Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/30c4ce68-2d7f-4ced-aa8c-6a39aa2e9429.roa
File: 30c4ce68-2d7f-4ced-aa8c-6a39aa2e9429.roa (raw, json)
Hash identifier: NZJ8PrmyijGmn83eDgzOqkor8xE5A0BpIulnmhheL3I=
Subject key identifier: 02:25:5A:1C:98:6D:A5:CE:27:42:34:2F:2F:5F:2A:7C:40:1C:76:5B
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 3174E8838C392F7EA007A5790D6E703B5CC1D691
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/30c4ce68-2d7f-4ced-aa8c-6a39aa2e9429.roa
Signing time: Sun 05 Mar 2023 00:00:00 +0000
ROA not before: Sun 05 Mar 2023 00:00:00 +0000
ROA not after: Wed 08 Mar 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
31:74:e8:83:8c:39:2f:7e:a0:07:a5:79:0d:6e:70:3b:5c:c1:d6:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Mar 5 00:00:00 2023 GMT
Not After : Mar 8 23:59:59 2023 GMT
Subject: serialNumber=9a21d07e069762f1643053c3a1ab927768f53dc1038701db85a2d547a672efd3, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:68:b9:87:e1:aa:53:94:9e:d1:62:b8:7f:01:
db:dc:b6:4a:47:2d:9e:48:d6:ca:7f:ab:e1:44:c6:
4d:17:b2:8d:11:5e:e5:1c:6c:cf:ba:f8:2d:99:e3:
c3:e5:31:81:bd:9f:d0:ec:22:b1:a4:4e:4c:d4:fe:
85:39:22:0c:45:ad:95:88:5e:ee:fb:67:de:f0:54:
1e:6e:56:25:de:29:70:b1:ff:6e:bb:c5:71:4f:64:
55:f8:23:86:34:84:7f:a1:7d:26:ba:09:8b:75:cb:
5d:48:8d:6c:77:8a:9b:00:1e:8e:bd:1a:bc:f2:22:
63:18:54:53:db:bd:76:c8:9a:2d:a8:87:ae:d4:78:
f3:cb:df:43:8e:9b:4b:46:41:81:6e:c6:54:00:b9:
d7:f8:d8:98:49:6d:a1:97:a2:44:5c:bb:a5:10:f4:
93:c8:dc:70:55:df:9f:7d:b8:ce:08:9c:aa:b5:af:
4d:f5:b5:7a:4d:60:d6:b6:bd:bd:bf:20:8c:f5:c6:
3e:b4:8b:2e:b6:eb:6f:cc:dd:b4:d3:14:9b:97:46:
67:b2:42:0a:e4:57:e1:4f:0e:98:46:6a:c2:a3:e5:
bd:ec:3f:b2:49:c5:0f:df:b2:69:dd:65:d0:f7:a9:
47:64:b4:6b:c7:e6:1a:26:8a:15:b4:81:76:f5:a6:
d2:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:25:5A:1C:98:6D:A5:CE:27:42:34:2F:2F:5F:2A:7C:40:1C:76:5B
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/30c4ce68-2d7f-4ced-aa8c-6a39aa2e9429.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
02:da:78:d8:92:5a:a0:6a:23:ae:52:91:05:89:18:b0:43:e8:
50:18:ab:55:ce:b8:b9:ef:ae:88:eb:11:2c:06:57:f2:93:8d:
10:32:0f:36:21:d6:c0:5b:f2:c2:d4:5a:ac:11:4d:79:3a:aa:
b1:79:ae:89:77:5b:df:34:d2:00:f1:5c:db:ae:0a:3e:24:c9:
81:85:61:b7:ea:6d:78:6b:cb:9d:8c:85:fb:8d:8b:34:fb:8e:
a1:61:c7:70:5f:fb:e7:c4:26:5b:2a:4e:fd:e0:9c:25:f2:98:
36:58:33:10:5f:e5:21:de:02:58:10:10:66:20:a1:ac:23:d2:
fb:af:a6:bd:27:fc:c1:ca:05:fb:99:f8:c6:5e:9f:f4:f7:e1:
c0:1b:ad:b8:c0:96:17:5c:fe:ff:ad:94:09:18:b3:8e:ba:33:
44:b1:58:9c:b4:3a:9b:84:e9:3e:6a:0d:ea:55:2c:e1:02:f1:
93:18:0b:73:14:33:f5:ea:e0:b1:af:6b:1a:d8:c6:2e:23:16:
60:70:a8:44:ee:3d:0e:f7:4f:3b:c1:7f:b2:70:96:1b:07:7c:
32:35:e0:8a:0b:03:17:91:7b:1c:c5:61:bd:09:8c:ae:13:d1:
31:21:60:65:ca:bb:bd:12:04:37:65:15:d0:48:bc:c7:ad:e1:
08:23:d6:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:34 2023 by rpki-client on console-fra.rpki-client.org