Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/2e49eba5-df13-445c-8f6f-01db5318152b.roa
File: 2e49eba5-df13-445c-8f6f-01db5318152b.roa (raw, json)
Hash identifier: DR6r9cb9AWPkn6PAx+nvB9TkVTeIMXCsTULXun++Djo=
Subject key identifier: A0:53:0E:BE:28:60:11:68:81:5D:95:C2:2A:AE:C4:3E:44:3D:33:EA
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 2DBD5DF4782C31B172FB61899B25B9624A2C224C
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/2e49eba5-df13-445c-8f6f-01db5318152b.roa
Signing time: Sat 20 May 2023 00:00:00 +0000
ROA not before: Sat 20 May 2023 00:00:00 +0000
ROA not after: Tue 23 May 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2d:bd:5d:f4:78:2c:31:b1:72:fb:61:89:9b:25:b9:62:4a:2c:22:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: May 20 00:00:00 2023 GMT
Not After : May 23 23:59:59 2023 GMT
Subject: serialNumber=3767e85eae9088c0d351b15b521fde537113559a595659cba50bfe642ccf7d33, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:0d:12:73:20:f5:46:03:bf:f1:da:e2:33:ac:
ae:e9:51:16:65:40:0f:fa:9a:36:01:68:38:45:8a:
87:f9:d5:55:2d:fd:f3:bc:79:40:25:fd:aa:af:02:
54:02:09:5f:64:f3:e9:88:4c:84:88:cd:f2:31:d5:
0f:35:ab:0f:24:06:a6:2d:87:9f:58:e5:82:0a:23:
44:f2:5b:36:76:9e:be:91:28:27:e0:b4:55:0f:c4:
4b:ac:18:a0:dd:99:2b:57:b3:bd:5d:3c:d7:23:b2:
a9:c0:fc:31:50:4d:4f:17:1c:c9:06:72:07:c9:34:
02:07:d9:7a:e7:fc:23:8e:5f:c7:ae:27:0f:0d:33:
9b:4a:7a:87:54:50:05:2b:ac:e1:44:ad:5b:3e:20:
7c:d7:96:f8:f4:61:f3:fd:12:6f:d5:d1:65:ac:0c:
92:6e:ee:2e:be:f9:7d:dd:62:37:b7:cf:0f:13:f2:
91:68:74:c7:15:a5:d2:c3:c0:59:d4:5d:4f:e0:ed:
34:5f:ad:5e:b7:1a:73:98:77:10:c7:f9:1f:7c:23:
86:59:92:66:09:0a:40:53:4c:78:9d:9a:14:02:a9:
a9:d8:7b:fb:e5:8e:40:a3:a9:8d:36:25:79:a4:55:
20:d7:4d:34:d6:d9:98:ae:2e:1a:73:08:00:9a:0f:
d8:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:53:0E:BE:28:60:11:68:81:5D:95:C2:2A:AE:C4:3E:44:3D:33:EA
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/2e49eba5-df13-445c-8f6f-01db5318152b.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
6b:50:82:4c:f6:7c:1d:ba:4c:5c:3e:c9:db:b7:f9:bd:8f:1b:
c5:3f:69:6f:9e:dc:9f:f7:9b:9b:2a:2d:bb:e5:88:e5:ab:aa:
32:f4:02:b5:8d:64:5d:a8:95:36:1a:d3:92:0a:96:0a:85:a0:
e5:69:b6:62:2f:bb:c3:9f:29:6f:7a:fc:09:df:7e:80:d1:a5:
43:ad:59:a1:f7:15:f8:ea:32:9e:30:e6:cf:cf:fd:a4:e0:57:
ef:a5:a1:60:d2:bc:3b:3f:2c:92:62:be:c0:81:f5:f0:44:32:
fa:40:7e:9b:bc:03:6f:a5:5f:7f:4f:5a:14:ef:96:32:0f:1c:
be:94:92:51:65:ba:f6:de:2b:76:df:bf:0a:0e:32:b1:51:b2:
d1:94:7c:48:5e:84:83:a4:8c:f7:84:38:fe:a8:f4:35:d0:f2:
7d:99:4a:23:02:e2:b2:58:9f:ce:a9:a0:2f:31:fc:07:cb:44:
28:8d:82:66:62:a5:fa:58:c6:41:82:5d:ef:8f:03:e3:7a:8e:
b6:96:dc:9f:09:04:e4:3d:94:95:45:f3:6e:c1:90:7d:41:a3:
ec:05:63:97:9d:6a:e2:e7:cf:1f:d9:cd:ce:e6:e0:5a:c8:32:
d4:b6:d7:da:2b:48:33:09:5a:fe:a7:90:50:c3:ca:db:d4:a8:
ce:fd:12:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:34 2023 by rpki-client on console-fra.rpki-client.org