Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4c19107d-af4c-409a-ae84-85056f62bad7.roa
File: 4c19107d-af4c-409a-ae84-85056f62bad7.roa (raw, json)
Hash identifier: /SppLRfqkp93TZUn/GzYCGY+PTEHLJqM1ZA4hdzcXR0=
Subject key identifier: 19:4A:24:F5:D8:2E:5D:A0:71:65:9B:4E:3C:ED:F1:14:E9:4B:24:51
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 5FA6AA5625503A0B418D77D3693463F4AA7442E2
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4c19107d-af4c-409a-ae84-85056f62bad7.roa
Signing time: Wed 29 Mar 2023 00:00:00 +0000
ROA not before: Wed 29 Mar 2023 00:00:00 +0000
ROA not after: Sat 01 Apr 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5f:a6:aa:56:25:50:3a:0b:41:8d:77:d3:69:34:63:f4:aa:74:42:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Mar 29 00:00:00 2023 GMT
Not After : Apr 1 23:59:59 2023 GMT
Subject: serialNumber=dd318ab0b65d60fb899f4cb043718ce075faed30737e6aca664982828c2e587c, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:4c:4f:fb:c6:0f:8d:fe:a7:35:67:ee:98:00:
81:92:57:64:13:ae:9f:fb:e4:d2:0a:ea:cd:ae:99:
35:43:79:0b:68:55:ff:14:89:a2:8b:23:e9:28:a4:
a6:c3:eb:c9:5d:df:96:8e:0e:b4:57:ef:94:45:2e:
70:15:fd:23:b5:9e:1c:b9:33:3a:db:54:3a:9f:a0:
ed:a6:2c:52:e2:33:b0:4d:82:5c:17:8b:99:bc:3f:
a6:e0:be:61:16:28:fb:04:2b:ad:4f:dc:53:a8:ef:
7c:e3:62:43:a9:c2:52:b7:95:0a:2a:92:86:c9:88:
eb:f1:26:b8:af:d0:ec:21:f2:24:c6:e7:f0:36:10:
2a:67:89:cf:ae:a0:f6:38:ab:4f:1a:14:65:f5:18:
b2:fb:22:1f:d5:e7:bf:bc:96:24:d2:bc:a8:52:11:
86:e8:6b:41:b9:41:e2:e8:7e:b2:68:2f:ba:77:a8:
6f:f9:33:f9:69:d8:35:f5:56:df:68:2d:4c:48:ed:
13:8c:a3:5c:e3:85:54:33:b8:bd:7f:3a:56:12:0f:
15:40:a4:28:e9:1f:8e:27:08:de:6a:07:65:8c:bd:
2c:75:e9:6a:9c:b1:70:15:5a:e6:a4:94:84:84:15:
a7:06:d2:37:37:f2:dd:ca:09:0a:91:05:79:71:9c:
a6:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:4A:24:F5:D8:2E:5D:A0:71:65:9B:4E:3C:ED:F1:14:E9:4B:24:51
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4c19107d-af4c-409a-ae84-85056f62bad7.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
0c:2f:bf:3d:97:42:a3:aa:16:f0:64:98:a3:e7:da:e1:f4:22:
62:62:c8:c4:59:a0:38:a0:96:cc:85:0a:03:56:90:98:d0:11:
37:9b:3c:12:a1:d7:7d:21:31:fb:6c:a6:df:c1:3e:7e:28:82:
36:f1:69:a9:50:71:bc:9d:29:0f:a4:9b:30:b0:5a:47:45:17:
cc:5e:d1:75:ce:75:e3:8a:f6:1b:d2:3b:c0:c1:6a:44:c4:4d:
7d:8c:84:05:c7:97:04:6e:41:06:18:07:e2:70:d1:f0:8c:8a:
1a:10:a8:05:ba:32:94:2c:7b:83:96:6a:f1:47:ab:eb:f6:c8:
b1:c1:8d:68:15:9f:c2:10:bb:3c:29:82:34:04:51:bd:4b:f9:
a0:1a:82:18:0c:38:ad:79:11:37:93:cc:96:bb:67:d8:c9:63:
06:4e:b2:32:c6:2c:b1:49:39:eb:07:44:8f:a2:d1:da:90:78:
ce:63:1d:c4:9e:64:c0:30:42:73:11:3c:5a:d4:32:62:d4:b6:
fc:60:cf:ef:21:96:a6:e6:84:56:f6:8e:c6:88:b3:e7:7a:29:
01:7e:8e:31:f4:48:9a:ea:19:a1:9f:35:3d:1b:4b:82:27:f2:
fe:92:6a:49:a3:ff:28:ea:e6:dc:27:da:54:56:56:61:6b:0c:
50:44:2d:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:36 2023 by rpki-client on console-fra.rpki-client.org