Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/3eb90413-fb30-449f-9f70-80dde62ade63.roa
File: 3eb90413-fb30-449f-9f70-80dde62ade63.roa (raw, json)
Hash identifier: mzkoC6n/NXVEjgdKsfuP1JLZm8C9y78/L3lbIwzkot0=
Subject key identifier: DC:E7:09:49:3B:AE:AD:A7:60:CA:4E:7E:7D:05:05:75:61:B6:C5:2A
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 7BED5ED49A084DE2AF1BF0BF4BDF0122AEB3FDBE
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/3eb90413-fb30-449f-9f70-80dde62ade63.roa
Signing time: Mon 06 Mar 2023 00:00:00 +0000
ROA not before: Mon 06 Mar 2023 00:00:00 +0000
ROA not after: Thu 09 Mar 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7b:ed:5e:d4:9a:08:4d:e2:af:1b:f0:bf:4b:df:01:22:ae:b3:fd:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Mar 6 00:00:00 2023 GMT
Not After : Mar 9 23:59:59 2023 GMT
Subject: serialNumber=0ab8674a59730bb3850b6f7569cd0c5117e9a07856139e68e007046677c14017, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:ae:15:80:a4:9a:ce:cd:1c:d6:76:dd:32:2d:
ab:1e:5a:4e:70:99:dd:0e:70:19:a0:9a:d7:94:a4:
47:40:0d:96:8f:94:9d:23:fe:5d:cb:16:15:b1:f9:
0a:39:3d:31:3d:64:3e:41:0a:e3:cb:cb:d7:54:49:
ec:2d:07:62:d3:c9:5f:92:0e:fe:a5:3d:6b:e9:f5:
2d:b2:c7:6b:a5:7b:48:2d:b1:fc:ea:0d:90:34:f2:
a9:1a:3b:ca:b0:dd:13:a4:a4:12:69:58:49:c8:07:
28:57:1e:a3:7f:2d:0a:dc:e8:7a:7c:9c:49:c2:f4:
16:03:40:5a:de:98:89:f2:b0:f4:a7:0e:d8:25:63:
31:fb:d4:5c:3b:85:bd:2f:3c:3a:2f:38:91:6c:28:
d9:2f:d0:b8:d3:48:2b:c0:3a:b1:e1:ac:0d:3a:cc:
29:50:c9:d4:f6:6e:53:16:28:24:6c:c9:ed:85:dd:
2f:b0:99:79:aa:c1:72:63:c3:29:79:7f:07:bb:dd:
4d:54:eb:e4:a8:d7:1e:1f:67:ca:f0:14:51:b0:cb:
8e:3f:42:e4:dc:47:fb:71:69:3a:71:dd:88:41:be:
49:39:4e:2b:93:e3:89:6e:d8:c5:db:04:b4:18:55:
51:fb:ef:f7:ac:88:9e:05:a5:f2:8a:18:bb:c0:77:
d3:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:E7:09:49:3B:AE:AD:A7:60:CA:4E:7E:7D:05:05:75:61:B6:C5:2A
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/3eb90413-fb30-449f-9f70-80dde62ade63.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
38:b4:85:8f:b8:08:d9:62:dc:a2:4f:4a:95:95:e7:ed:c3:e2:
8c:a6:e0:53:a2:b1:60:d6:1a:69:df:f8:1b:75:a2:20:e4:c5:
06:81:ba:81:44:c9:d1:24:23:cb:6d:15:50:e5:7e:27:f4:03:
13:2a:c7:67:f7:16:3c:64:e4:2d:b9:56:f1:50:bd:6b:60:c5:
b1:af:7a:e1:25:0e:15:6e:5c:61:55:da:92:b2:d5:e1:52:73:
4b:a3:c6:9f:03:b1:77:c5:6f:56:51:72:cb:0a:15:66:a9:27:
16:96:9f:6b:cb:65:eb:bc:8b:83:a9:c9:09:45:dc:5a:f0:fb:
28:c4:ce:d2:65:28:8a:80:d8:e3:91:dd:8c:3b:4e:4c:6b:9f:
58:e5:24:06:18:ff:3b:8c:bc:7b:f1:8d:83:24:4d:04:69:db:
72:7e:60:a7:80:9e:9b:36:3a:7e:98:33:ff:b2:1d:aa:00:e9:
a8:3a:57:72:73:82:be:cc:32:62:15:94:72:ba:8c:34:6a:2f:
e6:65:ea:57:e2:7f:d2:03:55:75:2b:d2:d8:24:3b:e2:e4:a3:
77:1a:d0:f7:08:bb:1f:db:c2:80:30:22:06:44:27:55:60:b6:
70:f8:d8:f0:22:99:94:f0:20:73:e5:69:96:83:ae:53:b8:d0:
5b:74:af:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:40 2023 by rpki-client on console-ams.rpki-client.org