Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/856ecd9b-863d-4ca6-8e96-d457325f6d3d.roa
File: 856ecd9b-863d-4ca6-8e96-d457325f6d3d.roa (raw, json)
Hash identifier: 0Xe9IuvGkvkrdmtsmhVl6oKFn0vtscMUDb9kFSeaaF4=
Subject key identifier: 56:5E:B7:9C:0A:16:ED:BE:3C:AD:11:C9:3C:A6:9F:AC:32:21:92:2C
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 62069FAC5D7CA3D491306888C6B829E705FE2C78
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/856ecd9b-863d-4ca6-8e96-d457325f6d3d.roa
Signing time: Fri 10 Mar 2023 00:00:00 +0000
ROA not before: Fri 10 Mar 2023 00:00:00 +0000
ROA not after: Mon 13 Mar 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
62:06:9f:ac:5d:7c:a3:d4:91:30:68:88:c6:b8:29:e7:05:fe:2c:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Mar 10 00:00:00 2023 GMT
Not After : Mar 13 23:59:59 2023 GMT
Subject: serialNumber=30144fcfde0e0bd32621f00f0cfdc0c7cb9aee12c3ddfe11bd2c5db146654ce9, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:cd:b2:9a:83:f8:7e:79:9f:a4:e2:ed:17:9b:
84:aa:d9:0d:d9:08:e7:54:bb:06:69:b4:e2:45:44:
96:15:9a:36:a9:3d:61:7f:85:0a:a9:10:b4:e1:74:
c6:c4:7e:89:bd:16:fd:9b:b8:72:8b:27:70:ac:fb:
d1:ca:b9:9a:7d:ba:9d:db:ab:94:9f:fe:f1:f1:61:
44:50:17:db:1a:bd:bf:6c:27:e5:9f:2a:f4:9f:f1:
10:2d:84:d9:23:ac:5a:d6:88:14:58:6e:96:d1:c2:
f6:ef:6e:a0:33:ad:dd:e2:a3:32:90:32:7b:15:01:
98:41:b6:4f:4c:76:f2:36:1b:d5:09:e7:a2:5e:7a:
41:35:7f:fc:00:31:c0:95:3e:9e:cb:02:40:87:33:
6c:d6:7a:5d:a9:34:1e:7c:02:58:98:c3:3d:d1:20:
d2:fd:78:48:62:8c:c4:df:9d:25:87:2a:1c:68:d6:
ab:4f:34:5e:c1:d4:eb:c5:17:c1:35:7b:5a:30:cc:
ba:a5:2c:97:66:93:f6:45:63:01:a6:a2:82:25:0b:
0c:7b:6a:81:58:f5:21:e8:20:ae:81:98:3b:d3:10:
5d:b0:aa:b2:e4:22:f3:f0:d4:39:d1:74:5f:3c:d8:
bd:ba:21:6b:b6:b0:89:d8:da:6b:40:f7:c3:f6:db:
fe:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:5E:B7:9C:0A:16:ED:BE:3C:AD:11:C9:3C:A6:9F:AC:32:21:92:2C
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/856ecd9b-863d-4ca6-8e96-d457325f6d3d.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
6a:b1:88:7a:ac:be:a7:1c:71:9b:bd:80:01:0f:2b:1e:7a:b7:
55:35:2d:0d:01:21:29:58:49:01:60:57:8e:53:92:14:05:fa:
45:29:5f:e9:24:8b:cb:7f:bf:b2:9c:34:ea:ea:b1:6d:f3:af:
a7:a9:9f:3f:47:15:af:b4:22:b6:05:8a:71:52:01:11:2c:f9:
b8:37:a4:df:3e:d5:e5:bc:d7:15:e6:24:39:c5:52:f2:e9:d1:
56:8b:1c:ad:ae:10:1b:22:70:dc:d7:70:cb:85:a9:4c:c8:f3:
d0:dc:df:49:1b:80:04:d5:37:78:32:84:07:1b:e6:32:ef:f1:
a6:93:80:52:01:d2:e5:ae:2f:e1:58:85:c9:ea:54:7b:c8:54:
f2:86:04:e4:d8:19:30:7f:ee:4f:c2:54:aa:fe:ef:a3:5a:0d:
e9:5c:01:3c:b3:87:c3:d1:10:8f:76:56:7c:6d:85:4c:67:1b:
13:ba:44:5b:b8:a6:ad:e0:41:8c:44:f4:c5:6a:27:a1:22:eb:
98:e8:03:bd:fa:fa:8a:a3:39:d1:88:06:ae:72:ff:f9:21:50:
4c:29:23:d2:36:81:1a:e4:e6:a9:35:78:dd:98:c3:85:f4:06:
4e:84:0b:22:8e:e9:04:42:77:7b:88:bc:61:e6:9a:dd:bc:42:
2e:9a:d9:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:47 2023 by rpki-client on console-fra.rpki-client.org