Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/3944907d-03b3-4600-a38a-0a91b7bf5015.roa
File: 3944907d-03b3-4600-a38a-0a91b7bf5015.roa (raw, json)
Hash identifier: RsahsH7cPmr8nt1tgt6Pqfpa5jtkXW54ivkEtzKMqmA=
Subject key identifier: 53:75:69:F9:44:E6:3A:9A:30:2E:52:95:06:CC:AE:CB:FD:39:6B:90
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 7E151454AFA7C1340E55950D6B3BEA67330ABEEE
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/3944907d-03b3-4600-a38a-0a91b7bf5015.roa
Signing time: Wed 31 May 2023 00:00:00 +0000
ROA not before: Wed 31 May 2023 00:00:00 +0000
ROA not after: Sat 03 Jun 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7e:15:14:54:af:a7:c1:34:0e:55:95:0d:6b:3b:ea:67:33:0a:be:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: May 31 00:00:00 2023 GMT
Not After : Jun 3 23:59:59 2023 GMT
Subject: serialNumber=290d7c86f0bcd4a08663ed3706490e53401baece277fadbe15bfa3e593b9202d, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:bf:07:3f:20:18:86:c0:5f:2f:5b:6e:e7:41:
5d:d4:bf:d7:10:cc:46:9a:b5:8c:bb:27:cd:67:65:
5e:d2:0d:07:b1:0d:90:35:af:23:23:c0:66:d4:6f:
94:84:7f:23:fe:cc:77:c0:ef:6d:ac:22:75:63:82:
56:8e:fb:e4:92:ac:64:73:8d:01:c3:bc:e8:7f:b1:
bc:29:8c:d3:b8:91:75:14:89:6a:e6:06:c3:ea:6f:
04:15:60:56:d7:c1:71:e1:28:99:c5:34:72:f7:2b:
60:2a:06:b2:b0:be:6d:ec:3b:92:11:47:d4:ea:57:
5e:44:a4:47:5d:d5:d6:36:9a:0b:cb:b5:d8:aa:ca:
8e:f7:ae:9b:19:82:f8:55:a4:78:c2:7a:b7:47:33:
e0:ea:67:ea:d4:f2:eb:b7:ee:b9:7c:f2:b6:fc:3c:
95:da:0f:60:f2:33:97:fe:fb:da:f0:7e:fa:f1:23:
65:2c:f2:b3:64:c1:ce:88:8f:c6:d2:30:0f:7c:59:
30:fe:f6:7c:eb:d9:13:c6:72:fc:f7:f7:52:b7:2b:
d1:33:9c:67:8c:10:0f:6b:db:fc:60:7a:19:35:a2:
b0:a0:6b:ee:b0:c1:06:4c:c7:fb:0f:dd:76:74:d4:
d8:02:db:58:84:d9:bd:02:d4:01:f1:af:ae:24:a1:
5b:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:75:69:F9:44:E6:3A:9A:30:2E:52:95:06:CC:AE:CB:FD:39:6B:90
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/3944907d-03b3-4600-a38a-0a91b7bf5015.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
80:9d:5b:a1:3a:09:56:ae:26:b4:d5:8e:ae:85:53:3a:aa:a1:
a8:7a:98:15:d0:79:41:93:d1:b2:a2:61:2b:05:96:89:09:ab:
fc:d4:17:77:15:24:a0:0a:60:b6:9f:76:a5:f6:b7:8d:db:05:
a8:0c:8d:f0:8f:7f:18:b6:39:7a:d8:e6:f8:90:71:99:47:e5:
64:36:da:ab:b3:5a:b7:7b:40:e6:36:e6:bd:d4:17:74:37:48:
6d:f0:9a:12:b3:20:99:62:cf:ad:9d:5b:53:bd:38:53:39:45:
cc:ff:93:5b:6d:ff:5a:8f:5c:df:be:60:eb:37:22:a4:30:22:
4f:63:f6:f1:95:57:30:90:9e:ee:11:1b:83:50:fd:20:53:24:
10:3d:29:88:8b:77:51:41:05:d9:c6:50:85:c3:dd:66:69:ed:
c0:c1:01:a3:d8:da:0d:c4:1b:d9:d1:1d:73:7a:eb:25:f2:42:
e7:e7:ce:10:12:7c:e4:db:60:b6:b4:25:b3:04:ea:c0:56:13:
da:8e:b3:53:15:d1:c8:03:d3:07:d8:f3:ec:dc:e1:67:ba:a8:
89:30:fc:cd:24:7f:9a:bc:c0:e3:2f:b6:e8:03:50:0b:44:25:
d6:b7:63:d4:61:00:8d:c2:d1:3e:9d:de:f6:56:29:72:19:36:
dd:ec:41:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:35 2023 by rpki-client on console-fra.rpki-client.org