Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/360aff1a-4132-4a10-b881-160e62f3e1c5.roa
File: 360aff1a-4132-4a10-b881-160e62f3e1c5.roa (raw, json)
Hash identifier: syMrnPGZVY6h4uaSlHeMb7nufq26+ugCNJsWinMRBXA=
Subject key identifier: 5A:53:9F:F3:F3:28:7C:0D:CC:7C:98:A6:41:2D:FC:96:CE:02:6B:FD
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 594027746AB9708FAEC7439521776F9411C1BDB8
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/360aff1a-4132-4a10-b881-160e62f3e1c5.roa
Signing time: Wed 31 May 2023 00:00:00 +0000
ROA not before: Wed 31 May 2023 00:00:00 +0000
ROA not after: Sat 03 Jun 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
59:40:27:74:6a:b9:70:8f:ae:c7:43:95:21:77:6f:94:11:c1:bd:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: May 31 00:00:00 2023 GMT
Not After : Jun 3 23:59:59 2023 GMT
Subject: serialNumber=cafb72537fd57a078ea744659a3c91621c8740a8c01249e23a819f2eff857bd2, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:fa:70:ef:fb:a7:8e:3d:03:d3:5c:99:c5:94:
bc:f0:63:ef:f6:22:63:62:f6:c1:b7:80:10:bf:63:
ee:42:bf:2d:b7:5c:8a:e2:5e:3a:5f:70:92:11:b0:
4d:e5:84:86:53:2a:b7:bd:ca:82:28:23:b8:c9:36:
84:cc:5f:3b:e5:25:77:5b:3a:8e:7c:81:49:d1:bf:
c0:29:db:4a:e1:ce:78:7a:91:6c:55:c7:72:50:8c:
8d:fd:05:70:1a:67:6e:7d:c3:41:dc:3a:88:d2:65:
54:7a:06:80:b6:61:2b:4a:14:2b:21:13:46:e7:f4:
6d:da:da:4e:6a:b4:61:e6:45:b7:0a:58:c1:e5:f5:
78:a9:74:4f:73:6c:07:36:5e:ba:03:b1:83:f9:c0:
49:f6:eb:a7:c7:8e:72:16:a8:7b:26:47:a2:bf:c0:
e9:a2:4c:f2:7b:26:bd:2e:7b:1c:b6:66:12:f9:da:
1e:77:5a:65:fe:19:c1:16:c1:c7:bc:4d:d2:d1:b5:
2b:66:32:a2:fd:01:fc:95:ce:c9:75:65:20:be:7f:
e7:1c:a3:77:00:a8:92:08:5f:a3:b2:6c:be:b5:d9:
b7:f1:9b:85:11:ec:ca:20:7a:a1:f5:46:03:09:28:
ca:c2:3a:4a:7d:72:9b:85:2c:20:b4:81:d5:67:0d:
01:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:53:9F:F3:F3:28:7C:0D:CC:7C:98:A6:41:2D:FC:96:CE:02:6B:FD
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/360aff1a-4132-4a10-b881-160e62f3e1c5.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
34:9b:47:92:57:e5:5f:ae:76:5c:c9:0c:e3:81:e8:5d:bd:09:
24:6f:1e:36:4e:de:2c:5b:63:c1:72:46:5c:da:6a:e1:ff:27:
6f:65:29:7c:d3:41:8c:e1:01:02:a2:81:00:8e:50:e3:a3:66:
8d:ff:aa:8f:7f:26:1c:91:4b:87:df:41:94:dc:22:e1:f7:4c:
a9:87:55:4d:f3:ea:e3:51:62:b2:5c:93:75:42:53:95:34:49:
91:ba:6c:8f:37:b7:32:65:c1:b7:f6:19:d3:64:61:99:4f:35:
e2:38:4f:9a:c1:a0:81:fe:69:77:35:00:28:48:e9:71:d2:c8:
4d:a0:05:95:d7:7a:3a:31:46:22:1f:14:be:6a:0f:4e:2c:d1:
c3:17:0c:71:b5:6c:3e:b2:11:a8:84:5f:1d:67:8d:0d:16:c8:
aa:61:49:66:3a:06:f2:8a:55:e2:98:27:00:db:7f:3a:e0:5a:
2a:f4:2d:53:b3:76:1c:9b:65:9e:1a:72:d5:cf:01:48:ff:d8:
05:51:d9:43:ab:88:f6:68:e3:ca:38:89:f3:38:97:c2:d1:59:
3d:0a:87:a3:51:13:93:8e:65:33:29:36:1a:aa:1d:57:49:2b:
0e:c1:34:30:a3:9d:21:bd:56:f7:b0:34:ee:59:b6:d3:3d:66:
70:90:d4:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:34 2023 by rpki-client on console-fra.rpki-client.org