Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/6d0ec0e1-d33d-41df-bb62-4625f3cefcd1.roa
File: 6d0ec0e1-d33d-41df-bb62-4625f3cefcd1.roa (raw, json)
Hash identifier: 1aZCxmyw/WmuZRsCtwOodfQlYkrZ/ktuj7zwZOQ/afw=
Subject key identifier: F1:57:41:93:DD:C4:82:37:F3:CA:0B:41:4D:72:CE:46:62:85:AD:74
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 0BDB81710F5806660470ADA83797D2AD01C4EEA0
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/6d0ec0e1-d33d-41df-bb62-4625f3cefcd1.roa
Signing time: Tue 30 May 2023 00:00:00 +0000
ROA not before: Tue 30 May 2023 00:00:00 +0000
ROA not after: Fri 02 Jun 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0b:db:81:71:0f:58:06:66:04:70:ad:a8:37:97:d2:ad:01:c4:ee:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: May 30 00:00:00 2023 GMT
Not After : Jun 2 23:59:59 2023 GMT
Subject: serialNumber=a5e8cf91e379bf1edc360458d4e50f6a571b12548a865c0058e5f8ff4cc48ad9, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:a9:14:b3:26:b1:d3:6b:b6:11:99:98:1e:ef:
2a:8e:bb:4e:43:e5:f2:2e:c2:1f:4e:91:20:43:78:
ec:1f:bc:bb:7c:68:50:a2:fc:7a:e0:a6:3a:c7:69:
ef:7f:19:8f:66:17:8c:da:e6:fd:bb:28:5f:ff:1e:
24:a6:d0:b7:7f:bf:89:a9:93:09:f8:05:dc:ad:47:
5b:4e:5b:8b:f8:b1:9a:9b:42:17:77:90:2c:ff:bb:
c0:ad:e0:64:26:2a:9e:38:48:4d:b6:64:ca:12:e1:
ce:84:58:51:ae:05:5a:70:2b:34:eb:cc:f8:38:28:
5b:00:a6:5c:4e:a3:00:e2:5b:fe:ae:a3:76:6a:b2:
54:be:fa:93:ca:cc:06:c5:05:45:38:b6:d8:ca:ad:
6e:6b:5b:b0:92:dd:33:06:6b:2c:a9:38:05:3f:d4:
7f:c0:d3:59:4b:da:31:b5:0b:6a:63:91:86:af:c5:
a1:73:21:a6:c0:51:4c:f9:51:95:08:f9:6a:63:5e:
05:87:db:8b:c0:e1:8f:9c:f8:9c:3b:c0:a7:43:f6:
60:d0:e5:21:00:bb:09:3b:6f:d2:81:94:48:a1:df:
2e:a2:23:65:c1:cd:63:94:4c:11:da:ac:a2:61:4b:
e5:d2:3b:c9:0c:28:30:5f:3c:cd:cf:24:a5:21:b6:
07:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:57:41:93:DD:C4:82:37:F3:CA:0B:41:4D:72:CE:46:62:85:AD:74
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/6d0ec0e1-d33d-41df-bb62-4625f3cefcd1.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
28:71:c0:19:35:be:b6:8f:74:f2:dd:a9:5a:25:2c:11:fd:13:
77:13:4a:0d:3f:86:d9:5d:c3:2d:7e:9a:3a:2f:74:5a:67:d0:
db:ea:f0:30:74:7b:ef:b6:43:88:3f:38:63:4a:6c:fb:52:dd:
af:54:4b:a1:b6:54:a5:83:a1:00:8d:b4:19:bb:98:97:22:12:
40:33:2f:05:e4:bb:3c:f5:4e:39:63:ef:38:01:aa:5a:21:c0:
fe:ba:48:1c:7b:5c:c0:9b:91:9a:56:70:ad:81:7b:fa:66:c2:
15:1c:bd:35:ae:7a:74:48:c3:39:25:a9:06:b6:39:ee:dd:1e:
7b:b8:96:b9:06:39:91:32:83:ba:c4:d4:d4:be:c5:95:c1:81:
3b:68:15:04:01:3a:52:fb:23:9b:ac:84:57:fa:86:b2:6a:9f:
03:3e:ed:5b:64:b6:f4:cb:48:18:45:3c:88:5a:1b:cb:78:a0:
59:f8:d0:4b:65:13:b0:7e:dd:57:ee:5d:78:ca:47:01:60:92:
05:10:91:5f:fb:1d:10:72:10:e6:4d:ad:e4:6a:27:be:4f:36:
7d:62:3e:93:96:1c:22:a6:99:80:16:87:31:f7:99:9d:10:da:
38:e8:52:f3:f7:4b:ca:64:df:ed:e5:99:b7:f3:74:23:1a:3a:
2c:81:d4:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:46 2023 by rpki-client on console-ams.rpki-client.org