Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/361e1408-194e-46d4-b55d-306ba639865e.roa
File: 361e1408-194e-46d4-b55d-306ba639865e.roa (raw, json)
Hash identifier: TlMa5EiKNU9bphW6hPuXCaoYIBHlP/6aW7QX/QTA3sY=
Subject key identifier: F4:4F:B7:83:9D:2F:95:1A:15:82:85:05:DE:97:35:38:2D:FA:A8:72
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 2DBB5E9BB91EE09FEDA98054292C731FEC26A087
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/361e1408-194e-46d4-b55d-306ba639865e.roa
Signing time: Tue 13 Sep 2022 00:00:00 +0000
ROA not before: Tue 13 Sep 2022 00:00:00 +0000
ROA not after: Fri 16 Sep 2022 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2d:bb:5e:9b:b9:1e:e0:9f:ed:a9:80:54:29:2c:73:1f:ec:26:a0:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Sep 13 00:00:00 2022 GMT
Not After : Sep 16 23:59:59 2022 GMT
Subject: serialNumber=0095c3eede05dca7c05621f88a12d52cf3fba5b154cf73ec8f990ca30d26a3ae, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:40:d0:36:bd:57:d3:29:61:e0:d2:2c:78:86:
ad:28:46:30:8c:3d:8a:5b:c3:6a:9c:ef:1b:dc:ba:
77:17:41:b9:fc:f6:b9:11:e6:6d:0b:81:5e:d6:42:
40:dd:3d:c4:6d:0f:51:a6:f9:0d:50:1d:bb:57:7b:
94:6e:be:dc:ce:cb:9d:30:92:c4:ea:c7:af:af:03:
5c:60:e3:2e:b1:1d:36:98:f5:9f:38:42:eb:55:ed:
bc:db:02:9e:93:f4:ff:28:21:39:37:f1:49:3e:27:
3b:51:f6:57:81:a7:81:71:9c:da:82:7f:f8:1f:2e:
b5:bc:dc:54:b0:4d:30:fa:4c:27:e3:8b:cf:c3:4e:
3f:64:1a:92:fe:21:61:02:eb:18:ee:cb:0b:06:fd:
18:8b:36:77:f8:60:dd:5a:0f:47:3b:54:2f:be:a6:
5d:ba:4f:e4:ac:78:19:e0:be:ec:ea:f6:38:b2:13:
43:6f:a9:76:fa:b1:7f:a7:b9:f5:b4:dd:d1:7c:04:
64:3e:e5:a2:7e:4c:b2:95:c2:18:a0:5f:2b:71:40:
3d:eb:de:e0:ad:44:90:a6:de:ba:4d:ea:63:15:1e:
43:89:87:62:88:67:2a:f1:c3:96:e3:26:10:77:73:
d0:a5:c7:89:37:b5:62:d6:e0:56:23:5e:52:79:6f:
e3:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:4F:B7:83:9D:2F:95:1A:15:82:85:05:DE:97:35:38:2D:FA:A8:72
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/361e1408-194e-46d4-b55d-306ba639865e.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
6a:3a:40:e4:74:6f:9b:c7:e2:ed:15:38:b5:a7:59:e4:2f:de:
a0:6e:54:fe:62:df:34:fa:5c:9d:e4:5a:9b:d6:02:06:19:83:
22:f1:8a:08:0b:0c:96:b0:4f:19:f8:4d:8f:1b:0f:b2:47:b7:
a9:89:9e:89:0c:90:5c:0b:61:58:c5:f9:83:27:82:95:4a:1f:
a7:c3:f7:d2:88:51:2d:4d:26:7e:09:6a:bc:39:e4:50:fd:cc:
da:84:07:68:ff:ac:25:4d:24:e6:32:ef:a4:57:bc:b0:e4:b5:
3f:e6:6a:65:50:ad:af:4b:4d:b2:c8:ff:06:2c:bb:76:d1:5d:
6a:30:13:7c:b9:9d:00:e4:74:5d:de:1e:59:42:ef:fb:bc:3f:
0c:3c:0c:82:f2:8c:4f:ab:d7:3b:07:b6:d2:9a:f9:6d:7e:8d:
5f:fa:1c:60:f5:57:ea:4f:33:a4:b0:16:6c:57:50:7d:bd:da:
f7:7f:c5:32:7e:be:55:df:4b:04:2e:32:68:48:72:ea:d6:60:
eb:df:ae:25:50:d2:96:18:8c:fa:c0:c4:1d:ea:e6:1a:95:74:
11:a3:ae:2e:2a:dd:1b:be:47:f0:74:6e:46:42:0e:9c:03:a9:
19:f8:dc:3e:41:52:75:7a:5c:87:72:63:e4:51:3d:a7:85:8b:
87:86:44:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:34 2023 by rpki-client on console-fra.rpki-client.org