Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/47043414-c078-42f6-97d9-32589d9655b3.roa
File: 47043414-c078-42f6-97d9-32589d9655b3.roa (raw, json)
Hash identifier: NGb0hS4dClykNOmS/sttyNRp3D2dPHb+RHcIxh0mVRI=
Subject key identifier: 86:83:69:50:8F:2E:A1:EB:6A:40:B3:44:03:03:D8:7E:86:C1:42:B5
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 03D7682C22B2D7B1C4C031C148D1E71EEF162CAC
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/47043414-c078-42f6-97d9-32589d9655b3.roa
Signing time: Sat 06 Aug 2022 00:00:00 +0000
ROA not before: Sat 06 Aug 2022 00:00:00 +0000
ROA not after: Tue 09 Aug 2022 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
03:d7:68:2c:22:b2:d7:b1:c4:c0:31:c1:48:d1:e7:1e:ef:16:2c:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Aug 6 00:00:00 2022 GMT
Not After : Aug 9 23:59:59 2022 GMT
Subject: serialNumber=0258d69c2a426c24c97aea53a414661a25953423b79b02b2f2b3f80535276aaf, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:f8:4d:c4:6a:9f:be:6e:29:2f:1b:5d:4c:fb:
da:96:a1:b3:88:79:b4:af:76:e7:7b:ff:23:3b:0e:
88:aa:2d:ed:84:bb:51:ee:04:22:c4:77:db:50:20:
9a:41:24:87:98:f5:42:fe:71:27:4c:42:94:38:81:
e5:86:5b:c7:6a:2a:28:b9:c8:4b:73:f8:df:95:6d:
a3:d7:16:46:91:bd:7b:ee:93:73:cb:3c:fb:2f:75:
f9:98:33:9b:9e:ac:2f:da:fc:49:8a:78:f6:73:00:
a3:37:b0:c5:00:e0:17:fd:7d:65:01:66:bf:49:6a:
b1:2b:8f:30:51:fc:50:54:60:41:be:d0:ae:63:8c:
3e:54:5c:16:b9:2d:60:47:7c:26:5b:5a:82:e7:d1:
1f:4e:86:1d:b5:22:64:33:52:e9:05:33:ce:61:dd:
ea:6c:5b:d7:29:40:ac:42:d6:80:1b:67:f0:f4:0b:
d5:26:4e:bf:a9:c5:46:c6:ce:82:6a:e2:cf:e9:d0:
88:21:6d:b0:4b:f2:c1:70:cd:c8:cb:dc:27:c7:f2:
f7:cb:ea:32:79:14:78:04:e4:20:da:09:d8:42:d1:
a5:f4:8a:e0:ef:aa:ae:cb:d0:c3:a0:3e:e6:6e:07:
74:eb:76:74:4b:a1:10:1a:a4:ce:0d:ae:c4:21:70:
36:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:83:69:50:8F:2E:A1:EB:6A:40:B3:44:03:03:D8:7E:86:C1:42:B5
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/47043414-c078-42f6-97d9-32589d9655b3.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
71:c3:d0:d1:d1:87:13:50:27:5d:28:f8:21:ff:a4:56:66:94:
cd:0f:c7:e7:1c:50:5d:b2:a5:31:0e:8e:8d:d7:a2:7e:ab:53:
99:00:e4:46:0d:ba:ca:59:9e:69:02:05:b5:e4:f5:8a:aa:7a:
47:6a:7f:e5:d0:e4:c3:05:bd:98:2d:4f:cb:75:bb:81:a4:38:
86:7d:22:3b:cd:74:1c:fc:4b:2c:79:19:2e:f3:69:57:9c:60:
c8:86:d4:4e:72:96:2e:d1:da:d5:a1:04:f2:2f:18:5e:f2:a1:
2b:f0:c6:31:87:bc:8e:92:25:e3:0c:f6:8d:dc:51:d7:e0:7d:
d4:ba:83:50:de:39:87:de:20:5e:11:f8:19:2d:57:fa:af:8e:
45:41:cd:d8:df:ee:89:b0:47:f3:a2:19:3f:21:fa:72:28:5a:
0a:04:13:63:9a:04:f6:78:73:c1:eb:5e:da:c2:32:de:37:2e:
03:3a:34:98:f6:34:70:05:43:5b:37:e0:aa:5d:c7:29:1a:2e:
86:c5:6a:37:80:ab:a9:0e:88:4b:2b:00:b9:b8:b8:dd:2e:08:
6d:36:cf:8a:8e:74:ab:64:e9:a0:fe:76:80:c2:d7:ef:ae:86:
7e:8b:d8:5a:9d:df:3e:a1:35:be:c6:d3:ef:c9:15:ef:a0:e6:
e5:43:4a:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:36 2023 by rpki-client on console-fra.rpki-client.org