Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/7fc86c3e-117f-498b-bec3-266ca177deee.roa
File: 7fc86c3e-117f-498b-bec3-266ca177deee.roa (raw, json)
Hash identifier: SqYUh7DTZr/6SqIr5YCEdumOfNvHagkU/M7W7Tbnd7k=
Subject key identifier: C5:DE:9E:DB:CB:C9:DF:75:41:41:39:A0:EE:FB:D4:1A:15:26:E5:3F
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 533A27A70F57F658C25B53BC754EFE01C12BB75A
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/7fc86c3e-117f-498b-bec3-266ca177deee.roa
Signing time: Sun 30 Apr 2023 00:00:00 +0000
ROA not before: Sun 30 Apr 2023 00:00:00 +0000
ROA not after: Wed 03 May 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
53:3a:27:a7:0f:57:f6:58:c2:5b:53:bc:75:4e:fe:01:c1:2b:b7:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Apr 30 00:00:00 2023 GMT
Not After : May 3 23:59:59 2023 GMT
Subject: serialNumber=357cc9f5af311768ee22ceeaf9218d97cdef42cd2de3fbe77cb93b44c2cab5a6, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:f8:a2:1c:ce:a9:c9:9b:58:34:73:ad:c4:ec:
6a:3c:ce:70:6a:73:c1:d8:33:a3:fb:8d:52:3e:6c:
a7:63:41:5f:4f:76:38:5b:3a:d3:31:3a:bd:02:96:
3f:96:09:17:bf:22:f4:73:27:aa:ae:64:19:1c:5a:
5f:b6:bd:ed:a7:9d:86:fb:e8:9e:7d:35:a3:81:8f:
77:cd:00:6b:55:3c:73:e7:b4:a3:a1:5b:8a:d8:62:
69:eb:00:89:ff:ee:f8:c7:98:1b:06:cd:f4:73:cf:
6f:f2:8a:87:90:84:fa:5b:1c:60:0b:30:0f:ca:a1:
ca:1b:23:d0:a2:08:83:42:c4:e7:06:5c:3b:51:42:
55:77:db:ce:17:e9:44:a7:65:9d:24:83:e7:7a:ef:
2d:05:9c:ec:ae:c5:c8:4f:9c:02:02:da:58:c0:4a:
78:90:f2:a3:76:89:06:2a:18:0e:08:fb:4e:45:d6:
c3:c8:27:f4:c5:53:e0:20:e3:ac:13:d7:77:c3:3e:
6e:a3:ef:d7:d9:c7:6b:bd:73:c5:60:12:9f:95:5e:
26:c0:36:b8:08:f0:33:f6:94:87:1a:b9:30:91:d9:
02:7f:1f:07:74:d4:ff:ea:e0:78:40:9a:72:51:6c:
43:a6:82:d3:d7:88:78:4c:cd:79:78:b0:e9:18:70:
1f:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:DE:9E:DB:CB:C9:DF:75:41:41:39:A0:EE:FB:D4:1A:15:26:E5:3F
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/7fc86c3e-117f-498b-bec3-266ca177deee.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
9f:38:4e:ea:b1:1a:c0:d9:3d:3d:0c:72:3f:d7:27:4c:89:99:
c3:b7:1e:f3:c1:e4:e3:fc:c4:bb:bf:f4:93:85:dd:52:1a:01:
f4:2b:92:ec:2f:b4:e4:a4:cb:f9:46:92:64:63:04:55:a5:c4:
78:5b:4c:bb:f5:57:5c:d3:d9:6b:15:49:3c:4e:f4:9c:83:ba:
6f:f3:07:48:4b:35:e1:ed:8f:09:42:80:ea:fc:c2:93:b3:85:
25:5d:46:e7:2c:82:b7:d3:82:5f:e7:1e:86:ae:4e:92:95:76:
ce:0e:b6:1c:f5:86:46:be:1d:41:79:3c:34:31:0f:14:da:e6:
57:2d:dd:e7:b5:86:f0:8b:06:dd:fd:e5:3c:58:49:ed:8a:f8:
02:89:01:db:fc:96:f9:46:6b:af:a7:ac:5a:81:e9:29:ba:88:
20:3a:21:ba:f4:fa:f2:f5:65:47:75:c6:1e:cc:e5:40:73:ea:
b0:7e:86:2d:9d:19:9c:0e:0b:8f:a3:4e:65:fa:f3:b1:27:d9:
ef:f5:ef:5d:db:2c:57:ab:b0:c4:c6:a1:fb:e9:a4:14:c9:51:
d5:c8:5e:6d:4e:2f:17:09:c3:8e:2d:4a:e0:dc:ae:a5:89:87:
27:43:a3:b4:00:bc:b6:41:9b:16:60:9a:99:e2:62:88:52:0d:
e6:19:7b:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:47 2023 by rpki-client on console-fra.rpki-client.org