Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/18d2c936-eccf-4dde-bcfe-07435537c11b.roa
File: 18d2c936-eccf-4dde-bcfe-07435537c11b.roa (raw, json)
Hash identifier: Q3GFsShGnQ/5pViqIio/BcXdRsKrkOcxf/kFBBf+ZIM=
Subject key identifier: 7E:18:72:B5:F3:99:1A:E1:1A:18:3B:29:6F:F4:CF:7F:46:B4:0F:4F
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 31883D4E504BCD7B6B5F711CC21F883DB45E533E
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/18d2c936-eccf-4dde-bcfe-07435537c11b.roa
Signing time: Sun 07 May 2023 00:00:00 +0000
ROA not before: Sun 07 May 2023 00:00:00 +0000
ROA not after: Wed 10 May 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
31:88:3d:4e:50:4b:cd:7b:6b:5f:71:1c:c2:1f:88:3d:b4:5e:53:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: May 7 00:00:00 2023 GMT
Not After : May 10 23:59:59 2023 GMT
Subject: serialNumber=9387f7663f3a446e95e0cd9f353a886395689d299a262db2c0312c1ced7ea62d, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:20:57:2d:e9:cd:04:9d:36:d7:14:9a:e2:ac:
65:c4:b9:ee:b0:39:df:25:2f:80:5e:19:c4:6a:2f:
c9:e3:47:27:e9:08:21:16:04:04:af:c0:eb:2c:c8:
60:05:b3:51:23:85:99:be:9b:08:37:db:d9:90:cf:
c3:71:8d:66:ce:26:f2:58:4c:72:03:8a:25:ec:4e:
81:cc:db:f1:57:76:c6:47:5a:4e:bb:9a:f3:8f:ad:
04:42:31:4d:13:e3:29:bd:4e:50:5b:5c:78:5b:2c:
fb:cc:e9:16:24:1f:19:02:a5:7c:92:51:4f:b8:f6:
a9:cb:1f:83:a2:c7:0c:93:f6:7d:91:04:7c:81:2b:
f6:9d:4b:c3:66:2f:cc:e3:9e:76:f4:ab:99:c6:fd:
52:c9:27:16:32:28:56:00:8a:fa:c0:7d:d8:6a:8e:
c5:13:99:79:66:2d:0e:26:c5:bf:87:06:df:72:57:
2a:9b:0a:9e:b3:99:0c:5f:22:81:49:9c:9c:ec:73:
0b:ad:11:32:b9:4e:c0:c7:95:e1:74:cd:08:65:ce:
4c:f7:42:73:0f:69:a1:90:63:6d:0a:96:7a:25:7e:
2f:84:14:0b:91:54:b0:62:7f:82:58:fa:ed:5a:01:
6b:8e:90:66:ea:d2:db:cc:92:c9:4b:a0:04:d0:57:
b7:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:18:72:B5:F3:99:1A:E1:1A:18:3B:29:6F:F4:CF:7F:46:B4:0F:4F
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/18d2c936-eccf-4dde-bcfe-07435537c11b.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
90:ce:c1:60:cd:12:0a:f4:8a:bc:3d:59:5a:51:62:09:2b:63:
ba:96:23:d9:c9:44:67:88:9d:33:3b:31:75:86:ab:7e:90:ec:
fc:42:a0:57:e8:1e:e8:69:c8:51:37:09:69:65:39:49:5a:38:
5a:87:8a:02:8b:5c:15:a5:ec:32:0f:2a:66:d7:87:83:d8:41:
50:73:c0:e7:8e:86:55:8a:bd:11:02:81:de:15:28:13:59:86:
04:8e:37:92:c9:85:17:76:46:cb:cd:f4:9f:f6:69:49:5c:4f:
8a:8c:ee:a8:7a:cc:a6:12:7b:1f:8c:de:0f:1f:89:03:30:2d:
f8:bb:08:be:b7:f8:a7:aa:06:10:a5:74:72:13:09:07:0a:99:
22:81:a1:c0:09:6d:b7:52:5a:86:ea:b6:9d:7c:87:9b:ba:ca:
d7:34:a9:6b:7f:ed:48:3e:e6:73:38:aa:78:3b:c5:b8:ac:e5:
75:a4:e8:c9:ca:ad:d0:4d:9f:cd:7d:c8:3e:c7:e6:8c:9d:cd:
b9:42:1f:ae:de:fa:0f:27:54:d5:f0:6a:7a:c9:a3:cd:f9:56:
b6:af:1c:f3:c4:a0:36:f6:51:1b:f4:14:45:b3:f3:32:9a:86:
6a:06:a5:39:ee:3e:c0:22:2c:79:16:69:af:db:44:36:97:1a:
33:5f:77:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:32 2023 by rpki-client on console-fra.rpki-client.org