Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/921edb35-5041-4184-97a4-b8faee27145d.roa
File: 921edb35-5041-4184-97a4-b8faee27145d.roa (raw, json)
Hash identifier: JGunROQnFZsa0N+m0H3i6wIzNjm0aNgKkhJuN/BaWQw=
Subject key identifier: 41:2F:BF:6A:79:22:37:DA:06:2F:21:F5:76:B4:71:C0:9A:48:C5:B4
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 5D15C2968C04A7357171D74B169868043935F701
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/921edb35-5041-4184-97a4-b8faee27145d.roa
Signing time: Mon 13 Mar 2023 00:00:00 +0000
ROA not before: Mon 13 Mar 2023 00:00:00 +0000
ROA not after: Thu 16 Mar 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5d:15:c2:96:8c:04:a7:35:71:71:d7:4b:16:98:68:04:39:35:f7:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Mar 13 00:00:00 2023 GMT
Not After : Mar 16 23:59:59 2023 GMT
Subject: serialNumber=31bdfe75709d6ba0c36488d6d933b43da42138e30819d90b3e38189c0e31196d, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:b5:8c:99:2e:80:b9:cf:ab:b8:a2:6d:0d:73:
de:24:86:49:f1:0a:e9:a4:e3:44:38:c2:bb:5e:4f:
54:d2:bc:81:c2:22:36:4e:28:29:18:90:6a:0d:fc:
1c:08:8a:14:95:ff:83:e4:74:58:5a:a8:9f:da:80:
1e:02:b2:3e:fb:e3:10:22:f7:ef:69:e1:83:30:79:
95:b8:70:50:1f:1d:83:ed:5e:51:f9:bb:7e:dd:11:
3f:ed:12:29:18:c4:56:ad:9c:f4:5d:35:5f:0d:68:
05:29:0b:56:41:8e:f2:1f:a2:b6:b5:25:df:30:b1:
fc:18:5d:66:30:1c:fa:54:80:69:97:85:9e:4b:fd:
d9:7a:69:72:21:c7:19:bf:ac:f5:ef:d2:b5:ba:a3:
cb:9a:2d:a5:a5:bf:04:6a:ef:df:76:dd:1b:77:b8:
8e:87:8a:8a:d0:eb:5a:92:8f:d1:e8:27:bf:30:d0:
8a:88:74:27:0f:23:df:72:9a:43:fa:39:05:8c:cd:
29:9b:37:85:6d:27:f1:66:ad:33:68:c7:a9:84:9e:
a1:78:76:53:4e:ea:3c:cc:e3:7c:ed:48:ad:21:a7:
4b:df:a3:1f:52:74:09:ff:cf:ca:b3:3b:ee:d5:a2:
b9:b1:f7:78:11:24:95:20:8e:6e:f4:eb:e2:15:ab:
7e:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:2F:BF:6A:79:22:37:DA:06:2F:21:F5:76:B4:71:C0:9A:48:C5:B4
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/921edb35-5041-4184-97a4-b8faee27145d.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
39:37:15:4c:5a:42:79:50:f4:a2:9f:ad:1c:c5:0b:83:b7:10:
39:03:1b:d7:35:e4:90:55:9d:30:db:69:07:bc:29:b4:5d:14:
17:4a:5f:62:36:fc:86:88:e5:f2:3c:2c:c6:b2:56:45:09:83:
f0:82:e3:e3:9f:8c:21:26:99:7a:21:f2:a1:be:1a:67:11:91:
67:d3:16:e0:c2:6b:64:f0:74:81:d7:6a:25:b2:fb:13:b0:7c:
2d:bb:26:dd:25:7c:b7:bd:fd:5e:cf:4f:96:06:92:38:f3:40:
f6:67:73:d4:39:78:4c:f7:16:d3:9b:f9:7f:46:fd:b2:93:39:
cc:ca:5d:e5:34:df:20:b8:d9:79:e9:f6:f7:ab:92:08:64:07:
ef:6b:38:89:5b:30:13:49:6b:9d:33:99:f8:10:c8:e6:f9:d2:
03:6a:73:7c:63:e6:5c:bb:af:3a:98:e9:e1:dd:10:03:7c:4e:
ac:ea:92:db:36:08:79:58:f6:52:63:98:4e:22:6c:b5:38:bc:
f4:a2:89:b1:7a:1d:60:9f:ca:3b:df:7c:ab:22:b8:7d:d9:44:
82:90:60:8c:e1:cf:a9:c6:90:56:b8:5c:f9:65:7a:e1:45:13:
49:44:86:51:0f:ed:2d:9b:69:f6:f5:80:3b:1f:52:3c:2c:78:
49:0d:ad:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:48 2023 by rpki-client on console-fra.rpki-client.org