Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4f74b22e-b61e-49ac-a673-399543d8feab.roa
File: 4f74b22e-b61e-49ac-a673-399543d8feab.roa (raw, json)
Hash identifier: vJC3jLkAmN6k5GFbGpkd98wMi8BYUAcSfKdWQMphrbI=
Subject key identifier: 9C:38:DC:B4:8A:71:14:E4:DF:B3:A4:66:CB:FD:B5:B3:2E:17:AC:FA
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 644374FD5F95E3A8C7C9E27685E5348DDA510224
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4f74b22e-b61e-49ac-a673-399543d8feab.roa
Signing time: Mon 27 Feb 2023 00:00:00 +0000
ROA not before: Mon 27 Feb 2023 00:00:00 +0000
ROA not after: Thu 02 Mar 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
64:43:74:fd:5f:95:e3:a8:c7:c9:e2:76:85:e5:34:8d:da:51:02:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Feb 27 00:00:00 2023 GMT
Not After : Mar 2 23:59:59 2023 GMT
Subject: serialNumber=214b692387a21c940fbbb3c28e698e3cdd856fd4e5ee3cce0af0bc3dd9d9524c, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:73:10:e1:16:29:86:d0:50:65:bc:f0:15:db:
78:f9:ca:f3:8b:ce:60:43:e6:88:b2:1b:f5:90:40:
6a:95:08:36:6c:77:45:84:c7:35:ac:23:58:26:a9:
ce:48:f5:fa:c8:52:05:a5:24:bb:9d:24:9d:71:0c:
c3:7e:9e:b1:5f:41:67:fe:c4:32:e6:7d:ca:ae:49:
18:b8:24:28:7c:f0:97:12:5f:26:78:09:98:c3:32:
19:2e:84:a6:2e:09:0e:5d:fb:b0:37:31:af:0c:c8:
11:70:55:61:65:21:9a:e0:3e:7a:67:93:23:7d:f4:
f4:63:74:bd:82:ae:62:89:20:94:db:f4:95:ef:09:
68:ba:6c:c8:aa:8b:6c:25:89:5d:37:90:08:53:25:
7c:c5:ab:02:bf:87:c9:e3:1d:c9:41:6a:33:f9:50:
c7:c4:ac:c4:f3:c3:87:f7:3d:8f:a4:93:41:95:50:
30:a7:f1:23:32:dc:cc:9c:df:ea:9b:30:4b:37:76:
87:9f:00:f0:b1:41:09:f2:a5:c6:c1:13:0e:24:83:
57:f0:fe:d9:0a:ca:35:df:90:b7:93:ee:23:c6:d8:
e2:ac:c6:6e:88:0c:d5:7f:73:f6:20:4c:cb:bf:d6:
ef:90:01:da:12:af:1e:bf:3a:10:4d:d1:84:d0:52:
5d:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:38:DC:B4:8A:71:14:E4:DF:B3:A4:66:CB:FD:B5:B3:2E:17:AC:FA
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4f74b22e-b61e-49ac-a673-399543d8feab.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
5d:57:01:59:f1:d5:3d:08:5c:90:ea:1e:47:c4:86:0d:b7:cf:
6e:f2:32:f8:f4:0f:6a:1b:4e:24:0f:b8:54:6e:ae:74:b6:cd:
b9:88:bc:79:e9:0e:ab:3d:98:0b:9b:41:92:ca:44:93:c6:2d:
eb:8b:2d:11:82:a1:0a:c4:93:3d:a9:10:d9:f0:5e:d1:6b:32:
eb:b2:58:0c:0f:d7:f1:b1:c2:d7:92:64:e8:8d:e4:6d:fd:56:
91:2c:1d:40:b3:fd:1b:dc:c1:c0:85:f4:bd:a2:96:55:fc:c3:
c2:49:4e:55:6f:ce:ab:5e:9c:65:ef:e4:b6:ec:31:22:da:2f:
c5:fb:2c:d9:01:da:fa:ae:ee:f4:39:c1:1b:d7:24:7a:f5:da:
fd:e0:fd:8e:b4:cb:f5:5f:30:25:b4:45:a6:fa:d3:e0:ad:3f:
b8:f5:ae:95:d7:da:f0:b5:21:a0:e0:b0:d2:0f:26:20:ff:4d:
3c:a6:dd:54:09:ca:0c:f9:5b:16:a3:14:95:ef:01:b3:18:a3:
7c:9b:19:1a:eb:eb:13:68:29:5f:95:3c:b6:14:99:bc:e4:c2:
13:a7:05:a0:f6:58:e7:34:08:e1:f1:dd:2d:75:af:3f:0d:86:
b2:55:41:96:26:29:02:c8:66:e3:9b:47:67:9c:39:60:cb:4f:
67:ee:47:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:36 2023 by rpki-client on console-fra.rpki-client.org