Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4c5b4b2d-746d-4adf-b2af-1b1ccd1737bb.roa
File: 4c5b4b2d-746d-4adf-b2af-1b1ccd1737bb.roa (raw, json)
Hash identifier: P1ZLewtJdfjTu6ZXxQDhPXpvM7MjMcGVt8E8LvyDN8w=
Subject key identifier: AB:D3:D9:68:A7:F4:F5:19:5A:6C:00:16:BB:4E:14:F5:34:89:91:C2
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 09634E7BF0B0D490C3702822FA6C04AAB3F0A4A7
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4c5b4b2d-746d-4adf-b2af-1b1ccd1737bb.roa
Signing time: Sat 08 Apr 2023 00:00:00 +0000
ROA not before: Sat 08 Apr 2023 00:00:00 +0000
ROA not after: Tue 11 Apr 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
09:63:4e:7b:f0:b0:d4:90:c3:70:28:22:fa:6c:04:aa:b3:f0:a4:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Apr 8 00:00:00 2023 GMT
Not After : Apr 11 23:59:59 2023 GMT
Subject: serialNumber=ab4a83e641f560fcf32ade74ccb478b256efe0d4fe150806c44c7b32b1a1a31b, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:b4:d9:fb:2f:d1:f7:3c:71:10:45:f5:97:60:
01:bd:3e:57:bd:e0:2d:b0:c5:97:22:08:60:b2:e6:
e9:b9:aa:e8:64:ce:5c:aa:b7:1b:50:4e:45:33:e2:
49:27:d1:a1:69:77:a3:72:f6:4c:9c:9b:48:19:1a:
8c:d9:2d:e7:1c:28:a6:11:c5:4f:07:28:b8:50:97:
0d:7d:d1:cd:57:fb:25:af:6a:ce:5d:28:c7:24:5e:
ba:fb:88:1f:7a:fd:6c:aa:b8:65:74:c2:39:4b:49:
08:a8:4c:c6:82:df:df:06:55:ce:f3:9f:66:a4:46:
dd:ba:d5:2f:94:b1:d6:d7:1a:64:f1:7e:93:7a:44:
ae:3d:87:09:88:42:c4:26:a9:ef:04:19:13:97:a5:
67:9a:59:9f:43:45:84:d4:23:f2:55:aa:28:17:30:
44:1b:71:5f:09:df:5c:5e:6f:01:4e:52:93:ca:07:
10:7a:b8:09:42:7c:3f:5f:a6:6a:6b:35:68:cb:b6:
e1:46:a8:ec:98:9e:3a:85:30:f6:66:cb:f8:26:fc:
fe:42:f9:f6:59:8e:46:b7:d4:0c:cd:35:92:15:1a:
ad:e5:af:4c:4a:31:6d:44:d0:1f:ea:3a:bc:10:59:
fa:40:3e:36:93:7c:aa:31:90:f5:83:d9:b6:49:0d:
4d:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:D3:D9:68:A7:F4:F5:19:5A:6C:00:16:BB:4E:14:F5:34:89:91:C2
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4c5b4b2d-746d-4adf-b2af-1b1ccd1737bb.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
20:b6:32:d1:58:08:56:7c:d4:e4:ee:e3:1e:fa:c3:b8:76:ae:
c0:77:61:02:59:4a:89:52:e3:3d:f1:98:83:6c:de:4d:6a:77:
94:73:fd:8a:9f:ef:bd:bd:15:77:d8:e8:93:e0:85:a7:58:a6:
87:38:ad:e6:78:22:37:8f:b5:11:26:82:9a:0d:9f:0b:69:e0:
dd:d1:64:5d:7d:f6:b3:d1:b8:68:bd:c4:36:ea:fd:63:ab:e9:
50:3e:81:d1:0c:00:cb:5d:9c:b4:eb:1a:19:5b:3b:2a:e7:d6:
f7:26:27:40:e3:7b:17:20:94:98:bb:4e:2d:a4:82:e9:bc:29:
db:de:bb:ad:bc:4b:48:93:fa:10:97:3e:7a:1c:0f:57:df:6e:
71:5f:d9:31:27:5a:8c:ea:36:0f:d2:bd:bb:e0:14:17:f7:b3:
fd:b7:46:fd:a9:3d:ea:b7:e5:a2:7f:c5:10:6e:3d:46:f1:5c:
67:23:2a:83:f3:9a:46:0c:c9:f9:98:f1:78:e1:62:b4:cc:d3:
e2:5d:88:a8:10:e1:9c:c4:63:e9:07:8f:34:da:9c:b9:22:a5:
88:09:14:68:ad:1a:8b:94:27:b1:8e:4b:0a:a8:96:a0:f0:84:
08:c1:18:b4:a9:9c:be:cd:e0:a0:87:cd:ef:d3:52:af:5f:b6:
81:60:a6:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:36 2023 by rpki-client on console-fra.rpki-client.org