Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/7ca410f4-5e39-4a22-afe5-cf5c95834746.roa
File: 7ca410f4-5e39-4a22-afe5-cf5c95834746.roa (raw, json)
Hash identifier: oQgWjfqq2Y1W1Tz5Uok4yqUqd9n7KS26tPWslztEhV0=
Subject key identifier: 2C:BE:B3:AB:97:16:8F:6D:4F:2D:BA:BE:8D:38:93:9D:DF:29:0A:E6
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 06ED690C30225BFE2B37ACFD0E1699CA8EA38385
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/7ca410f4-5e39-4a22-afe5-cf5c95834746.roa
Signing time: Sun 08 Jan 2023 00:00:00 +0000
ROA not before: Sun 08 Jan 2023 00:00:00 +0000
ROA not after: Wed 11 Jan 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
06:ed:69:0c:30:22:5b:fe:2b:37:ac:fd:0e:16:99:ca:8e:a3:83:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Jan 8 00:00:00 2023 GMT
Not After : Jan 11 23:59:59 2023 GMT
Subject: serialNumber=9ac9ddb2e6b8f2c32de4dc32d57e904afd2754493c72bfe8980e9ca42fb3eb4b, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:3a:bf:61:3e:f4:78:a6:c0:e5:e9:56:1f:62:
83:19:41:80:eb:19:f2:3c:54:7b:51:69:5e:ca:4c:
d8:7d:16:80:12:a4:5c:b7:dd:0b:4b:93:7a:8d:29:
96:56:0f:6e:94:d0:97:08:58:be:97:ca:e9:7c:90:
c7:1b:b1:e4:8c:d2:98:d9:8c:7c:1a:79:b1:9c:16:
56:24:d9:b4:75:7c:ca:5c:60:5a:4e:5c:a0:8f:08:
03:2f:b1:9c:fb:24:ba:a8:21:ef:ce:b6:53:8e:6f:
66:d1:06:9c:e6:f8:46:06:7a:b9:d6:9b:1c:6d:28:
79:66:fe:a2:76:0e:9b:76:92:6f:43:6c:50:d4:c0:
45:a2:08:a3:ba:39:6c:ca:97:bb:a4:3a:b7:e4:c8:
55:51:0a:10:45:a8:41:10:45:68:32:80:db:6a:df:
75:51:f4:88:e9:e0:8d:9b:d6:d7:2d:8e:41:db:1f:
d5:da:7d:15:dd:cd:40:43:55:b9:9c:13:bf:2c:e0:
e7:b3:1a:c7:b0:dc:73:a7:ce:58:49:9e:14:16:8b:
6a:82:3b:a9:a9:7e:23:c6:61:8c:5e:b3:4b:31:50:
3a:84:98:ea:24:0c:82:37:b6:39:79:55:59:d1:6e:
e3:e4:0f:a1:39:50:72:a8:8e:2e:75:22:ff:f1:66:
7f:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:BE:B3:AB:97:16:8F:6D:4F:2D:BA:BE:8D:38:93:9D:DF:29:0A:E6
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/7ca410f4-5e39-4a22-afe5-cf5c95834746.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
84:a1:6d:16:83:ca:a0:83:f3:e7:2d:2c:84:23:8a:3f:cd:9b:
af:5f:f5:69:e0:36:5d:49:4c:2b:8e:43:39:81:74:ce:c7:4a:
e9:42:a6:e6:b6:fe:64:71:53:4f:4b:ee:bb:f7:1a:7a:9c:f4:
f2:44:44:61:80:00:31:a5:69:55:27:42:1a:06:d9:0a:82:08:
07:c9:ee:12:bf:2c:b1:a1:43:46:c0:7a:34:ab:0b:10:12:91:
17:d6:d7:13:e6:8e:ed:7c:1f:d8:b2:d0:fd:6f:1b:83:a0:40:
e4:9a:bb:f6:2c:41:8e:e4:84:52:86:92:eb:35:7b:13:0d:2b:
63:42:b2:7b:1b:36:fc:2f:03:1f:47:be:0f:33:13:ff:26:9b:
27:c5:ab:d3:6b:b9:51:b7:5d:b7:6f:de:89:29:d0:76:95:33:
f2:75:21:58:06:4a:a5:19:8b:00:7c:7b:64:e0:6a:b4:80:0c:
85:c6:61:ad:9c:3e:ce:15:ab:c1:1c:d6:77:70:31:27:d2:cb:
72:86:7f:6c:4c:3c:d9:63:4d:e5:eb:04:d9:ba:e9:7a:14:b7:
2f:2c:d9:82:fc:59:cd:08:9a:7e:da:e7:36:47:1e:b8:7d:63:
c4:2f:e9:df:3d:a0:54:f6:0f:c8:cb:db:a5:4f:aa:13:86:33:
41:72:99:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:47 2023 by rpki-client on console-fra.rpki-client.org