Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/79565991-7340-4ada-8d3f-c8a5d3440d67.roa
File: 79565991-7340-4ada-8d3f-c8a5d3440d67.roa (raw, json)
Hash identifier: DgzRtZfY6FO9xE/Xnd38LzlYmp551fJk6tlD7JFFx7Y=
Subject key identifier: D6:CC:66:5F:F3:49:39:EE:41:E6:1F:BA:A9:CE:9E:8D:D3:A9:9F:19
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 456BDB0FBB45CB101D68EF025D298988156D723B
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/79565991-7340-4ada-8d3f-c8a5d3440d67.roa
Signing time: Sun 23 Apr 2023 00:00:00 +0000
ROA not before: Sun 23 Apr 2023 00:00:00 +0000
ROA not after: Wed 26 Apr 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
45:6b:db:0f:bb:45:cb:10:1d:68:ef:02:5d:29:89:88:15:6d:72:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Apr 23 00:00:00 2023 GMT
Not After : Apr 26 23:59:59 2023 GMT
Subject: serialNumber=20ef1b407a197ed77901556db4788cc9b90fa9820b03837575d54a963e27918b, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:8c:45:d6:af:7c:b0:40:30:1f:9c:f9:fb:ca:
f5:01:62:88:da:51:6e:c4:d5:3f:36:45:30:63:5a:
5e:03:f2:67:e2:64:f9:68:b1:86:7d:d6:42:fc:ec:
20:98:79:a4:5f:7d:d6:75:cf:ef:39:e6:2b:c0:7e:
3d:71:93:4a:0e:82:17:43:b6:dd:64:6f:73:a8:6b:
4b:9e:ca:90:15:4f:c2:49:09:d3:25:b0:26:88:e4:
8e:0d:22:36:28:e5:2d:b4:d1:26:4b:af:aa:01:ac:
2d:93:fb:9b:6c:a4:08:f8:c2:6f:2d:18:85:05:c4:
53:57:0e:57:97:89:5b:d3:85:04:9d:8b:c7:6c:a0:
71:09:4e:f4:24:b0:c3:26:c7:12:8f:9d:99:16:4c:
9a:42:e1:1a:68:b2:57:fa:03:4d:72:64:1a:7e:98:
19:98:8d:62:5e:9d:c7:f7:71:56:9e:c2:fe:27:1b:
c0:ed:e1:e2:1a:1c:06:f7:18:32:ed:23:70:ca:73:
ea:50:7f:8f:fd:df:c3:d6:5f:f7:07:61:59:39:44:
38:9e:e7:9b:67:83:f7:fa:b0:19:ba:53:73:4d:1a:
0f:cc:18:ab:0b:0d:04:38:76:d3:ac:da:7d:4e:83:
c1:f7:0e:bc:61:a1:dc:f8:b7:3f:e5:69:d6:07:32:
ad:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:CC:66:5F:F3:49:39:EE:41:E6:1F:BA:A9:CE:9E:8D:D3:A9:9F:19
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/79565991-7340-4ada-8d3f-c8a5d3440d67.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
bc:42:b0:9d:74:8c:ff:14:ca:ce:f3:98:57:83:bd:0b:42:6c:
28:3d:5f:99:a7:ad:f4:74:0e:75:17:b2:29:e7:20:30:94:2d:
3f:f1:8a:97:66:d5:53:e6:4f:44:6f:e7:d2:e0:03:bf:2a:f7:
7f:59:56:fc:be:48:5a:79:6d:01:16:08:15:60:05:be:6e:4c:
c7:50:de:bb:96:21:8c:38:ed:37:e0:f3:74:72:e2:b5:74:60:
89:42:6b:12:01:71:f6:3e:4f:ca:9a:70:ce:d8:0f:d4:fc:1b:
45:dc:57:a7:a4:19:80:53:6b:de:3e:54:54:b8:56:ba:e1:5a:
9c:16:77:2b:1e:a1:f2:48:21:9e:38:fd:96:7e:c3:b3:d3:df:
f9:39:9f:94:57:b6:ab:37:89:ad:76:ef:e3:68:41:ba:a2:ff:
96:56:81:2e:ff:7c:a2:b4:88:e9:2b:fc:0b:82:79:b7:12:16:
6a:92:9c:09:da:64:e7:48:82:da:cc:03:73:55:5f:d6:14:2d:
57:a0:3e:e5:7d:3f:1c:57:f7:a4:b5:f1:d7:f1:50:8f:ab:a3:
50:88:bb:d7:59:a2:e0:c3:55:56:fb:cf:73:af:5c:7f:08:a2:
05:d2:64:c3:22:b5:76:ba:7e:b4:11:51:a2:64:e5:6b:8e:24:
ee:22:c8:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:47 2023 by rpki-client on console-fra.rpki-client.org