Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/6a6ba427-c685-400c-855d-993aa5edf1a2.roa
File: 6a6ba427-c685-400c-855d-993aa5edf1a2.roa (raw, json)
Hash identifier: UgFl7eUeq3Go2ysbIDCsFp9YKUcfnxXxTI5V5HGLb9I=
Subject key identifier: 6B:90:F4:FE:24:79:E2:6D:26:56:70:DD:D4:10:8B:AE:01:B8:D4:5A
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 4A1DC893DDA18BCD94787A69702CDD4D078BF709
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/6a6ba427-c685-400c-855d-993aa5edf1a2.roa
Signing time: Thu 27 Apr 2023 00:00:00 +0000
ROA not before: Thu 27 Apr 2023 00:00:00 +0000
ROA not after: Sun 30 Apr 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4a:1d:c8:93:dd:a1:8b:cd:94:78:7a:69:70:2c:dd:4d:07:8b:f7:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Apr 27 00:00:00 2023 GMT
Not After : Apr 30 23:59:59 2023 GMT
Subject: serialNumber=d86166a4c8a319ee5a97410681d12a02b3b528fcca8d20cec23cb9f657defe3a, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:e1:b2:be:2d:63:c0:ff:0b:a1:0f:bd:5c:cb:
32:b9:1b:9e:ac:17:4b:fe:30:3e:8a:19:df:28:b6:
8a:5b:83:23:ae:c7:2f:d0:08:fb:9e:ae:b5:0e:c4:
2c:e9:e2:05:10:b2:2c:c9:dd:3b:46:ae:fa:e2:1e:
4c:2d:00:3e:bb:50:f3:3a:f1:d4:44:c2:06:56:59:
24:ce:57:bc:ad:e6:5a:91:60:bf:f2:d5:66:2e:3c:
b5:86:6c:d8:e9:d1:8c:a0:b4:65:55:54:23:06:2d:
c5:0d:f4:71:8b:3c:45:5f:d8:22:ef:15:6a:11:d4:
97:f3:66:b6:1c:bd:69:8a:28:d0:7d:72:23:f4:64:
48:17:cd:4b:8c:3e:22:12:55:2d:90:05:a4:cd:d5:
da:e9:5b:15:2e:87:6f:69:8a:9b:fc:1d:24:57:b0:
0f:5e:30:04:16:e3:51:26:fe:27:7c:e4:6b:c6:87:
46:ca:72:97:f6:a5:06:0b:42:f5:15:fe:21:bf:a9:
0f:5e:0f:39:ce:3c:8e:63:07:e7:2b:ab:da:66:26:
14:a5:65:ad:9f:b7:75:5c:d7:6a:17:fb:60:f2:ea:
51:25:ee:83:ed:b1:52:95:da:26:95:56:55:6b:3e:
20:77:0d:53:97:48:61:1c:67:9c:18:b8:98:4e:0b:
41:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:90:F4:FE:24:79:E2:6D:26:56:70:DD:D4:10:8B:AE:01:B8:D4:5A
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/6a6ba427-c685-400c-855d-993aa5edf1a2.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
4f:08:ca:24:fc:03:a2:42:60:f9:91:70:2a:e0:95:64:bd:04:
7e:a7:9a:6d:c8:e4:04:ee:62:cc:0d:a7:c8:d9:80:33:3e:ec:
06:45:db:c2:cf:18:19:a1:d1:ee:85:bf:a0:db:8f:00:e1:32:
3d:21:58:fb:a5:a1:71:01:c0:12:74:9d:a5:0f:42:f2:7b:78:
a7:cd:dc:14:9c:6a:5e:b8:d5:d0:61:fc:e4:8e:fe:86:c9:2e:
f9:1e:ec:5e:58:3b:3f:90:10:0a:3e:48:e6:98:8f:eb:e4:fc:
ca:45:ef:fe:1b:da:1a:0d:43:45:93:5f:cd:e8:c9:da:9d:7d:
47:5d:6c:82:45:dc:af:3e:7f:06:86:e4:4d:73:71:60:da:b2:
43:68:44:14:bd:5b:ad:c4:4e:99:f2:20:ce:7d:39:81:bc:77:
24:c5:6a:4f:71:e5:65:2f:f3:b1:a6:87:7a:be:ba:d1:9f:e4:
e3:22:6a:91:f0:bc:f2:d8:cb:eb:94:61:b6:c2:d3:d1:01:f8:
58:9a:18:e9:58:e8:22:b5:1b:aa:ae:4e:3f:f2:60:f6:2d:bd:
9f:82:c4:cb:33:9f:44:9d:83:af:00:8b:9f:09:5d:08:cd:3c:
08:83:e7:43:88:f5:7a:16:d3:4e:8d:40:6a:3b:de:92:27:a7:
af:e8:c5:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:46 2023 by rpki-client on console-fra.rpki-client.org