Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/5687813d-55e4-44e3-88ae-828fc4166934.roa
File: 5687813d-55e4-44e3-88ae-828fc4166934.roa (raw, json)
Hash identifier: 6h8SXp1wkcw98a9e2BqOzOSESftX2ydhM0F03gPkeps=
Subject key identifier: 1E:9C:07:54:86:6E:BB:60:07:46:D4:04:A2:D8:4C:F3:0D:DA:5E:73
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 3ACF26FC07183C6CC9C61F6214E9C9C085171D5C
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/5687813d-55e4-44e3-88ae-828fc4166934.roa
Signing time: Fri 17 Feb 2023 00:00:00 +0000
ROA not before: Fri 17 Feb 2023 00:00:00 +0000
ROA not after: Mon 20 Feb 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3a:cf:26:fc:07:18:3c:6c:c9:c6:1f:62:14:e9:c9:c0:85:17:1d:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Feb 17 00:00:00 2023 GMT
Not After : Feb 20 23:59:59 2023 GMT
Subject: serialNumber=51963f0a5f8a275efebd0bc0528e1279d0fd8fbfc030f79c81d93d7dff238a72, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:bf:62:08:40:e9:d6:0e:ce:a1:84:a7:ad:c4:
b2:6c:41:0d:fd:55:5e:78:e3:ef:85:59:10:fc:1c:
90:23:9e:b9:74:c5:fb:f4:83:91:56:ed:73:15:3c:
29:4b:44:5d:63:b6:d8:18:b5:83:64:ed:63:78:03:
8c:5a:bd:9a:63:2a:16:00:d5:2e:ce:28:80:81:ce:
ef:29:ca:cf:c8:86:da:40:52:a4:89:2a:d4:69:45:
fe:de:0b:3f:53:b4:fa:af:b1:2b:08:21:7a:31:ae:
89:7f:e6:e4:e5:16:04:75:69:f7:91:79:b6:6d:7f:
0f:c8:64:1d:c3:68:de:8e:70:94:b1:fb:1a:97:f2:
aa:fd:49:e3:1f:45:bb:b4:bc:fb:34:eb:9e:25:14:
21:8e:63:87:78:86:4e:2e:67:3b:c0:27:c9:06:16:
b0:d2:91:13:31:84:a5:f7:38:b2:ee:11:04:90:71:
ad:55:8e:14:b6:ee:d1:c5:30:90:e8:da:4b:e9:56:
dc:1a:88:ec:7c:6a:af:83:61:61:bf:af:a8:8f:09:
c5:59:4e:ef:ff:1f:d8:88:1b:47:c4:11:58:b6:83:
d4:bd:68:1b:2c:a8:39:0b:79:f9:83:9c:4f:ec:58:
72:0e:aa:7c:b9:f9:98:45:11:cc:86:9f:0f:60:d6:
d2:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:9C:07:54:86:6E:BB:60:07:46:D4:04:A2:D8:4C:F3:0D:DA:5E:73
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/5687813d-55e4-44e3-88ae-828fc4166934.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
50:54:43:8b:bf:aa:e5:4b:f6:ca:89:34:5a:91:da:49:2c:11:
df:2b:91:3e:19:80:ae:17:0d:e7:eb:11:3f:23:fa:cd:a9:19:
17:f8:38:6f:c3:dd:e9:0a:1b:81:20:48:70:98:ee:f3:3f:11:
eb:e7:59:74:25:62:d4:7e:74:e4:1a:80:71:8b:41:df:6c:c5:
cd:30:df:f8:87:d4:f7:b3:4a:43:4e:43:71:4e:72:9c:54:f8:
63:fd:7d:4c:e8:af:64:8f:4c:fb:0b:59:dc:28:88:05:db:53:
1a:7b:9f:7c:05:47:a1:18:4b:e9:67:9e:fd:99:fe:35:6f:43:
99:ee:b9:9f:cf:56:53:3c:08:ee:95:7d:51:bd:6e:0b:a0:3a:
a2:a2:f7:f1:b7:c2:ca:33:92:30:a6:70:75:c1:93:96:bd:87:
cd:56:9e:63:03:34:00:70:db:4c:b8:d9:1f:c3:03:aa:1f:6d:
c6:98:78:d9:62:78:59:95:81:23:78:ee:90:10:81:06:cd:7a:
96:14:d7:79:93:bd:c8:02:34:bd:88:2b:fc:29:63:6e:a3:68:
68:4b:f4:cd:26:14:61:3b:3a:63:be:8c:a3:b8:ab:e7:ec:17:
5b:0d:d5:0a:22:78:2e:2c:c2:c0:a5:53:85:39:09:61:25:66:
b5:a0:a5:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:37 2023 by rpki-client on console-fra.rpki-client.org