Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/06126dd7-5dbb-4446-b6dc-0b792a7f456b.roa
File: 06126dd7-5dbb-4446-b6dc-0b792a7f456b.roa (raw, json)
Hash identifier: b9lGdbssnZ9ljae/OW/c2qrKX0yFXAzqKVmIKIcTpzI=
Subject key identifier: 1E:EB:82:C8:38:5B:80:BF:A8:81:49:74:72:4B:92:4C:05:AE:DB:2A
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 245058D51E4441F53F0FCDAF4AF908BE22ABEF25
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/06126dd7-5dbb-4446-b6dc-0b792a7f456b.roa
Signing time: Fri 31 Mar 2023 00:00:00 +0000
ROA not before: Fri 31 Mar 2023 00:00:00 +0000
ROA not after: Mon 03 Apr 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
24:50:58:d5:1e:44:41:f5:3f:0f:cd:af:4a:f9:08:be:22:ab:ef:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Mar 31 00:00:00 2023 GMT
Not After : Apr 3 23:59:59 2023 GMT
Subject: serialNumber=e135d61fc695e9c66b4b59629b6126092c4e3ca7ac38dc85b6873962befa8469, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:9d:fa:cd:cd:46:47:e8:57:04:cd:38:f2:b3:
61:08:41:8f:4c:0f:76:7a:39:60:2e:21:27:12:db:
be:22:99:62:30:91:e7:f1:ab:f5:0f:32:bc:8e:fe:
91:8f:71:c5:e6:13:fe:17:8a:eb:d0:37:3d:12:19:
5d:86:f7:f5:1f:26:50:cd:73:17:1e:ba:4b:3e:45:
ae:c8:b5:73:4d:81:fb:94:25:f8:05:92:2b:f2:55:
76:ee:29:11:3e:d3:62:6c:14:34:16:38:b0:6b:b1:
b5:5e:98:7d:81:28:b6:0b:09:31:2e:a9:30:0e:9d:
a4:c2:db:5d:91:36:36:17:4a:27:cd:07:ad:04:df:
09:7e:89:b2:3c:94:7e:d8:77:8e:d8:a2:3b:7d:7b:
e0:58:48:a5:33:76:94:c0:1c:b6:71:24:1e:50:9b:
c6:3c:65:b3:31:05:4b:b5:dc:89:b6:01:67:51:5a:
46:19:b9:ed:95:c7:fb:bb:2a:31:89:9f:8f:eb:5c:
94:99:1c:b6:68:27:4c:11:99:2b:d3:58:dc:e5:34:
3a:c4:21:49:a6:a8:38:83:49:73:d2:82:c6:d9:bc:
2c:aa:1c:7b:62:54:78:9b:1f:b6:32:84:cc:9c:84:
0c:93:d5:b2:bc:49:6b:db:60:9c:aa:9f:0e:8a:b7:
ac:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:EB:82:C8:38:5B:80:BF:A8:81:49:74:72:4B:92:4C:05:AE:DB:2A
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/06126dd7-5dbb-4446-b6dc-0b792a7f456b.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
01:6b:6b:ee:3d:f0:b7:1a:fb:09:5a:09:c5:0d:15:21:d7:b7:
69:c2:c2:07:58:83:e9:05:31:dc:5a:aa:59:a6:9a:fb:2e:f3:
2b:cd:f4:ee:5d:20:81:fd:91:f5:2f:60:05:8b:80:da:13:5e:
4f:7e:cb:0d:29:17:d0:26:f9:34:4b:bc:32:21:e9:ab:e7:64:
e5:12:22:79:10:06:01:7d:05:0a:7f:33:7f:73:9f:62:92:4a:
b0:f0:c5:e1:16:56:fe:96:ba:14:5d:9e:84:0a:68:5d:2d:9b:
da:b5:dc:bc:34:70:3f:3d:90:02:40:49:70:f1:1d:a8:92:6c:
74:eb:c4:7a:a1:be:78:43:07:15:cb:0d:c6:83:31:84:ef:31:
f3:5f:58:0f:b6:0c:44:f1:d4:c5:62:3c:30:d0:1d:30:e5:f0:
c5:d2:40:1a:7a:f9:0f:db:fb:91:30:1b:b9:3d:af:95:9f:85:
97:71:31:9e:01:58:eb:41:20:23:cf:e1:0a:a4:71:1e:62:c3:
69:c1:b5:2c:54:93:ca:16:d4:32:d8:96:bd:7d:ff:94:1c:6a:
81:ac:fd:19:7c:c0:98:ff:86:2d:19:25:fe:58:bc:92:3c:ef:
80:59:ac:1d:f2:eb:75:8e:a4:ca:77:e3:95:35:d5:79:99:d2:
ca:d6:c4:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:31 2023 by rpki-client on console-fra.rpki-client.org