Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/8a37c308-0c34-410a-80df-40b91bdc2504.roa
File: 8a37c308-0c34-410a-80df-40b91bdc2504.roa (raw, json)
Hash identifier: a7H5iDERe911BoE0y2t7GxBPTXk96oq4X980Sq/vocY=
Subject key identifier: AB:FC:B0:5C:AD:66:B4:8E:92:D6:E1:BD:41:C5:1B:B2:87:F5:55:B3
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 2CB56BAB565BF421A9349FB82755D732FE3732AC
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/8a37c308-0c34-410a-80df-40b91bdc2504.roa
Signing time: Wed 02 Nov 2022 00:00:00 +0000
ROA not before: Wed 02 Nov 2022 00:00:00 +0000
ROA not after: Sat 05 Nov 2022 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2c:b5:6b:ab:56:5b:f4:21:a9:34:9f:b8:27:55:d7:32:fe:37:32:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Nov 2 00:00:00 2022 GMT
Not After : Nov 5 23:59:59 2022 GMT
Subject: serialNumber=53ef7b60caed0281514f041b9259e8c01313b60a7160dcc9f1c657d9905d44e5, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:ca:04:b5:ee:2a:33:e0:71:de:dc:ec:a4:10:
ce:4f:9b:03:db:fc:51:8b:f9:17:57:32:bd:8d:ee:
12:29:42:45:40:bb:d2:09:42:4c:96:04:c2:e5:fd:
7a:88:0c:d3:cf:f3:b3:df:14:14:e6:63:17:d8:bf:
fe:32:1e:40:fd:fe:82:f2:d8:4b:b6:fe:06:c3:2e:
d4:f6:4f:c5:cc:60:8e:c4:e1:52:d7:a3:c8:02:14:
96:6d:6c:9e:90:97:7a:39:5f:59:52:b4:41:50:30:
c1:a1:61:da:88:3e:1c:2b:dd:80:8f:63:dc:64:58:
ee:a7:ea:30:88:e9:c4:ce:8f:5b:b2:b9:ed:b1:c9:
8d:ed:b2:a5:b5:87:92:c7:da:8f:92:c3:15:3a:86:
e0:5d:ea:d2:ab:8a:cc:18:57:2f:7d:62:df:93:9a:
3e:7c:ea:08:0f:8e:32:9f:7b:ac:ee:4a:bf:67:83:
33:b3:1c:1c:b9:6f:51:2f:bd:84:d7:55:64:d4:94:
70:44:8c:aa:ee:9c:d9:04:5c:22:5f:86:42:ea:10:
7d:91:3f:93:d7:6a:56:b7:7a:3f:6d:dd:1f:ec:9f:
a7:21:ab:f1:79:71:8a:c2:a2:72:3a:48:c6:a4:ed:
2a:27:83:c8:74:65:53:2d:f1:93:11:3c:91:f1:02:
24:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:FC:B0:5C:AD:66:B4:8E:92:D6:E1:BD:41:C5:1B:B2:87:F5:55:B3
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/8a37c308-0c34-410a-80df-40b91bdc2504.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
37:df:f7:2c:94:cf:02:58:0a:74:44:79:20:9e:f1:0a:db:96:
a4:a1:5c:99:81:af:b3:85:53:01:3f:bf:10:a5:99:65:95:1f:
3c:c0:b1:f4:f4:39:2a:a7:dc:cf:77:11:fd:70:15:87:5f:a6:
54:04:2f:f3:24:c5:f8:e2:db:5b:5f:c3:a2:04:ed:04:ad:17:
f6:93:cb:5c:18:94:d2:e7:7f:cf:78:35:9c:8e:36:ab:7a:7f:
66:66:26:23:8f:01:26:f6:9f:03:bf:c9:5e:79:b4:52:b5:e2:
bd:e6:51:34:32:f9:d3:c6:8b:30:22:c8:a5:9b:29:e4:60:a6:
6b:ee:d7:a4:c3:e8:46:62:14:cd:0e:3f:e6:85:0c:7e:e8:53:
3c:53:71:b0:4e:a7:07:93:69:b0:e3:c4:33:9d:f7:84:95:48:
ef:df:8f:c2:94:9e:5c:e7:43:14:28:74:69:8e:55:0c:e9:0d:
18:3f:91:f0:f8:75:0a:91:ac:5c:ff:63:3e:34:ab:6d:76:07:
38:5a:bc:7b:23:f9:ac:cb:fe:7b:5d:01:bc:d4:ed:f6:3c:51:
77:c8:1c:02:8b:1c:e6:21:e1:a2:80:c4:c5:0d:68:ec:ae:81:
08:be:09:b7:93:ab:6b:18:9c:1a:47:b2:5d:37:fe:fa:79:ef:
36:cb:66:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:48 2023 by rpki-client on console-fra.rpki-client.org