:1a:ce:7d:d8:4f:65:9d:54:0a:fd:
8b:18:21:a1:80:9d:f9:3a:29:17:21:70:45:cd:fe:
9a:d2:19:f4:3a:d8:78:26:2e:ea:94:9a:2b:9c:07:
30:71:0c:cb:37:d3:66:0c:2a:e7:08:dc:a8:df:c9:
bc:60:c2:00:e5:45:c3:cb:49:81:4b:22:49:04:9c:
dc:9c:5a:ec:c7:57:b1:a1:94:ce:6a:e1:40:e9:92:
5c:ad:0d:c8:ca:12:82:53:01:16:c5:3e:ab:a7:65:
18:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:54:5C:94:46:5D:F7:85:B5:D8:61:92:61:D5:16:02:F0:64:84:5A
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/2225e293-15dd-469d-9024-b696547c858c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
a7:ab:0f:e2:61:08:74:28:db:5a:31:ef:7e:33:82:e2:93:b6:
a3:05:fd:7e:96:4a:f8:3e:b6:be:c4:37:43:4e:9a:50:9f:0d:
b6:94:e2:9e:31:dd:72:99:8b:23:6f:dd:e1:22:23:7e:4e:63:
34:9c:37:89:3f:7a:35:a6:76:2f:00:5f:2b:92:b9:71:9f:18:
1d:0a:4c:45:f7:23:86:58:1b:46:61:52:24:de:cf:8e:6e:0b:
49:70:c3:3d:5e:7e:6f:5f:ce:b4:57:46:94:45:0d:40:96:e3:
55:5c:30:ab:50:4e:ce:31:be:65:56:e4:9c:6c:e6:05:ea:ce:
29:3e:44:35:ba:d8:e8:64:aa:9f:4f:27:a4:8b:c4:f2:67:b2:
9f:67:f5:43:b9:c6:aa:e3:e1:e1:fe:6c:76:f1:a1:5e:89:d0:
f0:13:e7:cd:83:4e:b5:b1:6a:04:da:ba:18:96:41:9f:fb:ba:
d9:23:0d:64:2f:5f:4d:1f:54:6f:3a:46:dc:8e:50:69:e0:e2:
a6:57:20:de:cc:de:6f:68:b8:49:17:f5:58:58:8b:e0:f4:28:
e1:cf:98:00:22:fd:db:ba:08:83:a3:e9:50:65:d6:55:65:74:
fa:d9:56:70:86:56:55:ab:87:dc:d9:f6:67:c6:8c:9e:95:55:
9e:19:a7:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:33 2023 by rpki-client on console-fra.rpki-client.org