Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/6e36a7bb-4276-4237-a086-8c9321bf91f9.roa
File: 6e36a7bb-4276-4237-a086-8c9321bf91f9.roa (raw, json)
Hash identifier: WLDxKYlggjSK2IBcCjRhQlzbwYpYiXfGOKLK/aluFb8=
Subject key identifier: E9:99:69:C5:A5:38:01:93:11:E7:5E:4A:4C:D2:92:A8:11:4F:A5:9B
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 47324EF657E91A608286E43CEC11750AC310D060
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/6e36a7bb-4276-4237-a086-8c9321bf91f9.roa
Signing time: Sat 29 Apr 2023 00:00:00 +0000
ROA not before: Sat 29 Apr 2023 00:00:00 +0000
ROA not after: Tue 02 May 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
47:32:4e:f6:57:e9:1a:60:82:86:e4:3c:ec:11:75:0a:c3:10:d0:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Apr 29 00:00:00 2023 GMT
Not After : May 2 23:59:59 2023 GMT
Subject: serialNumber=5f280f0e7241152a1cc7192c224965e8340fd386d246e900e1bb2d1eba4f55fb, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:2f:71:61:eb:74:f1:8d:b7:01:52:bf:72:7e:
08:8d:c8:7d:43:19:ec:ea:aa:11:2b:0f:8b:8f:18:
1d:db:68:71:b1:1a:c7:56:80:2f:28:ee:7f:a2:cc:
10:7c:15:d1:19:1b:db:7e:72:54:be:b4:d6:63:44:
99:da:5e:51:9b:ad:2d:26:d6:10:18:fa:89:53:b1:
d0:dd:a0:f0:72:fc:3a:d5:65:af:db:0e:93:dc:93:
14:60:84:ba:e9:98:df:a4:4a:b6:09:67:ee:24:d0:
51:7f:03:47:a1:d8:d2:19:e1:a9:b3:aa:5b:88:13:
11:d2:b8:24:ef:2c:70:76:f1:97:28:73:60:79:59:
75:b6:dd:28:44:59:6b:ae:56:3a:45:6d:7d:e3:87:
5a:80:1e:7a:4e:9c:af:e6:7e:b1:f5:66:6e:69:00:
77:55:33:96:cf:c4:99:93:6c:c2:5d:6f:ac:32:42:
53:86:0d:b7:07:45:c1:74:4c:60:ca:39:44:3f:7d:
fd:27:31:9f:53:2d:f9:e0:57:90:b0:20:92:d6:9b:
df:de:94:6a:fb:55:fc:45:1e:d8:1f:dc:ca:14:c0:
84:b3:a9:42:a7:66:2f:60:49:8f:aa:9e:88:48:54:
0e:1a:28:1a:3a:8b:b7:f0:77:e4:2f:c9:e0:6e:6e:
ba:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:99:69:C5:A5:38:01:93:11:E7:5E:4A:4C:D2:92:A8:11:4F:A5:9B
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/6e36a7bb-4276-4237-a086-8c9321bf91f9.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
c6:68:f5:17:cd:d1:fd:14:56:6b:36:59:9b:3d:a7:04:94:9e:
c3:21:55:85:9a:cc:3d:60:32:cb:5b:09:25:f5:bb:d3:4f:49:
a8:9d:35:f8:c8:d6:3d:de:e8:75:67:f1:27:2c:db:7a:7c:ba:
60:f2:0f:f5:bb:bb:29:a3:50:42:c9:13:23:c3:ae:f4:88:3d:
21:8b:bc:6d:6c:15:96:9e:1c:3c:a2:fa:33:5c:23:35:4c:fd:
29:3f:a3:63:43:f3:81:b8:7a:f1:24:88:d7:31:8b:6d:19:dd:
97:9c:2e:52:3a:96:b5:35:8f:d3:70:f8:2c:20:66:53:b0:31:
aa:76:89:f8:aa:18:56:d1:7b:ca:46:2f:30:6f:2c:e1:d7:1d:
6c:f4:4b:68:89:5f:1f:60:ba:1f:30:b7:92:6e:72:cc:81:95:
68:55:42:cf:cd:ab:43:08:6f:fb:e7:76:ff:03:92:78:0d:69:
02:cc:ab:c3:36:c0:f8:4d:0b:16:c4:2c:00:06:34:42:e7:5d:
6d:d3:6d:01:3b:37:19:4d:31:30:d1:ba:a5:2d:60:7d:47:8a:
1c:35:95:d7:0d:c7:ea:19:91:e4:69:7e:f9:b0:77:fb:2e:ea:
79:4b:78:f0:b1:4a:f2:60:35:da:9b:56:a1:fe:d3:3c:92:d7:
c1:84:a7:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:46 2023 by rpki-client on console-fra.rpki-client.org