Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/56425a5f-8f16-4ae1-ab1d-f9ab51fcf3e7.roa
File: 56425a5f-8f16-4ae1-ab1d-f9ab51fcf3e7.roa (raw, json)
Hash identifier: mLM0uesCtOetBVghuxeNx/5xvwrztgjxK4hw0yK3rhs=
Subject key identifier: 4D:D5:5B:6F:CD:08:84:A6:E9:54:15:04:74:C8:B5:E2:D9:50:EB:23
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 23A1E29235A63A9335D3E5CB344778715A12AEFF
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/56425a5f-8f16-4ae1-ab1d-f9ab51fcf3e7.roa
Signing time: Mon 05 Jun 2023 00:00:00 +0000
ROA not before: Mon 05 Jun 2023 00:00:00 +0000
ROA not after: Thu 08 Jun 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
23:a1:e2:92:35:a6:3a:93:35:d3:e5:cb:34:47:78:71:5a:12:ae:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Jun 5 00:00:00 2023 GMT
Not After : Jun 8 23:59:59 2023 GMT
Subject: serialNumber=0a39fafd6baf2f7a360cf5c18e1dd798994db10b80dc0cce3df658fedd58d175, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:96:0e:bf:bd:42:5a:57:32:cd:9c:9a:c9:cb:
e9:41:83:85:1b:25:39:65:e6:50:f7:a7:a8:85:8f:
25:5e:89:29:20:64:7e:a3:5c:de:aa:43:d9:62:ff:
2e:86:88:7e:5a:2d:bc:b6:e6:65:12:9a:45:10:a4:
76:ba:50:c6:0c:48:06:0c:3f:f4:bf:7f:d1:41:0d:
3d:95:d5:ac:51:78:af:6c:1c:ef:10:6e:db:1c:0b:
5a:71:b7:54:7b:1b:b9:18:e2:28:9b:44:75:13:e0:
20:f2:48:8f:d8:3b:ef:9d:5c:6e:ad:2b:8c:81:00:
2c:1c:12:57:45:da:aa:09:a7:1c:3d:e3:2c:af:74:
7a:d1:2d:94:be:22:c5:42:22:bc:b4:b2:58:ba:55:
6f:11:95:c3:6d:e4:91:d6:ce:0b:fa:09:ce:51:e3:
06:ea:8a:9e:86:b9:78:3a:96:35:ec:1c:0c:38:53:
f5:e4:0c:a8:36:fc:da:60:d1:db:67:cd:1c:62:18:
3b:df:55:1f:1d:11:69:e2:14:2a:7e:77:4d:20:d2:
d2:48:33:d6:b3:21:8e:6e:49:13:74:81:2e:49:7a:
5e:1e:0f:5f:00:26:9a:96:89:13:9a:cc:2f:70:74:
5e:63:9b:ab:15:57:7f:7c:44:7c:c2:91:b8:0c:0d:
0b:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:D5:5B:6F:CD:08:84:A6:E9:54:15:04:74:C8:B5:E2:D9:50:EB:23
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/56425a5f-8f16-4ae1-ab1d-f9ab51fcf3e7.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
19:c0:5b:3a:eb:80:39:50:30:c6:9c:e3:1f:33:65:a2:c4:ae:
66:57:f2:06:40:1f:7a:a4:56:b5:e1:80:2f:04:de:e8:56:6b:
bd:f7:ac:df:ed:1d:0c:18:0e:a0:32:9c:21:27:01:92:17:9f:
8f:7b:00:26:87:8f:b3:90:f6:d4:51:a8:54:c1:63:0d:df:50:
dc:91:5f:3b:7e:23:ba:97:02:f9:7e:f9:ce:a5:b2:47:5b:85:
34:7c:3b:ed:29:ed:a9:af:30:be:c5:d0:46:a4:de:8a:c5:65:
82:31:f6:16:0c:1d:60:8e:7e:2a:d6:f6:32:4c:ec:3d:f8:6e:
fe:f3:8a:88:c8:12:2f:9f:8a:43:fb:77:da:8f:06:07:54:40:
69:62:d7:f3:ce:6a:77:ce:73:70:d8:0c:c5:55:bc:fd:bb:b0:
24:a9:06:6c:55:69:7f:f2:87:89:dc:4b:05:2f:8b:7b:1f:17:
d8:db:95:1a:65:a4:d0:24:a2:d1:ef:04:1d:29:43:2d:22:98:
93:f9:04:44:84:0a:19:79:9e:8e:57:21:0f:c1:1b:fe:65:50:
03:d7:ea:32:4a:f0:5b:16:4e:4a:cb:eb:7c:ff:64:d0:0b:ae:
30:ed:76:12:1d:d9:10:e1:50:d4:03:ae:c8:d1:2e:a7:d6:8a:
1b:43:57:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:37 2023 by rpki-client on console-fra.rpki-client.org