Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/122e71e7-261d-4d5d-9e8c-3bedac8284a5.roa
File: 122e71e7-261d-4d5d-9e8c-3bedac8284a5.roa (raw, json)
Hash identifier: yzDm+iewOr+bTddJM7lp2PQgpKDfxKCafhaXfXWmne8=
Subject key identifier: 62:D5:8F:90:89:1D:68:E3:46:C4:FD:BD:09:DA:5C:D9:40:99:70:D4
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 33EB03A9360FA3A094802E8B6ACF51B55AC69433
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/122e71e7-261d-4d5d-9e8c-3bedac8284a5.roa
Signing time: Thu 23 Mar 2023 00:00:00 +0000
ROA not before: Thu 23 Mar 2023 00:00:00 +0000
ROA not after: Sun 26 Mar 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
33:eb:03:a9:36:0f:a3:a0:94:80:2e:8b:6a:cf:51:b5:5a:c6:94:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Mar 23 00:00:00 2023 GMT
Not After : Mar 26 23:59:59 2023 GMT
Subject: serialNumber=880e37b092b7f56473feb30690eb14a924a4cc5fd80202787df39b8152eb2298, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:d0:6b:ca:c2:19:e5:87:13:03:1c:67:69:e1:
dc:f1:f9:9e:ea:34:14:03:42:51:fc:7a:97:72:b7:
2a:7d:e8:de:4a:44:6b:71:ff:1b:9b:6d:3c:f1:df:
d2:9a:d8:69:2b:09:1e:1a:fd:ff:6b:c9:61:75:01:
1c:26:20:2a:83:d8:c5:d8:7d:ae:3f:86:ea:af:49:
38:13:48:1e:14:fd:fc:5e:94:74:81:ee:24:98:0b:
59:5c:0c:a1:86:46:42:72:9b:eb:04:08:57:1b:6a:
5d:28:d0:95:1a:64:6c:41:79:36:18:b5:1a:99:6d:
75:58:d2:c0:31:ef:e5:38:13:05:c0:c8:8f:4a:ff:
5a:34:90:7a:23:56:48:c1:b5:55:59:b2:56:5f:ac:
4e:c1:30:e8:fa:97:9b:ee:78:4e:c1:30:87:06:ab:
54:1b:bf:34:15:3a:c4:ad:cd:d2:36:69:eb:0a:17:
3c:27:26:33:69:71:26:69:54:15:01:41:71:5d:c8:
b6:2c:13:43:b7:04:e6:72:ed:53:e7:e6:1b:f2:c4:
a4:90:dc:45:da:45:86:16:4e:39:7b:54:79:67:a1:
65:9f:b5:96:f1:57:05:84:6d:a0:9f:d0:46:a5:1f:
72:75:7a:d4:f1:b0:16:46:8c:43:a1:68:95:ec:90:
fe:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:D5:8F:90:89:1D:68:E3:46:C4:FD:BD:09:DA:5C:D9:40:99:70:D4
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/122e71e7-261d-4d5d-9e8c-3bedac8284a5.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
1f:f1:91:8b:89:02:18:73:85:09:05:62:8f:1b:be:39:8c:60:
8a:87:85:95:56:54:ee:a1:46:b3:e8:31:8b:79:0f:d7:23:2e:
93:13:82:5f:bc:73:bd:7b:0c:30:cf:10:20:24:3c:0e:97:bd:
ca:61:b7:53:a0:39:4c:39:39:8b:90:9e:18:3b:a0:a3:7d:49:
2d:8f:66:ee:4e:1b:a1:a5:2f:c2:08:f9:0a:47:b9:f2:e6:21:
8c:41:1c:8e:77:f9:bf:57:36:76:ef:89:11:3b:23:d0:da:1e:
0a:04:24:9e:54:c1:b4:3c:86:21:dc:72:f5:99:65:09:fd:06:
27:6a:25:aa:b7:ba:0a:89:23:4f:e2:28:5f:25:b1:f3:43:ff:
93:13:8e:13:c3:5e:89:9b:1a:73:ef:37:cf:8e:7b:e5:d5:c0:
5b:c2:43:1b:81:dd:aa:67:d8:5b:74:9a:a7:38:fc:e5:23:fd:
0c:68:a9:37:b6:cb:f8:04:50:bd:1f:d9:81:f2:80:49:6b:43:
0c:68:03:af:ef:17:da:2b:38:dd:58:f5:85:96:56:30:b4:dd:
95:54:b9:47:34:35:dd:c8:68:17:18:10:ce:98:4e:34:1d:49:
9d:10:4d:45:9c:bf:51:7b:3b:26:b4:81:14:55:1d:e9:ca:26:
79:af:11:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:32 2023 by rpki-client on console-fra.rpki-client.org