Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/0baca31d-ffd0-44c1-a606-7278a5dbfaa3.roa
File: 0baca31d-ffd0-44c1-a606-7278a5dbfaa3.roa (raw, json)
Hash identifier: hzhW2XMMp6UKLsbczcf+eW63rh8LakBFcikHAnF5xzE=
Subject key identifier: DB:40:ED:20:6B:30:A6:31:08:7A:6D:98:98:26:D8:29:7E:9B:07:12
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 2D2D4968620033B2D73D41CD5424F5EEEA844695
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/0baca31d-ffd0-44c1-a606-7278a5dbfaa3.roa
Signing time: Mon 21 Nov 2022 00:00:00 +0000
ROA not before: Mon 21 Nov 2022 00:00:00 +0000
ROA not after: Thu 24 Nov 2022 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2d:2d:49:68:62:00:33:b2:d7:3d:41:cd:54:24:f5:ee:ea:84:46:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Nov 21 00:00:00 2022 GMT
Not After : Nov 24 23:59:59 2022 GMT
Subject: serialNumber=508bd07a6421478c889e99cbb6e83c0feef1978f66f33865e49527c4b4cfae56, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:d0:9e:ab:c8:f9:80:4c:fc:f5:e0:3b:cd:5f:
c1:66:40:e0:b5:da:b5:8e:93:d2:7c:4d:23:f8:1b:
87:56:a5:8b:f2:d1:14:88:54:7e:60:e1:aa:92:b4:
2b:4c:9b:1d:48:69:81:26:ff:78:95:1c:88:af:a8:
0e:84:4f:09:5f:b8:ff:50:f6:f7:b0:97:ed:70:f4:
14:47:b1:7e:06:6b:c6:7a:eb:e0:51:92:29:99:fe:
83:ee:22:ec:4e:16:d2:14:a4:77:a2:06:9b:bc:d2:
17:0e:85:c0:c7:f9:fa:0b:4d:3f:70:bb:39:55:a2:
be:24:6d:26:47:6d:fe:db:53:98:37:21:33:3d:bd:
5a:d9:13:a9:0b:d6:91:cf:85:d0:e4:f6:3b:35:90:
c5:66:41:f1:2f:7a:af:05:6c:27:37:9d:6e:5b:8e:
e7:f9:e1:46:b3:5f:1f:56:a0:87:e9:49:75:c6:80:
f7:c4:48:d1:8a:b7:83:43:90:22:59:4d:b3:e6:5c:
3b:3e:4f:5a:b3:ef:c3:52:ec:e2:e7:39:16:26:63:
7f:b7:b7:ac:74:70:3a:37:87:d3:ce:b5:73:1c:58:
0c:49:c7:42:c7:0e:2c:14:4f:55:f8:ae:18:7a:22:
88:77:b9:0d:82:21:44:73:21:b1:ab:58:05:93:6b:
71:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:40:ED:20:6B:30:A6:31:08:7A:6D:98:98:26:D8:29:7E:9B:07:12
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/0baca31d-ffd0-44c1-a606-7278a5dbfaa3.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
c5:b4:fe:3d:a3:f7:dc:a4:c9:8c:f2:b9:14:f7:62:b7:98:f8:
4a:6c:47:ca:e9:a7:b5:3a:29:c6:c3:e5:6b:20:c4:f3:18:c3:
27:44:8f:e4:52:24:84:97:b1:0d:89:c5:df:33:e7:fb:58:ba:
f0:96:39:9c:6d:52:77:04:26:a6:cc:e3:96:ea:f6:30:bc:d8:
08:74:03:58:72:c5:ca:dd:cb:36:33:57:42:fb:8b:20:41:4e:
32:0b:c9:5c:50:40:65:65:1d:9c:57:8d:bf:04:c9:9e:4b:9b:
61:11:c8:5e:81:2f:1c:78:04:12:fb:3e:4f:41:0d:2c:44:80:
f8:ed:50:b3:32:01:49:03:f0:6b:ff:4e:b2:d8:93:79:63:5a:
54:5b:1f:9e:1e:34:c3:41:c4:31:38:f5:14:4a:96:64:84:3c:
1f:93:f2:61:95:83:08:2a:39:9d:12:48:4c:fb:52:d7:04:bd:
25:f8:a5:b5:c9:e5:19:cf:20:36:1d:0a:29:94:5e:9d:4b:ed:
08:a4:7a:88:15:1d:ea:85:15:2f:74:d7:a2:bd:c9:5a:65:72:
2f:4c:fe:02:5a:84:97:34:4b:6a:e4:53:c3:01:08:e8:0c:27:
b6:6e:9d:de:af:45:ac:81:5f:4b:fe:a0:5e:fa:39:c9:e6:93:
d8:0d:7f:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:31 2023 by rpki-client on console-fra.rpki-client.org