Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4d2798d2-e120-4283-8fef-6eba83092eb9.roa
File: 4d2798d2-e120-4283-8fef-6eba83092eb9.roa (raw, json)
Hash identifier: csBpqjFx8LljlzGhDY7Wh+TNRN0573XsaWzwSEqdW3w=
Subject key identifier: 28:CE:87:04:C3:5F:97:72:B2:A7:7C:AD:29:38:FB:4C:4A:F3:4F:AB
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 609E07D882DDE9015FB769D48D52DD167D9A5B96
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4d2798d2-e120-4283-8fef-6eba83092eb9.roa
Signing time: Thu 18 May 2023 00:00:00 +0000
ROA not before: Thu 18 May 2023 00:00:00 +0000
ROA not after: Sun 21 May 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
60:9e:07:d8:82:dd:e9:01:5f:b7:69:d4:8d:52:dd:16:7d:9a:5b:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: May 18 00:00:00 2023 GMT
Not After : May 21 23:59:59 2023 GMT
Subject: serialNumber=4a4af8173c09e6b94b7688a489e9f73722f465f4a23f839703fa711beeafa970, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:2c:92:56:d1:47:20:3f:13:97:96:0e:76:98:
ed:30:2e:72:e8:19:e4:0f:8c:13:80:b4:ac:e0:f6:
f3:33:95:74:72:a2:48:89:dd:bb:29:35:99:dc:eb:
28:a8:d2:b2:05:24:05:d1:5e:7d:2d:1c:4d:04:81:
64:13:11:91:6a:29:2c:c5:e0:6e:53:20:10:2d:f1:
d2:4f:2a:95:94:15:70:f8:96:be:90:f8:fd:10:8e:
37:da:f2:23:da:c0:2c:d4:9a:27:e7:a2:99:f7:ab:
82:c9:50:cd:50:b3:c8:3c:15:33:12:bc:c8:e9:6e:
51:fd:5f:29:55:9f:fa:09:ff:cb:4e:d8:e8:30:12:
d4:03:d1:c8:8d:1f:9a:03:1f:f4:dd:80:22:cf:85:
6b:69:80:42:b7:0a:18:50:df:af:77:60:0e:c4:3f:
f1:4f:e2:02:0d:e2:15:7a:e2:eb:20:fc:b2:06:44:
56:f3:44:f4:6a:df:77:da:86:7b:5c:b0:71:a1:1d:
b9:7a:13:37:a6:69:43:e7:d7:00:6a:29:ef:41:70:
b5:ea:c4:66:2d:2a:ba:a3:d8:a8:78:6f:00:81:06:
19:74:f4:ec:e5:f6:6f:e7:28:13:8b:f5:20:4f:7c:
67:8b:70:b7:1a:85:d1:14:0e:bd:ae:37:ed:54:22:
b5:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:CE:87:04:C3:5F:97:72:B2:A7:7C:AD:29:38:FB:4C:4A:F3:4F:AB
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4d2798d2-e120-4283-8fef-6eba83092eb9.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
75:37:a2:45:7c:e9:8b:78:76:b5:ec:89:b2:2d:1d:3e:a0:f7:
d3:13:b8:a6:31:43:28:67:6f:d9:da:c5:f4:b0:85:ac:b1:9d:
ad:0f:23:c0:2f:f2:b4:3c:54:99:f7:63:e3:c6:86:91:be:9a:
1f:0b:fc:93:81:e6:db:bf:44:e6:f6:90:e4:f6:cd:74:95:06:
e2:50:20:1a:ce:6e:a2:41:fb:49:9e:60:f4:34:8a:3b:ec:b2:
d0:52:7a:cd:df:b1:7f:71:cc:1d:e2:84:17:5f:97:1b:3d:25:
e7:42:53:26:99:a0:16:b8:32:a7:a6:2f:c5:43:15:3f:03:10:
66:0c:65:42:11:bf:fd:2e:f5:9c:ad:c1:65:04:60:84:56:d9:
b4:79:c7:56:8f:2d:d8:e8:7f:ec:32:83:0a:a9:89:24:6d:36:
70:0f:7c:65:23:2e:a9:c3:a8:6b:78:46:a9:44:ec:64:94:b1:
4a:68:31:7f:65:49:10:8c:df:b7:2b:8a:6f:72:e5:69:5c:b6:
67:07:cf:30:75:ff:73:f1:07:f6:4e:0f:b5:50:02:9e:2c:a3:
f2:ad:f8:06:e8:ea:87:58:5e:e1:41:d3:cf:7f:21:09:ea:fe:
30:5e:f0:e2:12:80:43:49:7f:4c:83:85:26:d9:cf:53:41:45:
59:d1:fb:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:36 2023 by rpki-client on console-fra.rpki-client.org