Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/71694e6f-3fb2-4be9-abc4-d7e41b7a5d8c.roa
File: 71694e6f-3fb2-4be9-abc4-d7e41b7a5d8c.roa (raw, json)
Hash identifier: RYFGr2/64bkga8dA1suROlMyMai/zifiwsMmV/H9HeA=
Subject key identifier: 36:EE:1E:08:5F:B0:FE:DA:2B:78:C6:E2:A9:75:7A:80:8B:A5:CC:36
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 63C5092B4D9D4AAA9A24768BC5B0652D55D8B91C
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/71694e6f-3fb2-4be9-abc4-d7e41b7a5d8c.roa
Signing time: Fri 03 Mar 2023 00:00:00 +0000
ROA not before: Fri 03 Mar 2023 00:00:00 +0000
ROA not after: Mon 06 Mar 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
63:c5:09:2b:4d:9d:4a:aa:9a:24:76:8b:c5:b0:65:2d:55:d8:b9:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Mar 3 00:00:00 2023 GMT
Not After : Mar 6 23:59:59 2023 GMT
Subject: serialNumber=29665631279e4a08e3020a0faf982753075d4e6f9040b11d5598329874950499, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:50:7f:fa:ad:87:1c:29:50:57:ec:ab:f5:a8:
3f:0d:71:b8:42:ae:1f:90:f9:67:d8:b2:68:e0:d1:
a3:69:f8:00:7b:8f:eb:38:36:8f:77:5a:84:6d:70:
33:51:9d:1e:ac:68:59:8d:8e:f1:7b:ec:5f:6f:9c:
fe:36:ee:e5:7a:cc:fd:cc:a3:a2:f4:4f:81:d9:67:
d2:73:58:c8:44:d2:d2:7c:7c:30:5b:10:2e:a7:8b:
c3:85:aa:ee:43:7e:9d:f4:09:a8:48:34:de:12:72:
fb:06:f9:2a:b6:e1:57:32:91:87:1d:26:24:31:17:
64:9e:9c:86:63:56:c4:d7:0c:24:c9:ac:39:63:5e:
83:26:b1:64:bd:16:08:82:59:47:64:e8:54:ef:c1:
14:5b:10:49:f7:7b:03:a2:5a:50:63:c9:4f:2e:d5:
07:c9:38:6e:7a:09:83:12:2f:94:b5:a0:90:43:5e:
3a:2b:6d:eb:57:3a:1e:31:94:06:17:c6:84:11:11:
df:a6:73:5d:75:a0:08:c1:0c:9a:3e:a1:43:7f:71:
87:04:0b:df:83:ad:37:82:37:39:28:9d:3c:51:6e:
a1:d0:a9:7d:dd:27:53:73:8f:f3:8d:12:ec:8d:f5:
13:80:ee:a7:02:aa:69:51:a7:da:8c:a0:b9:94:2f:
72:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:EE:1E:08:5F:B0:FE:DA:2B:78:C6:E2:A9:75:7A:80:8B:A5:CC:36
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/71694e6f-3fb2-4be9-abc4-d7e41b7a5d8c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
c5:64:5c:71:47:8f:56:fa:9e:59:fd:f1:95:27:de:3d:53:39:
bb:d4:9e:69:8b:9f:cc:bd:56:96:b8:17:70:fb:24:07:53:67:
3f:5d:07:38:4b:4c:ea:b5:cc:dc:71:5a:39:71:e9:4b:2f:c7:
62:36:83:e8:15:f0:01:78:b5:cd:20:7a:43:6b:fc:d3:71:d3:
c4:77:dd:12:39:59:2f:f2:ba:2f:ed:59:28:8f:e5:54:c4:e3:
be:c5:85:57:11:4f:d5:07:eb:49:69:21:32:8a:3a:5d:56:da:
b7:b5:48:d2:82:a3:f3:d7:db:92:70:a3:25:39:7e:dc:b9:e4:
27:46:0b:c9:c9:ce:aa:9a:16:e7:8a:bd:6a:b1:6f:5e:10:39:
1e:bb:97:ee:78:64:8c:22:e5:af:74:5d:74:a4:2d:12:f1:95:
6e:b1:6e:2d:5c:77:eb:38:c8:cc:b1:58:9a:44:fa:ca:0d:40:
fc:54:97:58:db:a9:96:de:5b:3a:06:72:2d:8a:15:9e:26:3a:
f7:77:d2:68:b9:88:3a:5c:4e:dc:78:4d:d0:77:aa:1c:0b:6b:
18:5d:40:42:d4:5b:04:9a:92:78:38:7a:7d:c0:64:a3:0a:ed:
cb:7a:da:2b:86:dc:fc:6d:c6:5b:ca:88:5c:de:c4:9b:1c:da:
22:c5:fe:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:47 2023 by rpki-client on console-fra.rpki-client.org