Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/794ca54a-8a9a-434e-95bc-25e2d207f244.roa
File: 794ca54a-8a9a-434e-95bc-25e2d207f244.roa (raw, json)
Hash identifier: OtpRRtilG4qMAO+zRgG7qr5MiqlA8IPwLZ9UTpGhOmw=
Subject key identifier: BE:F0:DA:31:23:6A:45:F4:20:F2:A5:36:4A:96:47:C1:10:8F:B0:6F
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 7C859A95BAAAA6AEC9091141E31CBD27C96EE6FD
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/794ca54a-8a9a-434e-95bc-25e2d207f244.roa
Signing time: Sat 15 Apr 2023 00:00:00 +0000
ROA not before: Sat 15 Apr 2023 00:00:00 +0000
ROA not after: Tue 18 Apr 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7c:85:9a:95:ba:aa:a6:ae:c9:09:11:41:e3:1c:bd:27:c9:6e:e6:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Apr 15 00:00:00 2023 GMT
Not After : Apr 18 23:59:59 2023 GMT
Subject: serialNumber=a9b4e2c291fff94d58f7472c286f97e8045937c397099b8655b43f2e4d46cc4f, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:f0:c0:ac:87:94:c3:35:93:03:d4:ce:f3:5b:
6d:0f:7b:f8:83:bf:1f:73:bb:f8:88:f7:a2:47:da:
68:65:d6:0a:5c:7d:e2:0a:43:9d:f7:88:09:6c:26:
08:31:48:a3:41:2e:5e:a5:87:bd:55:f8:0d:f5:ab:
46:70:f2:bc:32:2a:a4:b2:2e:3b:55:17:40:41:8e:
d2:aa:7f:6e:ff:77:40:37:8f:e8:5d:34:03:ab:10:
b7:0f:63:22:e4:fd:0c:19:fa:82:33:b1:00:e6:ff:
bb:b3:0b:35:38:17:80:79:62:0e:9f:c7:c7:23:b6:
84:a8:d1:15:ee:5c:ef:c4:ea:5d:9e:0c:9b:3f:eb:
84:e9:d5:4d:2e:04:cc:1d:fd:3e:5b:b8:6c:a7:d2:
2d:12:af:b4:5c:ab:52:67:1c:14:54:ab:80:d5:7a:
c0:46:0d:18:a5:25:8a:e5:99:48:9c:1b:f0:e3:d8:
9a:9b:c0:d0:4e:45:a2:d4:72:54:2c:b0:31:e4:f9:
4a:08:7d:ff:3d:4c:0d:9f:73:1e:d0:e3:49:18:22:
76:f6:6f:74:84:e7:d9:47:45:f3:36:29:98:ce:b7:
03:42:7b:85:b8:07:e5:72:ab:34:9f:da:99:91:bc:
6f:4f:59:86:59:ad:d0:cc:c1:14:d5:71:79:0e:2b:
03:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:F0:DA:31:23:6A:45:F4:20:F2:A5:36:4A:96:47:C1:10:8F:B0:6F
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/794ca54a-8a9a-434e-95bc-25e2d207f244.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
c8:1a:f8:ef:79:be:a9:51:25:4a:91:76:dd:13:9e:9d:d0:10:
9a:cc:e9:97:df:6c:4c:ed:38:12:d3:c2:91:15:ae:41:10:d6:
4d:06:02:85:c7:c8:b5:62:9f:8d:ed:71:ed:63:d4:30:be:43:
8e:cb:87:a4:15:2d:b3:ab:8c:80:ac:b5:ac:de:83:e4:23:a2:
2d:95:35:24:b9:01:b5:6a:ca:d9:52:71:fe:f9:0c:5f:a8:b7:
38:1b:77:be:4f:8a:62:21:6f:ed:0b:61:c3:95:8b:26:c3:3d:
61:bd:23:92:85:e9:d5:91:1f:d2:3f:98:98:67:ed:49:55:fc:
3a:aa:9d:3f:7e:eb:d8:c8:2e:8e:b2:89:c8:a5:f9:35:5f:a6:
55:ec:ef:72:60:ab:d5:46:3a:86:01:65:51:15:19:83:cf:7b:
d7:2d:cb:07:ed:d9:06:9f:84:5f:8b:c2:70:07:87:93:88:35:
33:5d:44:39:17:9a:68:b9:9f:d0:87:8c:77:1c:07:9d:43:b4:
91:73:6e:fd:13:92:1a:af:36:79:47:79:9d:9e:01:fe:bb:1c:
aa:e4:81:fc:f2:9a:f7:35:d2:2b:26:bd:2e:f3:6e:19:27:9f:
61:0d:e6:7b:d3:99:e1:36:3f:b1:5f:9f:d1:c7:59:0b:0b:21:
5b:1e:be:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:47 2023 by rpki-client on console-ams.rpki-client.org