Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/79caa627-9f27-4516-9f07-012043c18544.roa
File: 79caa627-9f27-4516-9f07-012043c18544.roa (raw, json)
Hash identifier: OsjeWIKHfPp3cdD7gOT79RPJyv5za5EqofmUaiQhB2E=
Subject key identifier: 52:68:A6:F5:4A:58:36:55:8E:28:90:64:3D:B9:58:36:3D:2A:CB:EC
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 31D303279B2F17AE97E924E68A0DDAD3647D6D8F
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/79caa627-9f27-4516-9f07-012043c18544.roa
Signing time: Fri 07 Apr 2023 00:00:00 +0000
ROA not before: Fri 07 Apr 2023 00:00:00 +0000
ROA not after: Mon 10 Apr 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
31:d3:03:27:9b:2f:17:ae:97:e9:24:e6:8a:0d:da:d3:64:7d:6d:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Apr 7 00:00:00 2023 GMT
Not After : Apr 10 23:59:59 2023 GMT
Subject: serialNumber=b3f92461a7e170f098aeab5c7ac4432d50b96c71d1948ec697035336fb50bfe3, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:94:ff:40:2b:15:79:20:9b:99:45:9e:ce:44:
c7:15:84:d4:c8:bb:06:b9:1a:a4:d6:b8:2e:a3:be:
8b:c0:5e:a1:77:95:da:96:b3:1b:3d:60:08:00:6d:
9a:c0:c8:a7:7d:59:27:c2:12:07:78:c5:ef:b7:45:
97:b1:4f:05:be:52:e6:40:f0:4a:c2:c4:19:20:76:
0f:bc:a7:95:66:03:89:bf:e9:3b:41:a2:57:77:11:
47:33:57:b5:33:4d:f1:2b:c2:52:7d:cc:44:97:5f:
9c:fc:f3:42:ef:c3:66:9d:0b:44:6c:41:71:5e:25:
73:74:33:34:a1:96:41:32:d6:4c:f0:60:dc:4f:4d:
2d:0e:0e:f8:75:55:63:52:5d:6f:52:cb:25:aa:7c:
3e:fb:0c:52:cb:61:a8:bb:53:a9:17:d7:08:3e:99:
f1:37:3c:8d:f9:5d:a6:49:da:5e:8c:0f:f2:0c:1f:
2f:d9:03:65:2d:ab:82:6e:f8:b0:0f:f0:79:da:79:
8b:1b:cb:b2:a8:dc:b1:e6:5f:76:39:11:e4:6f:31:
c0:16:9e:23:0b:ee:47:28:92:b3:2d:d9:03:6b:92:
36:78:d7:2e:04:39:ad:89:19:1e:23:26:35:4d:40:
eb:70:51:30:76:ab:91:31:dc:db:2b:66:34:ec:47:
01:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:68:A6:F5:4A:58:36:55:8E:28:90:64:3D:B9:58:36:3D:2A:CB:EC
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/79caa627-9f27-4516-9f07-012043c18544.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
a8:66:74:1a:69:c9:6c:15:06:18:ec:70:88:34:bf:b4:bd:3e:
4e:bc:45:3c:20:ba:47:98:6a:35:f1:d2:e0:88:17:ef:94:92:
e5:8d:da:3d:bc:db:3f:45:dc:d9:25:75:2d:54:61:88:6b:75:
4f:ac:a3:5a:8d:75:a4:00:21:0e:cb:b9:3b:37:6d:a6:23:77:
76:37:60:76:50:9b:65:48:4e:6c:d1:30:2a:8c:d0:1c:68:f8:
00:b4:05:94:03:bb:4b:76:48:50:a5:4d:5e:68:ef:d6:4f:95:
60:38:2b:a9:bd:70:f3:e6:35:1c:6e:01:71:35:b9:15:40:25:
dc:97:79:1c:aa:44:60:55:c8:05:e8:36:f6:5d:2a:be:91:03:
e2:d4:e4:73:82:ee:b8:f2:8b:6f:cb:06:a9:a2:28:7a:a1:9c:
64:f0:b0:13:45:26:aa:aa:90:2d:bc:82:60:0c:e1:56:4e:e7:
99:61:f4:04:2d:99:fd:b7:0c:e3:b6:61:48:8c:9e:63:e0:40:
1d:ef:a9:c9:eb:0c:50:38:be:a2:2d:1e:0d:83:93:0f:58:16:
f0:80:c4:56:0e:a9:63:f3:59:c7:3a:19:dd:7c:23:a7:8e:a1:
4b:a6:9d:db:81:7a:a7:46:35:5c:58:f9:00:05:e5:d8:38:e8:
0c:6f:ad:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:47 2023 by rpki-client on console-fra.rpki-client.org