Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/71854fd6-3d1a-4b39-80e1-bae210dab03d.roa
File: 71854fd6-3d1a-4b39-80e1-bae210dab03d.roa (raw, json)
Hash identifier: 9pj4ZzEzlagJxNE7JzxpgVE92xpazaxjxQVk2FU+xAg=
Subject key identifier: D6:69:C9:27:73:78:8C:89:93:B7:9A:D0:DA:A3:59:4F:41:26:CD:4A
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 517A565C058EA45A93E844C94F6A802027C4D10D
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/71854fd6-3d1a-4b39-80e1-bae210dab03d.roa
Signing time: Sun 14 May 2023 00:00:00 +0000
ROA not before: Sun 14 May 2023 00:00:00 +0000
ROA not after: Wed 17 May 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
51:7a:56:5c:05:8e:a4:5a:93:e8:44:c9:4f:6a:80:20:27:c4:d1:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: May 14 00:00:00 2023 GMT
Not After : May 17 23:59:59 2023 GMT
Subject: serialNumber=c46efa13c91d97283d48a74d8553f92904a0557736e304dbfc482e0e68f5c130, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:27:34:e3:fb:5b:71:4f:87:9c:87:43:68:86:
ce:d6:20:3c:a5:81:d0:0f:51:f5:7d:09:16:e9:b1:
49:7c:ed:1e:f4:9e:1d:ea:70:d1:66:87:24:76:50:
d6:be:8c:0f:b8:29:15:e2:cd:01:51:9e:a5:cf:fd:
3d:91:16:a1:32:e3:61:62:ed:d5:5f:af:ca:1d:fb:
ae:dc:ba:7d:a5:a5:5d:7f:7d:68:82:6d:f4:ec:43:
28:b5:2b:e2:1f:a4:52:e1:0e:10:df:6d:c3:eb:65:
df:ce:f8:55:ab:f4:1d:ec:33:2e:6b:b7:1a:b5:29:
6f:40:a9:ab:0c:9d:cb:1a:b2:b6:5a:22:0f:03:46:
89:9e:0e:82:da:7b:69:6b:e1:c2:19:9e:dd:9c:d7:
77:2a:52:bc:fd:df:7d:de:77:4b:99:23:4e:92:05:
1c:4b:f4:c1:b5:0d:8b:95:08:71:b5:0d:94:4b:a8:
36:6a:cc:64:cd:a9:e2:3c:b1:a7:03:e8:a5:57:b2:
9a:2a:b3:21:3e:1d:54:2d:24:92:54:cf:9b:79:3f:
07:7e:48:7e:d5:b8:7c:2a:70:ef:94:c5:79:b3:55:
4c:37:be:15:26:a2:23:ba:6a:d9:32:09:b6:26:52:
55:92:83:79:f5:7c:2d:02:b6:55:29:78:1e:c7:d9:
5b:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:69:C9:27:73:78:8C:89:93:B7:9A:D0:DA:A3:59:4F:41:26:CD:4A
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/71854fd6-3d1a-4b39-80e1-bae210dab03d.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
5b:eb:8e:44:a7:0f:9c:19:83:d7:c5:be:d8:a8:f4:de:a7:33:
dc:6a:6a:1d:08:d0:6e:23:f5:0a:25:6c:61:0a:50:ad:ac:0f:
58:c5:46:d3:0b:b8:3a:07:0e:50:52:f0:43:31:77:17:ab:0d:
70:33:ca:8c:f3:fd:49:bd:51:a2:9b:dc:a0:23:5d:2b:db:31:
3e:f2:76:13:dd:83:37:13:6e:a4:6c:ab:62:49:80:11:35:76:
36:55:b5:f8:cc:85:c5:17:21:0a:7b:a9:d9:fd:fe:c1:20:19:
23:52:0a:3f:3e:4c:cb:74:d8:94:d6:44:4f:0f:74:31:9d:04:
e4:d3:40:c9:26:d4:c2:e4:31:9f:3d:a1:84:97:1a:5e:7f:ac:
e3:36:37:d2:a8:41:e9:67:1a:39:aa:1e:14:d0:99:31:7d:45:
34:a2:39:54:e3:a0:d6:f9:69:e7:2a:70:2c:7f:cf:5a:9e:98:
41:9f:b1:1d:59:9f:e1:85:b4:ed:50:9c:7b:72:4e:91:ba:c5:
a6:43:81:21:15:b9:ca:c1:63:6f:04:b7:bc:56:46:cd:21:70:
fd:f9:37:15:f1:e3:03:f2:38:ca:69:51:95:f2:27:85:45:3f:
6c:69:89:ac:8e:30:37:cd:d1:4c:fa:9c:e3:89:a8:21:2d:44:
ce:b8:44:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:47 2023 by rpki-client on console-fra.rpki-client.org