Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/75e8835d-573b-4c26-94c3-616e517a93db.roa
File: 75e8835d-573b-4c26-94c3-616e517a93db.roa (raw, json)
Hash identifier: zkR2o04ulSaGhd3S2CFLwZDFYGq5rmzCtKh9Ucn/CcU=
Subject key identifier: C0:D8:37:F4:BF:7E:C1:E1:B8:B7:CA:1D:B3:90:FC:81:98:53:59:F1
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 55E55B1362772398B71CA28882183ED95437C898
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/75e8835d-573b-4c26-94c3-616e517a93db.roa
Signing time: Fri 07 Apr 2023 00:00:00 +0000
ROA not before: Fri 07 Apr 2023 00:00:00 +0000
ROA not after: Mon 10 Apr 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
55:e5:5b:13:62:77:23:98:b7:1c:a2:88:82:18:3e:d9:54:37:c8:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Apr 7 00:00:00 2023 GMT
Not After : Apr 10 23:59:59 2023 GMT
Subject: serialNumber=faaf56afe2ffab5984e0b77e010ed653f79238c9ca6679afbea978fd8929cbfc, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:27:26:ac:d6:ee:c3:dc:f8:b4:e0:de:2f:0e:
fa:56:23:a3:07:21:40:99:17:c6:c2:c8:3a:73:56:
a7:59:88:da:17:4b:aa:b8:7a:11:b9:06:da:ff:79:
74:17:ac:21:95:43:a7:9a:09:a6:ca:32:78:6d:a8:
01:ac:cd:62:45:cb:c6:9d:0c:a9:f9:23:bd:ca:58:
85:78:95:21:07:b3:fb:27:c3:2f:4a:1f:98:09:ee:
bb:54:55:3d:b9:15:b0:e0:59:c2:18:f8:9c:c7:37:
d3:2f:cd:10:9d:0c:1f:88:b6:1d:e9:2e:d2:6e:d7:
77:7a:8c:80:ea:db:5f:0b:5f:5c:ee:be:b7:68:be:
57:d6:60:be:80:61:ea:af:c2:4a:52:bd:4b:85:af:
c5:56:76:02:a1:03:97:0f:11:ab:2a:35:23:f4:68:
9f:1a:0f:a7:ab:05:a9:55:f8:f5:b7:b8:c2:27:f0:
88:7e:97:28:85:ca:0c:17:99:26:b8:42:cc:03:8d:
d9:e9:0a:0f:4b:80:27:bd:7b:be:89:82:9c:e7:cf:
ee:3f:dd:c7:aa:3f:85:33:89:f6:b8:05:7b:9f:5e:
1c:0c:c4:40:2d:95:c0:00:71:e3:4b:7c:8b:bb:eb:
b7:94:c8:0e:c1:e4:d1:f4:d8:0a:74:0b:de:36:98:
a4:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:D8:37:F4:BF:7E:C1:E1:B8:B7:CA:1D:B3:90:FC:81:98:53:59:F1
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/75e8835d-573b-4c26-94c3-616e517a93db.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
5f:80:e0:8a:c9:d4:59:df:b2:d3:71:3c:2e:a9:95:d8:a9:19:
1e:24:f7:60:a0:13:a5:6b:f7:dd:00:9d:1c:ac:3d:b6:9e:38:
fe:d3:4f:ac:68:5c:8a:ef:27:17:5f:85:e2:cf:ec:74:9c:90:
fd:a9:c3:e0:5e:b4:d8:5f:22:cf:1a:5b:79:8a:e9:9a:ae:76:
d3:a8:72:96:a0:c3:e3:0e:88:92:53:ba:17:02:97:a7:60:5f:
67:3c:84:d2:82:2a:3f:ed:bc:42:aa:6d:8f:c1:5c:8b:fb:1d:
fe:ae:7e:72:8c:ec:14:c6:8a:45:0a:96:39:23:5f:4d:3e:e4:
aa:19:1e:32:d2:5d:5a:d2:b0:45:87:46:b2:24:78:b2:3c:dc:
73:db:f5:37:ff:3f:da:9d:3a:4d:f9:45:88:74:a8:44:b9:d6:
e7:1f:1d:4d:39:83:e1:19:30:4b:e0:5b:a7:07:a6:9b:3c:5d:
3c:f5:ba:e8:92:a9:ef:ca:3e:62:01:f8:2f:89:93:46:d4:48:
64:ac:0e:c7:fb:33:b6:cb:0f:87:8a:3f:b6:3b:f2:c7:57:0c:
2a:3b:ed:be:18:66:66:1e:14:2a:30:0c:52:b7:a4:7d:67:f0:
5a:1c:47:11:d3:17:82:31:59:29:5c:f0:4d:4f:23:02:e3:88:
2d:39:ef:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:47 2023 by rpki-client on console-fra.rpki-client.org