Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/69528c51-87f9-4cba-863c-3aabf4fa0790.roa
File: 69528c51-87f9-4cba-863c-3aabf4fa0790.roa (raw, json)
Hash identifier: uV60R/sR8BRqH2pwyol6nNOvzC9AsOC8P88ise1MXGc=
Subject key identifier: AA:51:A3:57:1E:4E:A4:40:2C:1A:05:05:F4:89:AC:05:84:77:92:A5
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 6E3F98B1557EDDC19607947AABDF95AD644A7511
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/69528c51-87f9-4cba-863c-3aabf4fa0790.roa
Signing time: Mon 06 Mar 2023 00:00:00 +0000
ROA not before: Mon 06 Mar 2023 00:00:00 +0000
ROA not after: Thu 09 Mar 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6e:3f:98:b1:55:7e:dd:c1:96:07:94:7a:ab:df:95:ad:64:4a:75:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Mar 6 00:00:00 2023 GMT
Not After : Mar 9 23:59:59 2023 GMT
Subject: serialNumber=33d0feb573ddd3f9f319aefb47518fbcbc4e7b6c805effabded0e0d5d16a0d48, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:5a:84:0c:9d:41:14:72:3e:96:56:96:f5:90:
2f:b8:8c:af:d7:01:e3:58:19:91:e8:d7:97:20:41:
05:a5:bb:ab:f0:f7:0a:c0:11:b3:ea:df:56:38:36:
61:67:57:15:63:39:12:09:7c:86:96:f3:d1:5b:2b:
d8:f7:96:8e:34:93:8a:7d:21:3b:ca:d2:24:d7:ed:
ed:c9:30:1b:8d:d1:7b:1f:0a:42:ee:ba:4b:e8:28:
32:33:4b:52:df:74:b8:f6:cb:84:44:41:9d:c9:be:
a1:be:6c:c5:39:74:25:23:ba:9f:ea:75:9c:f6:8b:
8e:6e:23:37:36:6a:e6:f8:ba:e2:62:95:de:1e:33:
95:0b:9f:09:b9:66:88:a6:09:68:d6:50:94:af:fe:
d3:aa:dd:11:28:3b:c7:80:f9:2c:3f:2e:45:42:ab:
85:47:f5:f5:ff:49:4a:9c:84:a7:65:82:ba:41:66:
e3:29:65:07:99:be:b0:db:db:33:8f:77:0b:af:a5:
18:ee:76:17:e8:2e:ad:74:68:87:10:46:fe:3c:ed:
33:91:25:cd:d2:0c:ac:ed:e5:e3:74:e8:f5:1c:e7:
f0:de:3e:41:30:6d:55:7c:fc:95:c9:91:40:cb:63:
51:97:2d:23:15:6a:c1:0b:94:01:7b:b3:39:c3:1d:
01:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:51:A3:57:1E:4E:A4:40:2C:1A:05:05:F4:89:AC:05:84:77:92:A5
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/69528c51-87f9-4cba-863c-3aabf4fa0790.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
4c:fb:9d:26:c4:e0:10:22:23:ae:73:47:fe:37:1c:22:cb:d9:
88:a2:e0:cd:4a:ee:b3:77:fa:77:36:88:5c:c1:7a:fd:56:5a:
79:3f:99:3b:ef:75:ee:2f:b8:15:da:51:04:4f:a1:1e:34:b9:
f8:c9:83:a7:6c:3a:5e:ce:b9:2a:a5:54:da:25:a3:11:1a:98:
2b:10:c6:45:d3:a6:95:16:fa:74:8b:b2:aa:f1:ad:27:0a:e9:
b4:6b:82:e2:ed:16:d6:07:77:82:82:85:3a:68:ca:9f:63:1d:
ce:ef:f1:01:d8:99:6d:81:b0:7c:54:bd:d4:b0:26:2a:e2:4b:
ae:ab:29:ba:cb:43:e0:3c:07:07:c0:33:43:6d:9c:ef:63:f0:
9a:8e:9d:97:a0:90:27:5f:ef:df:57:e2:dd:3a:46:7c:9c:80:
65:55:c1:52:80:39:ad:65:7c:c7:c6:1f:9f:ae:d9:0b:41:a2:
13:cf:f7:68:7e:7c:1f:f8:d1:13:b8:ab:5f:2e:15:74:06:4c:
bb:5f:21:27:c6:c8:f0:4b:19:7b:89:f4:df:ac:6b:09:8d:75:
f9:46:84:14:86:48:2d:09:a4:65:fe:4c:1f:89:c7:b6:f3:7a:
25:a2:9f:43:72:dd:c3:28:52:d9:f4:c7:52:56:7c:8f:cd:8c:
1b:34:6e:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:46 2023 by rpki-client on console-fra.rpki-client.org