Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/1731715a-b871-45e2-9b94-2eed89aea564.roa
File: 1731715a-b871-45e2-9b94-2eed89aea564.roa (raw, json)
Hash identifier: d2oBP08zkYoPrmUh5NbX8bNnu3ru4FnVWdy79Dhunxk=
Subject key identifier: AF:38:09:75:AD:07:0D:8D:D3:A3:80:C7:39:CA:6F:6B:9A:45:9C:5B
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 45F097348AC8F59172B83ACB5FA534F689787EE9
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/1731715a-b871-45e2-9b94-2eed89aea564.roa
Signing time: Sat 11 Feb 2023 00:00:00 +0000
ROA not before: Sat 11 Feb 2023 00:00:00 +0000
ROA not after: Tue 14 Feb 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
45:f0:97:34:8a:c8:f5:91:72:b8:3a:cb:5f:a5:34:f6:89:78:7e:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Feb 11 00:00:00 2023 GMT
Not After : Feb 14 23:59:59 2023 GMT
Subject: serialNumber=6086c71d484aea6ec85f9d6bb673647a41e61ba043bd13ae0547ba6ec496c621, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:45:6d:e9:b1:9d:aa:4f:8c:b6:a0:45:53:16:
77:45:47:e7:5b:b1:cf:6b:16:ba:48:92:ca:0a:4e:
09:06:35:57:56:83:a2:2a:91:1e:55:4b:ab:80:03:
9d:af:42:6d:93:83:7c:55:f9:65:dc:64:2b:fb:b6:
60:e4:2f:99:54:6f:7d:76:7d:b4:fc:71:e4:63:e7:
51:1d:81:93:4b:62:07:fc:83:08:d5:34:45:96:f2:
35:72:d7:89:a8:36:34:93:61:88:2a:86:c8:6d:64:
35:8a:ac:09:7d:a5:bf:08:26:c0:d0:bd:c2:d5:17:
36:1d:e7:dd:15:d2:8f:ba:b9:4c:bd:90:9d:87:34:
a5:93:cc:53:7d:87:5e:06:39:23:b1:e8:8a:1a:3e:
2b:ad:03:12:b9:a5:31:7d:8a:19:67:18:65:c9:e8:
66:c3:79:3f:0e:e7:a2:86:dd:d5:6b:b0:d6:14:a1:
4e:bb:e1:be:8b:a5:76:66:ca:3c:62:d6:7a:09:df:
f8:79:39:4c:bb:a4:9d:08:e7:8e:4a:49:a4:9b:bd:
df:4b:43:bc:42:88:1d:7d:c6:2a:5e:2d:c1:f7:07:
97:b8:42:13:38:e4:bc:bd:86:6b:79:b0:dc:d8:ed:
22:f3:5d:f5:15:58:8a:d6:ad:1d:1f:c0:21:b8:e1:
75:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:38:09:75:AD:07:0D:8D:D3:A3:80:C7:39:CA:6F:6B:9A:45:9C:5B
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/1731715a-b871-45e2-9b94-2eed89aea564.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
08:45:07:b5:b0:90:09:75:56:48:a4:d4:99:d1:51:bb:47:8b:
be:10:12:f9:aa:9f:ef:32:f4:6e:b2:ee:22:99:13:67:89:03:
f6:fe:0e:f3:d5:91:f8:17:6d:87:fe:a2:89:c4:f8:38:c6:dc:
ab:b7:51:54:2c:7f:6f:85:a8:bf:97:4a:35:b8:7a:58:ce:36:
07:ec:4e:bf:3a:c3:18:98:43:fb:67:e5:d2:d5:b5:30:65:af:
64:c2:4f:2d:b8:87:04:e7:b7:4f:b6:20:09:3c:81:58:67:5f:
9c:2d:eb:44:28:61:3c:dc:1a:c1:ef:c6:f9:79:20:56:9c:16:
71:40:47:82:35:1a:b4:bc:fd:b1:6f:eb:d5:64:d0:0c:5f:72:
0c:5b:91:bb:1e:28:14:dc:e3:56:68:53:86:60:65:c9:89:c6:
6c:17:4e:8a:70:fe:07:00:c7:5e:07:56:ba:e2:cd:fc:24:e7:
77:0f:e0:3c:dd:50:9c:fd:f9:c6:f0:da:c4:06:48:d1:0f:02:
d8:2a:a7:8c:3d:f3:64:02:25:3b:16:28:dd:13:75:58:91:63:
1e:3e:70:db:e6:fb:ff:1c:8a:af:f3:9f:81:d6:d1:75:46:68:
47:06:0e:07:cf:e8:e8:f4:78:40:b6:2b:62:68:14:c3:30:66:
e0:22:53:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:32 2023 by rpki-client on console-fra.rpki-client.org