Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4e8e4061-2ae7-411d-8dee-5677ab199dd6.roa
File: 4e8e4061-2ae7-411d-8dee-5677ab199dd6.roa (raw, json)
Hash identifier: suTt+Nqjt3wOxULkDy6wfVho9X/T0M5SU3ptfBjXRYA=
Subject key identifier: AE:22:52:0C:B0:F5:C5:9B:2E:1F:97:84:1A:DF:13:9B:B5:19:B7:B6
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 6CD752A575A7D7FB99E9C24CA647D56DCB435E1E
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4e8e4061-2ae7-411d-8dee-5677ab199dd6.roa
Signing time: Thu 09 Mar 2023 00:00:00 +0000
ROA not before: Thu 09 Mar 2023 00:00:00 +0000
ROA not after: Sun 12 Mar 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6c:d7:52:a5:75:a7:d7:fb:99:e9:c2:4c:a6:47:d5:6d:cb:43:5e:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Mar 9 00:00:00 2023 GMT
Not After : Mar 12 23:59:59 2023 GMT
Subject: serialNumber=db3f73c60a3301fb27e21db0262ea7a9e33a0a04c6b42391a39f726b1c96a0a4, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:a5:00:c9:99:7e:31:f1:0b:25:63:3e:79:10:
19:94:5a:09:79:0e:76:76:6c:57:fa:9e:b4:df:b5:
85:e2:4e:01:b1:76:65:db:15:e5:df:d1:15:f3:e3:
ae:cf:1b:f7:32:b8:dc:cd:2d:c2:fc:ba:2c:03:ce:
e5:6a:34:55:64:2d:0f:43:00:dc:b3:ea:bb:bd:b2:
87:1e:ce:5c:93:e3:30:69:82:50:e2:c8:af:99:cc:
49:63:eb:04:2f:38:3e:53:3f:0b:fb:ef:08:4c:74:
33:72:89:26:87:38:bc:39:e5:37:05:85:b8:27:bc:
14:60:5b:e0:d4:82:17:e6:99:a7:cb:51:09:d6:54:
f4:91:8b:4e:98:1d:c3:ce:9e:1e:1a:62:45:14:18:
1c:ba:31:3e:b7:47:fb:f4:c4:6f:e7:13:cf:39:f7:
51:43:7d:7f:be:98:7b:bb:63:b6:8d:d1:69:52:ef:
fd:0a:9a:ff:41:2f:30:ec:50:d2:36:2d:41:8c:20:
ce:2d:98:07:41:5d:44:e9:63:20:2d:5c:9b:3f:2e:
ee:4f:b2:5b:8c:e1:3d:d8:30:fa:19:15:65:e5:78:
5e:ba:2b:b5:98:9b:da:c7:f1:77:04:e2:35:ae:f4:
18:e0:c9:a3:39:49:42:5c:83:0a:db:2e:88:8f:bd:
66:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:22:52:0C:B0:F5:C5:9B:2E:1F:97:84:1A:DF:13:9B:B5:19:B7:B6
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4e8e4061-2ae7-411d-8dee-5677ab199dd6.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
75:ef:a3:d3:7f:1e:4f:78:60:7c:a5:b5:6a:0c:65:9d:78:f5:
fb:45:c1:f4:05:48:f9:99:d3:4f:0f:40:d4:0e:2d:16:84:86:
85:af:3c:96:ad:f7:49:12:50:96:4f:a2:0f:b9:08:bb:f9:9e:
c4:ef:e7:99:db:44:ea:15:87:38:b6:32:99:b2:05:f1:e2:8e:
99:96:c7:99:bc:e1:eb:35:ca:39:f4:f9:35:64:ab:8b:03:30:
48:45:91:f7:e4:89:b5:e1:8d:cb:cb:33:88:bc:83:df:da:9e:
86:5a:7a:ea:c2:f0:3b:62:c9:1a:12:57:b0:78:e1:d1:0c:b7:
95:00:06:54:66:f6:80:5e:71:5f:24:70:38:87:8c:c3:b6:de:
14:93:08:9e:94:ef:ff:e7:5a:b1:41:e1:0f:a4:99:8d:fe:de:
95:68:83:f1:55:0c:39:5a:2c:aa:22:aa:34:8d:58:fd:44:c4:
ac:d5:92:5a:52:af:3f:ce:1a:5a:8a:56:af:bc:ae:a1:08:aa:
2d:a0:cc:3b:55:ba:07:49:5b:13:f8:29:82:8a:69:08:45:16:
45:01:94:77:e9:9c:90:50:29:04:05:29:7e:70:60:2f:ee:05:
4a:09:1f:aa:a4:e5:6c:6c:20:0a:0a:52:1b:bc:e9:e0:fc:86:
2e:27:f9:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:36 2023 by rpki-client on console-fra.rpki-client.org