Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4b5e3594-1053-4685-8fec-020aebed03c5.roa
File: 4b5e3594-1053-4685-8fec-020aebed03c5.roa (raw, json)
Hash identifier: D1s/Xs8rP7rCcq24X1VLIt9Uur61+7DegXuUkE4aKNU=
Subject key identifier: 26:28:B4:FF:15:AC:0E:B7:CC:AC:CB:AA:69:DC:18:C0:26:5A:EC:9B
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 71E3F4BA526D0120CA3A7C09735175938AF45494
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4b5e3594-1053-4685-8fec-020aebed03c5.roa
Signing time: Fri 12 May 2023 00:00:00 +0000
ROA not before: Fri 12 May 2023 00:00:00 +0000
ROA not after: Mon 15 May 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
71:e3:f4:ba:52:6d:01:20:ca:3a:7c:09:73:51:75:93:8a:f4:54:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: May 12 00:00:00 2023 GMT
Not After : May 15 23:59:59 2023 GMT
Subject: serialNumber=11470af1a5671ca374e57d6d0ef67928189b4d7ee5363c44099c6f3cc8d34a9c, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:47:f4:9d:1d:cc:93:5f:c4:91:53:e2:9d:27:
ba:fa:a3:af:05:19:96:95:65:65:a8:0f:a6:fb:2c:
c6:dd:86:b0:48:64:65:58:b2:b0:d8:bc:b3:47:f2:
95:12:f7:18:ef:0f:96:ea:14:2f:e2:35:33:3c:95:
8a:89:07:df:50:8e:cf:a1:1a:ab:bc:59:5f:88:c1:
4b:88:cc:ae:52:c5:43:6b:ba:6a:96:bd:54:e9:53:
be:ad:df:26:d9:43:0b:48:3f:a6:0c:b2:d2:63:a7:
85:59:20:f8:a0:c8:5d:55:87:86:c0:f9:c0:1b:c0:
47:00:54:30:c6:f0:4d:57:d3:79:b8:e1:14:7c:c4:
be:85:17:26:3b:21:17:0d:8e:20:bf:a8:86:28:5a:
00:d9:fd:5e:02:38:30:cd:78:ed:32:cb:50:61:1c:
79:92:56:ab:93:c2:d3:7d:bb:c9:44:a9:d0:2c:65:
39:01:df:13:3e:52:8f:74:7f:5f:57:c6:42:79:e3:
61:b8:b9:f5:c1:10:40:7c:3f:89:b9:12:b4:24:99:
72:11:ca:d2:27:98:3b:05:41:f3:c9:05:8d:b3:6b:
7a:57:f5:ce:b7:1b:43:99:38:10:3f:96:6d:9d:ec:
02:08:ea:0c:5c:39:2e:91:3e:f1:7f:18:b0:e7:ad:
c3:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:28:B4:FF:15:AC:0E:B7:CC:AC:CB:AA:69:DC:18:C0:26:5A:EC:9B
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4b5e3594-1053-4685-8fec-020aebed03c5.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
06:fd:1c:fe:75:32:cb:a6:66:d3:6a:55:b0:83:85:35:35:c5:
1c:c6:c6:b6:e9:7e:a7:21:88:a7:54:b6:d8:d9:3a:4b:3a:6e:
87:7e:59:27:74:2a:29:da:f3:ad:9c:06:db:2a:69:a1:c7:30:
79:2e:b9:33:73:16:4e:94:94:5d:d4:58:30:39:eb:dd:3f:10:
61:5e:6e:cc:9e:18:9a:2e:61:a8:ec:41:67:0f:c6:3b:b0:03:
9f:1d:88:45:4d:fd:2f:03:71:8b:f3:0b:bc:58:c7:74:9e:4e:
ff:42:4c:2e:be:3e:d9:42:cd:b5:fd:79:d1:49:88:85:7b:14:
f6:5f:97:16:16:29:b0:ec:9e:f3:c9:de:49:af:3f:de:28:7d:
08:da:fe:b8:3e:4e:09:69:c0:96:92:d9:1d:df:fb:5b:52:68:
38:6c:0a:a6:f4:4f:e5:72:7d:d0:d1:30:97:c7:10:e0:7a:0f:
51:13:42:1b:a1:2d:45:a8:18:f9:4b:18:3e:5b:8f:58:17:17:
d2:de:b0:cc:38:c2:61:49:61:8f:d9:71:51:d9:0e:b9:63:e5:
08:6c:46:07:3c:8d:b3:f6:2a:17:a2:e1:ff:4e:4c:0e:1e:fa:
c3:83:3b:06:26:c9:fd:9c:d1:6b:ae:30:85:ad:1b:5a:a0:d9:
e1:98:35:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:41 2023 by rpki-client on console-ams.rpki-client.org