Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4251d792-8699-4a0e-856b-c9d98686eadf.roa
File: 4251d792-8699-4a0e-856b-c9d98686eadf.roa (raw, json)
Hash identifier: XRDLvtg3RsuXr0pEN9vpKfDrOkIqvLL3PmlpPEV0JDA=
Subject key identifier: DE:83:97:E9:DC:FE:1B:16:3F:7B:4E:79:F2:96:18:35:0B:2E:F8:76
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 41BC361BC1385D27AFC012590BBA1F8E2DA5270B
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4251d792-8699-4a0e-856b-c9d98686eadf.roa
Signing time: Sat 03 Dec 2022 00:00:00 +0000
ROA not before: Sat 03 Dec 2022 00:00:00 +0000
ROA not after: Tue 06 Dec 2022 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
41:bc:36:1b:c1:38:5d:27:af:c0:12:59:0b:ba:1f:8e:2d:a5:27:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Dec 3 00:00:00 2022 GMT
Not After : Dec 6 23:59:59 2022 GMT
Subject: serialNumber=e67f29ec65bb7f5451f2c72d4d60aaf02530d7e5c103e088643c4a4cfe49ed2f, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:10:f0:2a:a6:18:b2:65:09:b9:69:9e:70:f6:
55:d2:73:19:18:63:64:e3:0e:32:6f:78:5c:e8:db:
35:86:53:2a:e8:b8:b8:7e:4f:22:38:3c:d6:cf:41:
01:91:cc:ef:71:98:c8:6c:d0:7e:63:1b:40:c2:76:
8f:69:4e:b2:09:e8:e3:1f:13:9a:41:70:09:dd:d7:
62:2e:f2:f3:44:fb:7f:7c:21:00:34:b7:f1:cf:b3:
4d:c4:c9:12:e8:81:76:48:0f:a8:58:f1:f0:83:c5:
bc:fc:95:ea:c7:87:af:8b:67:cf:19:a8:85:c8:eb:
28:6a:82:5f:3c:b5:c0:32:7d:f0:c3:6e:26:c8:4f:
cb:4b:1a:bc:bf:33:4b:39:10:8e:56:8b:1e:d7:8d:
a4:c6:9f:46:59:26:7a:22:89:63:03:6b:d8:25:67:
74:a6:c6:0c:e9:24:0c:51:f2:b8:81:f9:b2:1a:19:
db:33:af:fa:1a:aa:7a:f9:70:31:e7:c7:52:72:6d:
7f:f8:4c:4f:4d:53:a0:fa:02:3c:5f:b9:c6:3c:04:
43:a1:3d:92:bd:14:b2:68:0a:a2:b4:9c:53:d0:b2:
b1:b8:3f:46:7d:c2:66:22:9b:bb:f4:7d:70:e6:3f:
64:fe:ad:0d:9a:cb:7a:cf:e1:b0:0c:fb:56:8b:3c:
1e:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:83:97:E9:DC:FE:1B:16:3F:7B:4E:79:F2:96:18:35:0B:2E:F8:76
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4251d792-8699-4a0e-856b-c9d98686eadf.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
76:4a:b0:9c:a1:42:09:ab:dc:7f:73:92:5b:fa:fc:c4:2b:92:
fb:be:31:a0:03:f8:fd:0c:2b:4f:58:4e:1d:aa:14:90:3d:17:
4a:ea:8d:d4:97:67:9a:08:ca:51:dc:92:e0:82:3c:ab:47:63:
5c:b8:78:96:bb:51:78:5f:fa:84:50:28:ba:25:3d:1b:85:ef:
06:38:02:a2:07:c0:a3:6c:0e:00:a0:ba:08:c6:78:09:bb:a0:
03:67:f7:9a:6e:a2:db:47:f6:a5:e4:25:dc:fc:f8:54:a0:56:
c5:8c:a9:41:26:4f:59:4f:0c:89:3f:8d:b0:4a:e0:9e:dc:7d:
11:44:04:05:fe:d8:77:21:c9:d1:33:73:0f:ce:0d:ac:ac:98:
a9:ba:35:bf:8e:54:69:44:45:41:b7:58:20:9e:71:bd:ef:89:
a6:04:8c:73:be:86:9a:2d:32:a4:47:ce:4b:4c:88:c9:b0:3f:
84:de:4d:1c:6b:ee:01:a9:66:6a:44:4f:09:92:5c:a9:d6:c6:
c5:b8:98:28:05:71:41:fc:be:cc:26:72:1c:8f:2f:ab:42:94:
2c:28:49:53:29:39:d3:fa:da:02:8c:9d:2d:33:6a:e4:4e:78:
70:6f:5f:ad:9f:fc:10:76:e6:16:ea:6f:a5:12:3c:b2:9a:99:
1b:b9:71:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:35 2023 by rpki-client on console-fra.rpki-client.org