Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/6deb27a8-2f26-4fe6-9d52-8175782cc5fd.roa
File: 6deb27a8-2f26-4fe6-9d52-8175782cc5fd.roa (raw, json)
Hash identifier: 4euItkK9kcN0XdqcwWdz3FmFcBw5r6iYvXjroihca7c=
Subject key identifier: 89:36:3A:D2:4F:81:35:C2:58:18:6C:8C:73:F9:56:6E:07:8A:F0:65
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 33E0EAFD79CC6D8FBC20104DCD763A0C95ACCF24
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/6deb27a8-2f26-4fe6-9d52-8175782cc5fd.roa
Signing time: Mon 01 May 2023 00:00:00 +0000
ROA not before: Mon 01 May 2023 00:00:00 +0000
ROA not after: Thu 04 May 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
33:e0:ea:fd:79:cc:6d:8f:bc:20:10:4d:cd:76:3a:0c:95:ac:cf:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: May 1 00:00:00 2023 GMT
Not After : May 4 23:59:59 2023 GMT
Subject: serialNumber=dc5934c84ba129c32c24e23f02d6bd1eea22052125da21409e7311b51688ca17, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:fa:1a:e5:18:cf:21:a7:1a:f8:8d:1f:31:28:
ef:c3:fb:f7:e7:ca:5c:e0:54:7a:f0:50:64:08:fc:
f2:3a:d3:2d:f7:8a:c2:f4:55:34:2e:68:08:73:51:
e5:6e:ea:2c:eb:31:a8:4b:18:89:96:52:bd:f0:5d:
1a:c2:85:1f:15:ca:23:f1:a9:46:d3:f7:37:73:9e:
88:7f:d3:ed:24:4a:2c:12:97:cd:20:a8:e5:00:42:
06:ac:b3:15:ea:bb:15:a6:99:ea:2a:1e:ef:1f:88:
5d:47:83:8c:61:60:f5:1e:e4:11:44:c0:18:d9:ac:
6b:76:57:9e:58:a2:44:a0:a3:44:d5:4e:ae:23:41:
41:41:c5:01:4b:4a:b5:7e:b1:19:88:8f:14:21:5f:
9d:3b:84:de:3c:2e:bd:4b:c5:66:e7:63:90:a0:65:
8f:54:9c:1f:d8:99:4a:53:23:48:22:8f:7d:d9:65:
7a:8c:4c:49:b8:78:20:35:c8:ef:45:ae:4f:67:58:
14:fe:89:11:b7:5d:e0:39:4f:57:dd:f3:b9:a8:ca:
7c:b8:0b:7b:e2:9c:ca:6b:83:14:c3:50:cb:4c:21:
d0:22:c0:b1:51:2a:32:50:44:ce:bc:cd:2e:87:aa:
54:73:4e:da:76:33:b8:32:75:c6:c5:38:13:43:ce:
61:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:36:3A:D2:4F:81:35:C2:58:18:6C:8C:73:F9:56:6E:07:8A:F0:65
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/6deb27a8-2f26-4fe6-9d52-8175782cc5fd.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
48:db:01:77:ac:58:36:1a:fe:1b:d9:41:9e:c3:81:a2:d2:7a:
ee:cf:13:7c:c4:b7:39:fa:46:44:01:3b:1e:3f:54:dd:69:a4:
98:fc:63:f3:ea:e9:51:e8:da:72:90:8e:b4:da:77:8d:91:a8:
51:b1:8e:85:d9:0b:f5:0d:9e:8f:1e:7e:73:63:08:7b:e2:95:
fb:be:78:df:d1:57:a4:fb:4c:12:6b:19:37:2e:5d:21:d2:47:
c7:e9:dc:9d:26:02:f7:26:c6:ea:14:9f:2a:0b:c7:d7:ae:25:
59:61:65:b2:96:d1:9f:3e:51:b0:bc:52:8a:e6:15:0d:4b:97:
79:c0:e5:a3:3e:25:91:19:fa:49:e5:98:a2:2d:83:62:98:2e:
ef:73:15:98:8a:7c:c6:a7:dc:ba:b7:cb:80:cf:5b:46:f9:09:
d0:6d:8c:40:ca:de:0c:64:88:9d:96:ca:7d:1b:3f:48:ff:92:
e8:76:41:9f:fa:d0:ae:d3:b4:81:b1:d0:04:8a:36:4f:b4:f1:
20:ea:a9:dd:e1:38:9f:25:2e:c0:9b:5a:e5:8b:e5:21:98:89:
e7:32:3e:5b:93:15:78:11:1f:ac:98:56:9d:50:6e:20:8a:a3:
d4:90:7e:50:87:37:a2:ed:f7:37:4d:b2:54:fc:47:10:24:c3:
c9:dd:cb:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:46 2023 by rpki-client on console-fra.rpki-client.org