Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/560391ba-42b8-4eeb-98b7-679c6c44ecaa.roa
File: 560391ba-42b8-4eeb-98b7-679c6c44ecaa.roa (raw, json)
Hash identifier: 1Y667dFeDg82u/CQgFsKqasuyXa0VW+q3ioURmuPhEQ=
Subject key identifier: FD:FD:5F:D6:1B:AD:A9:65:19:67:D0:D1:50:31:FE:1B:FE:B6:C9:2B
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 684330BFA7D7EF0DB5BB7F0A041048510865701E
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/560391ba-42b8-4eeb-98b7-679c6c44ecaa.roa
Signing time: Sat 01 Apr 2023 00:00:00 +0000
ROA not before: Sat 01 Apr 2023 00:00:00 +0000
ROA not after: Tue 04 Apr 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
68:43:30:bf:a7:d7:ef:0d:b5:bb:7f:0a:04:10:48:51:08:65:70:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Apr 1 00:00:00 2023 GMT
Not After : Apr 4 23:59:59 2023 GMT
Subject: serialNumber=483604e58a143727403cdc2865f0668bec54d3f590f67e107852d38c8413af0b, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:0c:c2:99:23:75:a1:b6:fa:de:91:8d:34:13:
88:b2:9b:48:57:13:0d:1a:cb:a8:34:7d:1a:22:c3:
b4:a3:7b:8a:19:24:d1:30:2e:84:89:0b:9f:1f:4e:
95:b8:b0:7c:68:35:dd:b5:7b:24:d3:8a:58:1c:74:
5b:2d:c2:0b:3e:90:6c:57:d5:68:11:f2:85:9c:4e:
d4:b2:d5:67:8f:3f:0b:27:04:b2:51:b2:f1:cd:34:
ed:30:10:86:94:02:91:93:76:0b:de:d6:ce:7f:99:
5f:79:20:63:74:c2:d8:66:bf:28:6c:17:1b:71:ee:
22:81:62:45:ae:d1:3c:56:32:54:2c:80:b1:cf:c3:
41:6e:32:82:df:48:a7:30:40:7e:26:f6:22:07:ba:
2c:b0:67:7d:7a:6c:db:3a:49:a9:c4:41:43:41:43:
33:45:c5:39:85:da:d5:5d:14:7c:4b:f5:e2:1c:31:
89:ab:69:c6:d2:f9:99:66:23:1a:14:35:26:c5:da:
95:4c:0f:92:d5:36:85:62:d1:58:b8:d7:cc:83:c6:
d6:df:96:41:41:cb:97:4d:9b:2a:57:e4:63:f2:b4:
9c:16:66:d4:73:1e:60:db:66:df:a3:0f:01:06:d1:
3e:9c:01:e5:66:5c:06:53:6c:68:b5:92:71:43:9d:
9f:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:FD:5F:D6:1B:AD:A9:65:19:67:D0:D1:50:31:FE:1B:FE:B6:C9:2B
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/560391ba-42b8-4eeb-98b7-679c6c44ecaa.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
4a:ca:50:a8:5d:87:ad:b2:a9:ec:86:80:bd:d9:61:57:c9:04:
f8:9e:f8:99:30:ee:c1:a7:8c:0b:7c:64:00:1a:e9:f6:66:6a:
da:1e:2e:0c:96:59:b2:5a:97:9b:34:91:35:a7:60:95:1c:59:
22:d0:9f:7f:9e:06:34:bb:dc:f4:50:de:6a:8c:49:30:4b:88:
a9:b1:8d:2b:e4:7d:30:4f:8c:d7:b6:f8:36:34:26:c1:80:61:
5f:e9:fc:1f:c2:b9:7c:92:be:14:3f:0e:a0:c3:fb:30:60:a3:
8b:89:95:c2:69:89:48:ee:1e:8b:16:c8:42:98:3c:29:9b:fa:
8e:ae:81:bd:21:11:1b:88:74:b5:40:0c:3f:90:cf:83:fb:3e:
ae:59:cc:94:d3:e1:52:bd:19:27:83:ba:2a:b3:47:54:5c:f5:
aa:aa:0e:85:a0:d9:4e:88:b6:58:42:d1:58:a4:d4:41:3c:6d:
78:80:22:39:b3:5a:65:fe:2e:2d:16:a5:01:53:42:c1:7f:bf:
01:67:2c:2f:59:0b:9d:3e:cc:da:62:a7:12:21:59:07:3a:fb:
7f:e0:7b:e5:2f:de:2f:35:7d:45:a2:0b:9a:78:a0:2c:cd:42:
75:51:78:9f:f8:c5:51:92:46:43:f3:49:20:67:b3:a0:07:1a:
a8:30:c3:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:37 2023 by rpki-client on console-fra.rpki-client.org