Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/6f35590e-c945-4c77-8cfc-103137066611.roa
File: 6f35590e-c945-4c77-8cfc-103137066611.roa (raw, json)
Hash identifier: GKjr3pdGjFIH9EOBFTUXRn9vg/cwJw1Ekp/51cyWaOg=
Subject key identifier: FB:82:7E:20:03:BB:0D:17:36:E1:3D:39:0D:95:90:65:E8:B5:26:C2
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 45196E29C8CBD891568507B70BF35956509FE193
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/6f35590e-c945-4c77-8cfc-103137066611.roa
Signing time: Mon 03 Apr 2023 00:00:00 +0000
ROA not before: Mon 03 Apr 2023 00:00:00 +0000
ROA not after: Thu 06 Apr 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
45:19:6e:29:c8:cb:d8:91:56:85:07:b7:0b:f3:59:56:50:9f:e1:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Apr 3 00:00:00 2023 GMT
Not After : Apr 6 23:59:59 2023 GMT
Subject: serialNumber=6e51a3c0239ec7aa863f623cfd77e7858d2ed9eb5d2b6de047ca2040b075d733, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:f3:61:f4:cd:e4:e1:c3:a5:74:45:dd:54:f0:
08:99:25:f0:58:0f:c1:9f:f8:a3:2c:30:67:a6:c2:
6d:59:21:93:90:d8:06:2c:0a:94:77:6f:0c:3c:b7:
b8:a3:67:f9:57:79:9c:d3:c5:a6:23:0d:7f:d9:3f:
a0:42:91:33:6f:fd:94:56:03:3f:3f:27:b2:0f:5b:
d6:b8:6e:31:95:7f:e0:e0:7c:2a:9c:57:c5:be:8f:
16:4d:a7:cc:fd:63:d8:0c:6a:f0:26:4b:7d:5f:6d:
fc:c5:0c:14:2c:f2:8d:01:55:e3:40:14:03:11:ce:
83:7f:c1:39:2f:d6:64:20:49:49:65:5d:ee:80:04:
ce:c0:31:fa:ee:89:48:de:2d:5d:99:5b:41:03:05:
d7:5e:38:b2:29:7b:67:65:30:2a:43:23:a9:95:df:
70:68:df:58:1a:56:93:57:10:84:7b:26:ed:c9:55:
05:6f:4a:1d:56:58:0c:8b:7d:3c:b0:f9:83:c4:a2:
ed:79:fc:18:68:22:82:f7:a9:87:2c:29:88:d4:b8:
9c:65:91:f2:72:06:69:10:13:0f:78:58:44:22:eb:
f4:33:84:4b:18:a6:c5:ff:ca:c5:11:27:b3:60:02:
31:71:ec:76:e3:55:03:c4:d1:62:f0:6f:d9:a2:bf:
4b:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:82:7E:20:03:BB:0D:17:36:E1:3D:39:0D:95:90:65:E8:B5:26:C2
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/6f35590e-c945-4c77-8cfc-103137066611.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
4a:37:a2:df:8c:92:97:08:4e:18:23:83:7f:50:5e:c1:7e:97:
fc:58:1d:88:6b:11:ed:ee:91:2c:0a:a6:64:9b:81:7f:80:0b:
c2:50:e5:0e:f8:e2:51:97:f2:19:fc:f0:51:a4:01:55:81:64:
46:6d:bd:ba:f6:1e:99:01:bc:39:e0:3a:69:48:cc:b3:48:a4:
51:c0:dd:4c:b6:f2:b3:cf:b4:bb:21:3c:9f:2c:b0:e9:65:bb:
2e:57:1b:ed:90:3d:b5:30:f7:97:31:b3:da:7f:06:1c:21:3e:
aa:5f:dd:67:3d:8a:5e:9e:fd:98:be:20:09:24:af:c4:04:7e:
e8:f7:98:cc:33:c8:c5:67:4d:ef:9d:ad:b8:ea:ae:f8:90:c1:
da:b7:05:2b:e4:0e:ef:9a:90:29:7f:c1:74:0c:c7:76:5d:fa:
0d:44:43:57:41:ee:bc:dd:f1:59:77:ad:55:91:5d:2b:82:8d:
1e:45:81:fb:9d:5b:78:32:4d:d3:d6:d3:12:42:48:26:97:db:
e2:7b:98:0d:d4:a0:1b:b6:a1:7f:ef:5a:5b:4b:50:5a:c4:a5:
f8:bd:0c:fc:87:2f:60:88:a4:bf:ea:e6:a9:8c:de:e4:41:86:
91:06:ce:54:64:74:f1:fb:60:c2:a0:1f:dd:90:5c:f7:ec:58:
a3:6f:aa:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:46 2023 by rpki-client on console-ams.rpki-client.org