Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/0c613043-ac13-47bc-8bfc-eab24d307542.roa
File: 0c613043-ac13-47bc-8bfc-eab24d307542.roa (raw, json)
Hash identifier: P4JVctyKDyDEqLoHE7gmnNXQbMKReUyZaEHuCeFIwCI=
Subject key identifier: 7F:2A:06:0A:40:7E:6A:0B:11:69:86:53:01:49:D4:16:7B:EC:38:B9
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 62F32CAB4E548E7EDD61CE9B102EB7C450E9AF7D
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/0c613043-ac13-47bc-8bfc-eab24d307542.roa
Signing time: Tue 04 Apr 2023 00:00:00 +0000
ROA not before: Tue 04 Apr 2023 00:00:00 +0000
ROA not after: Fri 07 Apr 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
62:f3:2c:ab:4e:54:8e:7e:dd:61:ce:9b:10:2e:b7:c4:50:e9:af:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Apr 4 00:00:00 2023 GMT
Not After : Apr 7 23:59:59 2023 GMT
Subject: serialNumber=7cbefc3fd7a0a0818d9e25043aadf6b4e9118d984a380ad800d337ba527466fd, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:4e:93:9b:d8:61:f8:ca:be:56:43:a2:3c:7c:
43:c0:22:db:f6:4d:3a:27:50:e0:01:c7:2b:46:0b:
0f:d1:5e:ba:25:12:19:58:1e:23:73:72:7d:3f:cd:
6e:ed:1d:64:91:77:b3:f9:11:bd:55:15:33:fd:9b:
93:f0:46:a1:95:4d:75:59:f5:60:d8:d6:55:08:b5:
5b:e9:5c:ac:16:b1:85:bc:83:ba:38:f2:d1:94:25:
5d:5f:28:cc:91:4c:28:d4:f7:1e:3b:40:33:6c:9f:
2c:29:ca:e9:e2:6f:f8:06:46:d5:f6:af:fa:33:90:
6e:d9:dc:65:61:92:5e:89:50:78:e8:ab:fa:7c:7a:
88:16:eb:f5:e8:be:3a:3a:d4:95:70:0f:43:cd:8c:
dc:ae:f8:bc:5e:f6:cc:a4:5b:ed:cd:7d:31:4d:8f:
30:e3:5c:f5:eb:16:d5:25:4e:a2:31:85:ca:26:d5:
fd:3a:d9:3a:b6:b1:db:33:a9:53:84:90:75:18:82:
dd:7d:0d:7e:2e:c7:32:70:ab:02:5c:b6:a3:81:52:
85:3d:17:d3:90:7e:5b:0b:8c:62:02:00:f9:ab:4d:
5f:10:06:e8:b2:e6:b5:d6:61:6f:d3:be:3c:3e:45:
1b:38:fa:59:11:31:3c:2a:4c:46:d6:10:cd:bc:c6:
45:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:2A:06:0A:40:7E:6A:0B:11:69:86:53:01:49:D4:16:7B:EC:38:B9
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/0c613043-ac13-47bc-8bfc-eab24d307542.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
12:7e:1c:14:5f:32:ef:ff:b8:5d:30:fb:ce:a3:d9:ee:da:a4:
80:53:59:a1:fa:5f:e4:3d:9e:9a:95:e6:dd:51:33:25:09:e6:
41:79:2f:15:87:22:ad:f2:4a:89:9d:1f:5c:be:3b:75:f4:b2:
f2:08:3c:d6:4a:2e:36:31:30:d2:9a:5d:07:87:14:4b:d0:c4:
76:52:72:88:6e:dd:15:c9:f8:79:ba:27:f3:23:36:59:96:fb:
7c:d5:c2:0b:41:90:df:00:9c:8d:a7:f1:36:3a:94:44:8b:e8:
6c:ad:8f:96:c7:da:21:7a:35:57:77:27:7e:38:95:d0:fa:4c:
29:77:0a:57:0a:4c:7a:6a:d8:2f:23:75:af:e9:3c:ad:66:dc:
29:dc:89:64:39:0c:9e:54:9d:41:d2:d2:84:70:7b:09:f9:8f:
08:13:7f:16:a7:b3:90:cb:8c:41:f2:35:a4:4d:01:a4:61:8b:
66:84:e5:0e:de:8b:3e:04:3a:31:8a:7f:9f:6f:4f:f1:65:4b:
54:56:15:ee:9b:80:91:76:61:10:33:61:33:0f:e5:6b:f2:4a:
62:0c:25:fc:c6:97:27:64:f5:b9:f7:e5:41:62:f7:c8:f6:81:
e2:8e:a7:d9:7c:e4:cf:18:08:15:f3:78:fd:57:a7:be:c2:b0:
d7:67:ec:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:31 2023 by rpki-client on console-fra.rpki-client.org