Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/7cc7386d-a307-45e8-97a7-2854f739bc41.roa
File: 7cc7386d-a307-45e8-97a7-2854f739bc41.roa (raw, json)
Hash identifier: CTC7FLVjxFFl9TRRsuVmLSzN+o294XXVFprMaVgvLp4=
Subject key identifier: 64:CD:B5:55:7A:3D:07:A7:03:AA:7E:93:DD:9F:18:76:D0:41:52:34
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 5A7CB512CBB0DB21DA7E7C7982C9C41052E28121
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/7cc7386d-a307-45e8-97a7-2854f739bc41.roa
Signing time: Thu 29 Dec 2022 00:00:00 +0000
ROA not before: Thu 29 Dec 2022 00:00:00 +0000
ROA not after: Sun 01 Jan 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5a:7c:b5:12:cb:b0:db:21:da:7e:7c:79:82:c9:c4:10:52:e2:81:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Dec 29 00:00:00 2022 GMT
Not After : Jan 1 23:59:59 2023 GMT
Subject: serialNumber=ddeb83247a5bb708f35ed976eb01ee34ca2da3d707370210d3d58f227fbf2510, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:b1:56:19:64:4c:ac:d0:51:9e:95:4b:7d:89:
08:f2:97:d3:03:59:4f:25:fd:2d:b1:a5:5f:aa:8f:
ff:26:df:19:33:f5:3a:ae:f3:0b:e4:c6:3d:bb:8a:
da:51:95:21:ea:f2:7d:84:bf:51:5c:89:40:07:4d:
c4:1e:1b:8e:6b:f7:67:a6:2d:4a:b3:2c:20:d9:b4:
37:83:9e:73:ec:f8:18:ff:ec:ca:7d:b0:73:07:ad:
2a:8b:61:76:6f:ef:d3:05:90:1d:c5:67:6a:16:0f:
79:34:6f:ef:b4:3b:ea:10:3a:af:1e:16:1a:bf:c9:
a1:ff:e9:a1:98:8d:bd:6e:fc:f8:17:a7:bb:b9:a6:
f5:00:e2:69:cd:b0:54:2e:22:ea:44:f3:1b:a1:24:
2d:4c:b9:29:b0:3b:13:97:91:31:b1:fa:0f:38:84:
94:be:d0:18:fa:8b:89:4e:c4:2a:2a:e6:31:15:53:
a5:d2:94:b2:60:b5:b0:3d:eb:96:b0:6b:a5:0c:2b:
02:0d:a4:f0:84:e5:02:47:2e:65:2d:7a:5a:3b:0a:
29:df:60:4c:6c:38:61:64:41:b3:db:1c:ca:04:e2:
50:3f:9b:ca:7c:bc:c9:39:f9:61:67:1c:40:3a:6e:
09:75:60:be:26:94:a3:ea:6f:e3:1c:ef:0a:2c:b2:
d6:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:CD:B5:55:7A:3D:07:A7:03:AA:7E:93:DD:9F:18:76:D0:41:52:34
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/7cc7386d-a307-45e8-97a7-2854f739bc41.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
3b:00:ff:f0:11:8c:6f:a1:a5:c5:3d:0b:a4:16:27:5b:03:a4:
bb:1b:63:61:24:1d:6d:7f:0d:c9:53:41:1d:62:0d:e7:1d:ad:
ba:18:71:70:13:f0:9c:47:67:13:37:a3:c0:32:8d:47:fa:e5:
8f:bc:7b:e9:c3:ee:17:4f:35:6b:24:a8:b6:8f:1a:a8:64:d9:
81:6d:8a:62:37:82:c8:6f:49:36:a7:79:d2:cd:93:56:45:e8:
c7:86:b2:b5:f0:e0:1c:f0:40:63:a9:28:ca:62:09:78:c6:68:
2b:00:99:71:8f:f6:d3:67:9a:98:4e:34:f1:32:ce:a6:10:f2:
e7:dd:e6:32:f0:e2:73:5e:e9:51:a5:7f:f9:34:78:e1:37:26:
1c:93:cd:ca:11:15:e5:68:93:46:79:85:ba:70:87:c1:0d:29:
c6:34:8b:c4:88:4e:96:67:c3:ba:66:78:8e:a0:56:4a:8b:53:
28:6e:3d:17:13:b2:4a:45:be:07:6b:10:59:67:c4:c9:8f:e5:
94:a6:ab:01:ca:53:ca:21:25:f4:89:b4:1b:dc:20:83:c9:1b:
e9:6e:e5:cc:6f:10:55:fc:b5:9b:8a:c0:14:c4:47:4b:8a:39:
82:e2:04:93:4b:7c:0f:f3:90:2b:f1:13:6b:ad:b9:48:ff:70:
1a:f8:5a:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:47 2023 by rpki-client on console-fra.rpki-client.org