Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/b4287fdb-8db3-4438-bca7-6f21ec8b866b.roa
File: b4287fdb-8db3-4438-bca7-6f21ec8b866b.roa (raw, json)
Hash identifier: cvcT7KAVXNzYMARjZxjXuEIUbXBNcU62s0txcksTdoI=
Subject key identifier: 06:62:44:2C:1B:96:B0:28:84:E5:95:AC:4A:E2:86:EC:6E:36:53:6B
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 3A4BFB7549C750B551F478DC7A3C4C286D86E6DF
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/b4287fdb-8db3-4438-bca7-6f21ec8b866b.roa
Signing time: Mon 01 May 2023 00:00:00 +0000
ROA not before: Mon 01 May 2023 00:00:00 +0000
ROA not after: Thu 04 May 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3a:4b:fb:75:49:c7:50:b5:51:f4:78:dc:7a:3c:4c:28:6d:86:e6:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: May 1 00:00:00 2023 GMT
Not After : May 4 23:59:59 2023 GMT
Subject: serialNumber=656e569d5926323e940a13971a1a7f0fa1050520ff0fa23c726231aa04c3f9ea, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:db:2b:e2:4c:7d:57:a3:f3:4c:2c:76:36:3f:
d5:92:50:ef:f6:d5:10:4f:f4:60:44:aa:41:da:e2:
f6:83:3d:48:0e:15:66:59:c0:cf:df:87:59:07:35:
ce:d8:b6:ea:ab:c0:68:0f:f6:47:8c:18:2f:bc:8e:
a3:fd:13:ac:52:67:e0:4f:b6:9a:d2:3d:17:86:44:
11:5e:ec:0f:82:3d:fa:da:d1:88:46:1c:02:bc:81:
a8:a8:a1:b0:e9:4f:7f:1b:bb:35:a4:c3:2a:b6:12:
6f:6e:8d:c1:74:26:33:dd:30:af:1c:57:da:d8:19:
65:f7:2f:f0:12:55:ab:ab:17:dd:ac:1f:4e:8e:36:
7c:12:02:fe:0e:9c:b8:cd:10:62:dd:d9:91:e7:44:
c1:a5:48:55:51:c8:19:5c:c6:d4:5f:0f:ae:2a:26:
4c:ba:5b:e6:f3:50:3c:46:04:46:f8:ba:74:e1:76:
c5:ae:62:42:91:b9:c0:ba:ff:f2:0e:3b:0d:59:ab:
4f:7f:1f:9d:a0:58:98:fe:4b:e1:0b:8f:ff:ce:c8:
fd:0d:f0:a4:82:2f:48:c4:a7:03:c9:28:ab:d9:77:
41:e7:7b:2d:a3:70:7b:3b:9c:1d:c6:cb:2b:53:ae:
6f:46:68:a5:6d:70:39:d9:9e:18:79:1b:58:c8:de:
5f:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:62:44:2C:1B:96:B0:28:84:E5:95:AC:4A:E2:86:EC:6E:36:53:6B
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/b4287fdb-8db3-4438-bca7-6f21ec8b866b.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
1e:4f:5a:30:c3:8c:af:62:b4:b0:22:94:e6:f6:f7:32:af:33:
97:1f:19:19:09:6c:6e:df:f5:35:7f:42:18:d9:f8:b0:64:f7:
d1:48:49:6a:dc:f9:ab:5e:61:ac:e6:bf:18:0f:ca:e7:d1:0b:
79:65:fc:6c:21:3e:89:58:b9:aa:85:5c:ae:2f:ed:f1:5c:67:
92:1a:d6:13:dc:c3:88:52:69:42:8f:b4:54:72:35:12:52:2a:
be:26:79:3c:17:7d:21:05:e9:24:9b:ce:df:ef:4d:8f:e1:b3:
0c:b1:26:77:e6:8d:bd:cc:80:ce:e6:9c:27:a0:29:05:bb:a2:
8f:75:78:62:e4:24:8b:10:b8:fb:9e:06:0b:30:49:13:c7:21:
b9:af:79:4c:ff:26:4f:c4:ac:51:45:b5:0d:13:71:88:5b:c2:
bf:39:64:f0:00:2d:65:c0:0e:c3:b1:68:fb:2f:a1:a6:0d:9b:
d2:28:20:81:3f:3f:26:ea:38:a5:96:ff:23:fb:82:88:0d:44:
bd:28:b7:97:f1:93:4c:ca:8e:e8:ad:8f:b4:c4:9d:42:57:d6:
49:5e:79:33:69:b9:23:08:27:44:58:ac:c7:28:a5:e6:91:89:
08:2c:db:1b:c5:38:04:3f:c2:ea:5b:92:8c:8a:e4:16:13:c8:
f4:97:96:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:49 2023 by rpki-client on console-ams.rpki-client.org