Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/19192501-abb6-44a1-aa31-e379eff4c6cc.roa
File: 19192501-abb6-44a1-aa31-e379eff4c6cc.roa (raw, json)
Hash identifier: rdSN3425pobwxEkjYrt6Nwaz29iv52Nk24m20YalVXA=
Subject key identifier: 69:9F:37:2A:D0:6C:59:C9:F6:1C:B9:DF:92:E5:9A:C2:88:40:A0:35
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 3ACAB21B6B5698F341B47E48B75BFD2D9241E2C9
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/19192501-abb6-44a1-aa31-e379eff4c6cc.roa
Signing time: Mon 06 Mar 2023 00:00:00 +0000
ROA not before: Mon 06 Mar 2023 00:00:00 +0000
ROA not after: Thu 09 Mar 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3a:ca:b2:1b:6b:56:98:f3:41:b4:7e:48:b7:5b:fd:2d:92:41:e2:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Mar 6 00:00:00 2023 GMT
Not After : Mar 9 23:59:59 2023 GMT
Subject: serialNumber=fc643e6e08b9d57881e94b257018d9bff1eb1045160a92b34cf9573391a01b27, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:3f:41:a8:77:b7:11:d6:09:4a:1f:7d:db:96:
9f:15:8d:57:3a:4e:af:93:1c:19:0b:49:c7:b0:df:
74:ed:6c:dc:bf:ec:c3:09:9d:30:6a:e9:d5:46:19:
b2:cf:11:7c:ee:59:ae:85:ea:b9:fa:f5:af:67:b1:
71:6c:8b:57:43:fb:92:2d:76:cc:6c:4b:46:9a:6a:
1e:4d:48:ce:0d:fa:0c:5b:ed:08:de:75:e2:60:03:
c8:0f:5c:a0:75:48:59:12:55:99:70:03:77:71:31:
6f:f8:84:98:33:cf:02:78:6d:0f:52:5d:73:90:75:
28:5c:b0:60:64:b9:4c:52:7e:b8:f8:51:70:e8:59:
28:04:04:65:0f:50:10:87:3e:3c:e1:9a:1b:6f:af:
44:48:d3:71:7d:1a:7b:ee:fa:a9:5e:eb:0c:bc:3d:
76:fe:ed:3c:ac:d1:20:c7:45:1b:d4:8f:6d:dd:48:
93:38:42:13:ec:a1:cf:1e:83:de:ae:6d:d2:59:06:
90:3d:b0:c4:83:2a:15:65:5d:d9:87:69:a4:f9:75:
93:e3:df:f4:34:69:9e:80:49:e8:08:d7:f7:d4:45:
49:ec:ea:78:e2:8d:d8:36:a5:96:c8:36:c7:88:82:
91:91:f2:ee:08:ef:f4:35:d7:b7:6e:41:9c:3f:a0:
f9:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:9F:37:2A:D0:6C:59:C9:F6:1C:B9:DF:92:E5:9A:C2:88:40:A0:35
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/19192501-abb6-44a1-aa31-e379eff4c6cc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
42:a9:54:42:1c:75:bc:d2:60:19:6f:04:b8:d4:9f:06:c7:bc:
34:2e:5d:a9:27:db:d7:2a:44:5d:06:70:a1:51:39:22:94:9e:
da:a6:db:4d:f0:f6:ef:1f:ea:18:24:48:3e:1d:3e:e9:d2:77:
c3:85:eb:36:46:4b:d3:cd:3c:42:6b:64:a7:58:e6:97:a6:61:
57:75:80:ca:d9:83:cf:78:bc:4f:02:6f:ff:75:bc:ef:51:4b:
a1:44:61:d8:2b:5e:0c:cb:f8:c3:22:93:74:8c:47:4d:de:02:
2b:be:72:9d:9f:c8:0d:cc:b1:81:72:11:2b:60:7a:8c:4e:5d:
a0:12:58:55:8b:0b:aa:d1:d6:a5:d5:4a:7e:2e:65:49:86:df:
64:0d:1c:08:6d:e2:b4:a6:ff:a1:c0:f6:15:32:7c:b2:f6:4c:
da:f3:e0:48:12:1f:c9:91:d7:f5:83:12:38:a3:13:35:10:7c:
3c:43:c9:f9:95:e5:e4:ab:4a:f0:fd:4e:e4:75:45:01:c7:da:
9b:d2:c5:38:b1:8e:b3:10:1d:f6:b4:81:aa:4e:da:11:76:e8:
ca:eb:e7:83:22:cf:11:f7:f7:d1:08:f1:c8:c9:82:10:ad:33:
4a:f6:d0:88:18:65:cc:ea:0f:44:3a:ba:e2:a5:16:2f:7c:87:
26:77:34:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:32 2023 by rpki-client on console-fra.rpki-client.org