Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/592b47b2-f139-4885-b36b-ab35d5ad11e6.roa
File: 592b47b2-f139-4885-b36b-ab35d5ad11e6.roa (raw, json)
Hash identifier: q0IPcMxhB9rVVBbJB5ywWYM/HP403t0IS1YSOKpsoGw=
Subject key identifier: 3F:AF:41:F0:62:BA:EC:D2:EB:02:2D:01:E1:91:08:65:C7:CE:45:BD
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 67BA9C9990770981E42722A04040F0B853A76697
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/592b47b2-f139-4885-b36b-ab35d5ad11e6.roa
Signing time: Mon 27 Feb 2023 00:00:00 +0000
ROA not before: Mon 27 Feb 2023 00:00:00 +0000
ROA not after: Thu 02 Mar 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
67:ba:9c:99:90:77:09:81:e4:27:22:a0:40:40:f0:b8:53:a7:66:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Feb 27 00:00:00 2023 GMT
Not After : Mar 2 23:59:59 2023 GMT
Subject: serialNumber=7d5dd23105a7488ab87c339e54a455f04ebe399107ac4e0dda0dd53f1385cce8, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:7a:27:ea:be:10:dc:0e:97:83:6b:0d:d4:8d:
43:d6:08:b6:a0:e2:1c:fd:fb:c9:56:02:a8:53:be:
53:fb:05:52:62:e4:3d:95:ab:3d:0b:c5:be:85:b4:
f8:cf:9f:a3:84:b0:a3:c4:1a:36:4b:f1:6e:06:f1:
96:3c:fb:e0:b2:f0:64:ae:35:bc:b4:a6:88:67:ae:
32:bf:02:12:fd:0a:b4:86:8b:ee:95:d3:14:50:68:
13:17:ed:f1:36:ce:a9:02:b3:cf:72:a3:24:9b:89:
d8:80:9a:b1:ff:f8:ff:46:83:bf:a0:bc:40:6c:eb:
59:ea:c6:35:41:f8:42:3c:4c:10:57:ad:d4:7a:fc:
04:e7:1c:a1:39:9a:7a:76:14:76:73:98:cd:87:a4:
59:4c:22:3b:b0:9c:93:67:a3:1f:02:ed:52:22:31:
a4:b8:a6:b1:7b:05:1e:bc:e4:9a:ac:46:7f:40:63:
97:7e:be:52:9d:e9:25:ad:39:df:3c:af:1a:f7:7d:
83:51:e9:59:b1:2d:99:e5:70:5c:f1:07:32:6f:75:
ae:6f:4a:95:a3:6d:2e:77:97:12:aa:45:9a:ba:8e:
11:01:80:98:0d:8a:60:82:e4:ed:af:dc:39:e5:8f:
da:11:65:8d:fc:18:41:3a:ea:7e:65:fd:96:f6:b2:
de:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:AF:41:F0:62:BA:EC:D2:EB:02:2D:01:E1:91:08:65:C7:CE:45:BD
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/592b47b2-f139-4885-b36b-ab35d5ad11e6.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
2f:0f:38:16:43:f3:22:3f:80:8d:6f:37:55:8a:60:c9:1d:59:
94:72:07:5f:a5:f4:97:b4:8b:b2:d2:81:36:60:0c:91:8c:49:
d4:26:07:34:e4:06:0f:3e:e5:db:31:12:0c:db:88:ea:ab:ec:
1a:76:2d:16:27:43:11:61:03:7b:c0:b8:43:cc:52:e4:ab:96:
23:6f:14:0a:6f:8b:35:6b:6b:15:1f:b8:d1:52:10:9e:ce:6d:
ef:92:7c:ba:c5:8f:41:d6:59:ea:37:79:d6:ee:c8:d0:34:91:
f5:70:54:03:f4:f4:77:38:de:48:d1:ca:70:bd:7b:55:3a:98:
64:07:ed:44:fa:42:a7:89:fd:9e:34:e3:26:43:80:e3:4f:9c:
7e:00:a4:1e:62:74:30:4d:4f:de:14:47:db:68:9c:5e:30:54:
29:25:2b:3e:d3:4d:a3:ff:ce:b6:87:24:da:d6:f0:17:c9:c5:
3c:5a:a9:86:f5:81:d1:9f:cc:8e:fb:a9:f5:39:90:12:74:67:
98:c3:3c:9d:c0:fe:5b:84:d2:07:70:28:27:07:7d:7e:55:8f:
ac:7b:57:ce:ad:29:0b:ce:12:f2:92:8a:df:dc:5d:59:48:40:
3e:1c:ba:71:ed:07:36:c1:f8:ba:06:81:00:60:1f:20:4e:5a:
04:0f:73:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:37 2023 by rpki-client on console-fra.rpki-client.org