Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/2acab92a-0e22-4df3-86ad-b3a0cc68069d.roa
File: 2acab92a-0e22-4df3-86ad-b3a0cc68069d.roa (raw, json)
Hash identifier: O+ElebVTbdeMh8kZALgp8zEfGIlBV6LnN1xT3jI4SVw=
Subject key identifier: 18:E3:56:F7:45:5D:2E:B0:81:5C:67:E0:CF:9A:50:BA:95:D7:28:D1
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 4D1C1BB08328182D488D73DDDA4CCD158F8A7E42
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/2acab92a-0e22-4df3-86ad-b3a0cc68069d.roa
Signing time: Sat 28 Jan 2023 00:00:00 +0000
ROA not before: Sat 28 Jan 2023 00:00:00 +0000
ROA not after: Tue 31 Jan 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4d:1c:1b:b0:83:28:18:2d:48:8d:73:dd:da:4c:cd:15:8f:8a:7e:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Jan 28 00:00:00 2023 GMT
Not After : Jan 31 23:59:59 2023 GMT
Subject: serialNumber=fc0f48c561ebf891bfc64c2426a4e2e17433d76eb312e6ab6fc47444d6eb74bb, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:5b:ff:44:88:73:8a:63:2a:e2:72:af:1c:8c:
fd:39:c4:ae:62:3f:c5:8c:7d:23:e6:66:50:25:8b:
01:0b:3e:d9:6d:17:f1:fb:fd:66:18:33:9e:98:d3:
86:c1:0d:11:bf:d1:e7:50:b1:3b:24:0a:e5:d3:df:
40:35:02:c4:72:ac:3c:d3:83:80:f2:89:93:f9:de:
6a:5d:e9:4b:48:03:e0:ff:bc:d1:f2:02:d1:0c:eb:
e7:56:47:4c:db:52:62:41:d1:38:30:eb:0c:c6:9c:
c5:97:ed:eb:ba:53:bf:62:b5:d6:2b:50:cc:52:85:
45:10:47:47:7e:59:f5:9e:9d:1f:f4:52:b6:ed:98:
2c:da:63:70:f9:3a:89:af:4c:b0:79:95:c6:0d:cd:
fd:2a:a1:93:fa:b1:bd:a8:c9:3a:c6:23:c9:5d:e7:
4b:97:9e:23:28:79:6f:b3:61:49:77:58:3c:57:d6:
f0:67:fa:c5:9f:4f:fb:d4:08:5f:0e:3b:1a:2f:68:
00:85:06:3e:10:9c:b9:6c:47:b6:e4:28:49:3b:92:
6c:44:01:8d:ba:20:cf:22:f9:3c:08:6b:36:ab:ca:
d3:3f:42:ec:e0:d5:33:10:c2:be:47:34:48:61:8f:
21:4b:66:aa:93:d8:e6:73:27:df:ff:30:9f:80:bd:
30:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:E3:56:F7:45:5D:2E:B0:81:5C:67:E0:CF:9A:50:BA:95:D7:28:D1
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/2acab92a-0e22-4df3-86ad-b3a0cc68069d.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
67:8c:1a:b9:0a:ea:41:51:32:3f:28:4f:c3:dd:9e:be:32:8d:
06:60:47:0d:f3:e3:38:dd:8c:09:29:8b:9e:f8:e8:41:77:e4:
ad:19:57:51:ea:06:67:6a:f6:2d:b3:ec:e9:47:20:a0:83:19:
be:7d:ee:5d:2b:76:23:d4:a7:94:3b:02:12:e7:a1:b0:46:33:
be:f0:54:42:9d:59:15:57:b6:a7:24:38:68:f8:9a:36:f1:28:
53:90:c2:bb:fb:c6:58:90:19:40:a5:71:e0:82:f5:87:63:f3:
2c:b9:4d:ab:dc:2c:16:e2:77:f4:bc:62:0d:97:46:f8:78:2d:
ad:43:29:fe:09:d4:e7:a7:fa:e0:7c:30:26:90:2b:5e:a4:c5:
44:16:19:f5:21:fa:e9:35:e3:df:62:eb:d3:9e:7e:b5:89:09:
6f:e0:2f:00:f2:46:cf:f6:6e:c3:54:9e:ae:c5:cc:be:88:34:
e9:aa:9f:90:3f:5e:ce:d2:50:7b:d6:29:1e:10:29:b0:d6:c4:
ce:81:97:15:0d:04:6f:f8:ea:3c:09:d5:36:1c:71:48:ad:92:
6a:28:16:03:80:76:b5:d0:17:e7:ef:80:3b:a2:e5:89:2c:bf:
8f:ea:6b:27:a7:d8:f5:82:c0:5c:43:0a:89:10:76:04:81:c8:
79:dc:65:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:34 2023 by rpki-client on console-fra.rpki-client.org