Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/0df7cfea-67b2-4b56-a102-9ace196723e3.roa
File: 0df7cfea-67b2-4b56-a102-9ace196723e3.roa (raw, json)
Hash identifier: jo36sg98TSSHhpd0y8N75k7OietxpJjOlehBbvAw/4g=
Subject key identifier: 3F:88:4D:67:85:2D:6E:97:82:56:20:18:43:3D:5E:5D:6B:AD:F5:E4
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 2678C63A247E8A8109A68C3C4DB7F2BCD3F7E53A
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/0df7cfea-67b2-4b56-a102-9ace196723e3.roa
Signing time: Sun 04 Dec 2022 00:00:00 +0000
ROA not before: Sun 04 Dec 2022 00:00:00 +0000
ROA not after: Wed 07 Dec 2022 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
26:78:c6:3a:24:7e:8a:81:09:a6:8c:3c:4d:b7:f2:bc:d3:f7:e5:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Dec 4 00:00:00 2022 GMT
Not After : Dec 7 23:59:59 2022 GMT
Subject: serialNumber=c77be536ffebb923857c93d044d6ccf21e53a368301024a6e5aabbd00a1c20a4, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:d7:3a:e7:77:e0:1c:32:95:3e:c0:08:94:6f:
28:d2:2f:4a:0a:31:bd:15:5b:f0:65:b9:74:53:e0:
7e:97:a6:7d:1e:5a:94:9d:ff:9d:0b:b3:ec:9e:a9:
10:70:e8:12:34:dc:2b:82:55:0e:5b:2a:74:e2:3b:
1f:1e:06:82:62:43:a6:82:0e:90:69:94:c5:0d:94:
3d:73:25:10:38:d6:22:b7:10:8f:2b:f1:a3:da:16:
26:fc:4d:6e:f0:c2:26:4a:bf:67:22:14:7d:5a:87:
bc:49:28:c0:57:20:de:7e:25:32:ef:c2:bd:45:26:
1c:ff:42:bb:65:54:ae:87:a8:1a:d5:27:f2:10:dc:
34:89:5c:b7:8e:a9:ff:4b:70:28:4c:9b:68:30:57:
e3:51:bd:78:97:8c:b7:83:01:62:0d:63:78:86:1d:
2f:e9:d1:c2:4b:01:48:d2:53:60:84:cf:74:ec:00:
cc:48:09:46:f9:01:40:b9:ba:7e:b3:e0:c1:ad:34:
a1:ef:8f:12:fe:89:fe:12:5d:cf:83:e5:79:e2:80:
bc:d7:26:84:5e:06:32:49:08:26:89:02:34:74:0f:
d7:09:9c:25:d7:cf:c3:47:be:74:ea:c7:14:a5:fd:
bb:2c:9f:92:2a:f9:ff:60:2a:df:89:1e:c9:46:62:
a5:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:88:4D:67:85:2D:6E:97:82:56:20:18:43:3D:5E:5D:6B:AD:F5:E4
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/0df7cfea-67b2-4b56-a102-9ace196723e3.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
b0:03:93:49:03:2b:31:28:54:6b:d0:2d:26:a0:08:a2:5a:78:
ab:d0:3c:10:62:b3:ab:06:be:03:93:22:50:31:52:21:28:08:
cc:82:c1:ee:eb:9d:db:2a:18:e7:b6:71:fc:33:bc:a5:c3:b5:
c1:1b:07:9f:74:b4:d4:eb:be:4b:d5:f6:03:dc:7c:00:a3:4d:
df:07:6a:c3:3d:54:14:3f:81:f3:8c:9c:bd:cc:4f:3c:5d:45:
04:a3:7f:c1:5c:0a:1f:ae:74:90:ea:fa:86:ec:82:b8:79:01:
3b:e9:6b:46:a7:be:12:88:09:d9:00:f9:b4:fb:f6:91:7c:e2:
2f:1e:b7:f9:8e:28:5d:2c:a5:f6:b0:3c:01:4a:e6:50:6b:70:
31:f7:f1:fd:ed:cc:db:90:d1:ff:d3:e4:1d:fa:88:12:7c:b1:
5a:1c:c5:09:ac:2c:66:49:d7:84:19:ca:21:64:2e:32:85:8c:
0a:be:47:f8:fe:32:49:54:51:e5:bd:fc:d2:15:b4:98:44:f6:
50:b7:7b:ad:4a:11:38:a3:32:d1:18:8c:33:92:08:dd:ca:cd:
7a:d9:85:32:ba:68:1d:19:10:f8:77:a6:d9:9d:dc:52:3c:f4:
49:58:ac:ca:36:43:62:eb:08:64:b2:75:5d:e8:d4:b9:79:30:
52:2d:08:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:31 2023 by rpki-client on console-fra.rpki-client.org