Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/83d2aa88-12a0-44c4-aa5e-7268ec4011ee.roa
File: 83d2aa88-12a0-44c4-aa5e-7268ec4011ee.roa (raw, json)
Hash identifier: 3Ni+B1ctWIJuwE3DrXHuio0gU1+i6/GAxKpF2Mwl1XY=
Subject key identifier: A6:E9:4F:60:B4:C3:46:54:7F:19:5D:1F:21:97:1F:B4:CD:DC:A0:A6
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 54B9DC85F7355D5105E8164C99307C8CF44D7A15
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/83d2aa88-12a0-44c4-aa5e-7268ec4011ee.roa
Signing time: Mon 05 Jun 2023 00:00:00 +0000
ROA not before: Mon 05 Jun 2023 00:00:00 +0000
ROA not after: Thu 08 Jun 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
54:b9:dc:85:f7:35:5d:51:05:e8:16:4c:99:30:7c:8c:f4:4d:7a:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Jun 5 00:00:00 2023 GMT
Not After : Jun 8 23:59:59 2023 GMT
Subject: serialNumber=b1e14ba6c3ec6f16cfa0ec7c9c47cbb32db460d42be3f0ab1f5c99a3a3f9afe9, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:3a:b4:4b:bd:bd:8d:67:94:f0:1c:94:7a:c4:
35:68:fd:3e:db:4f:b6:4a:be:62:71:33:99:7b:19:
d1:58:98:ef:0b:23:32:6e:dc:5c:e1:41:10:79:03:
14:07:3c:17:89:ab:4c:aa:14:27:5d:68:d4:85:7c:
ba:2d:3e:1b:6a:7e:b1:77:f5:5b:bd:58:67:c4:c1:
ab:0c:e9:de:69:69:c9:7b:4f:3d:a1:f3:bf:59:7a:
45:0f:dd:b7:52:0b:86:93:10:90:ce:bc:52:e4:6c:
23:ca:39:40:e8:e9:dc:06:19:b9:cf:d5:aa:2c:04:
79:17:39:55:64:99:61:48:c5:80:72:f3:06:80:69:
1b:ce:cc:38:ac:83:65:26:1b:4e:b4:a9:7f:70:7e:
cc:72:03:93:9b:3b:b2:8f:17:61:2c:0b:ca:d7:ed:
d4:86:b5:a1:3c:8c:2a:eb:75:d5:fc:9c:e2:7b:95:
4b:a9:71:8b:11:61:e6:4a:24:0f:6b:97:f2:57:f7:
c7:e5:24:3a:98:02:ae:da:f0:56:d7:4c:5b:de:6a:
97:de:5b:a0:d4:92:22:92:71:e5:62:67:f9:f1:39:
10:2f:df:25:ad:5a:56:7c:bc:e4:7c:2d:23:10:e6:
66:0d:da:3a:68:b7:df:97:32:13:19:32:86:a7:95:
b3:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:E9:4F:60:B4:C3:46:54:7F:19:5D:1F:21:97:1F:B4:CD:DC:A0:A6
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/83d2aa88-12a0-44c4-aa5e-7268ec4011ee.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
1b:07:e4:55:a3:08:0d:4a:94:02:3b:07:9f:47:7a:14:8e:24:
9d:f7:02:68:fd:e8:2b:5a:5e:b1:3d:07:43:e8:ce:e5:c2:9a:
53:d5:26:30:12:3b:58:35:23:b5:bf:ad:e1:32:15:c4:50:c3:
8b:fa:69:d2:7a:a7:5e:ef:a3:59:0d:3c:09:33:0d:3f:57:64:
6d:8b:d2:2f:37:da:8b:7f:08:3f:76:d2:12:96:e6:08:48:7b:
4e:ed:07:90:4c:10:e2:34:fd:6e:55:9d:1c:59:97:0e:14:de:
06:41:03:58:14:81:05:c8:be:a7:a3:e8:41:1e:4d:8d:98:4a:
1f:71:f4:f0:81:65:ec:16:46:6e:e2:8d:aa:d8:67:89:1b:1c:
55:86:b8:83:a0:d1:5a:cb:5b:57:98:07:12:1f:f2:39:52:31:
93:98:4f:ed:98:dd:ed:c1:06:1b:34:ec:86:73:b0:81:5d:c5:
ad:43:f8:52:18:c3:e8:8b:f4:40:20:10:b4:bf:ea:a8:81:8a:
82:23:0e:be:7e:25:99:df:da:0f:d1:5d:77:ed:59:dc:28:20:
18:16:25:22:be:c8:5c:34:3d:13:14:03:90:70:7f:1a:ce:7b:
89:7d:35:cd:c8:a1:58:c5:f8:a4:ec:ea:bf:1c:51:81:c5:c5:
56:94:ba:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:47 2023 by rpki-client on console-fra.rpki-client.org