Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/8a76117c-a91f-404d-9122-61b700d971c9.roa
File: 8a76117c-a91f-404d-9122-61b700d971c9.roa (raw, json)
Hash identifier: S7YIvWKPs/n2cZLKh7SzFMo7RB4FKZN2i9WBO4ouWfs=
Subject key identifier: 57:16:84:65:8E:6B:8E:A8:68:11:B9:4D:50:EB:D9:97:90:C5:C4:33
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 71584365D708657119C9C8B8E3127F480813F559
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/8a76117c-a91f-404d-9122-61b700d971c9.roa
Signing time: Mon 22 May 2023 00:00:00 +0000
ROA not before: Mon 22 May 2023 00:00:00 +0000
ROA not after: Thu 25 May 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
71:58:43:65:d7:08:65:71:19:c9:c8:b8:e3:12:7f:48:08:13:f5:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: May 22 00:00:00 2023 GMT
Not After : May 25 23:59:59 2023 GMT
Subject: serialNumber=88b0d3969cc5c1aef37e041eaca661648d13b87b3cfe7c8d7df83e7ee68947ce, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:b2:f9:eb:f2:48:c2:70:53:a8:b1:f3:9d:47:
cb:e8:d2:cb:1a:f1:e6:9a:01:dd:f5:be:cb:24:35:
01:56:d6:c2:31:c4:f6:8f:18:bf:b4:26:65:8e:9f:
11:2d:aa:ac:6a:ac:08:0c:51:3b:38:eb:24:2a:b5:
08:86:ee:f1:60:7d:a5:b4:9e:fa:ef:af:cb:2d:92:
80:0f:d5:05:78:8f:5c:0f:f3:f7:db:bb:d7:ce:6a:
5e:07:88:46:4b:06:2b:ca:e5:26:aa:b1:e2:a9:44:
26:2d:e4:15:82:af:2f:7f:69:30:59:15:52:b4:7a:
ee:64:ef:18:8d:dd:67:47:c0:0b:93:60:2b:ed:cd:
39:93:cf:e4:17:c7:ce:51:ae:56:7e:40:e3:58:69:
f5:c3:82:ee:01:1c:d9:78:28:41:c5:6c:7c:2c:da:
ac:13:dd:3c:6c:0f:24:6f:fa:16:83:e6:4c:51:6f:
ab:d8:59:38:19:09:c2:1c:3d:e4:87:ab:bb:84:bb:
8e:a1:84:4c:1d:42:15:42:87:e8:02:30:83:c8:cc:
c8:e3:9a:80:cd:8f:76:7b:6b:e1:f2:b1:c6:c9:e4:
94:98:90:d9:63:f3:ac:26:ff:e3:a2:c1:cc:b1:8a:
ec:f2:92:cc:a5:ff:bf:b9:91:a6:6a:e7:b7:36:fc:
6b:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:16:84:65:8E:6B:8E:A8:68:11:B9:4D:50:EB:D9:97:90:C5:C4:33
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/8a76117c-a91f-404d-9122-61b700d971c9.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
19:4a:54:f6:0f:a3:1d:86:5c:85:93:d8:3c:88:78:44:57:f1:
4c:dd:e3:b1:40:b3:d3:cf:9d:b8:72:cd:be:ce:19:36:eb:f7:
8f:e4:f1:0c:72:d4:dc:b6:c9:ef:16:52:2a:66:4a:af:cf:e2:
1b:0b:50:89:df:70:f8:e1:dc:b0:21:07:0f:f1:82:fc:d8:dc:
c6:f8:15:6d:45:48:9f:d9:de:1a:d0:58:0f:69:21:a7:9c:ae:
23:21:2a:54:82:bc:69:2d:18:a9:94:6f:59:51:c6:4d:0c:e7:
d1:5b:e0:b5:ea:a3:92:79:1a:b3:c2:b3:1f:40:c8:91:f4:57:
02:96:ec:79:ea:22:d8:7b:e1:78:38:bb:b3:42:fa:94:bb:ba:
97:b0:39:5c:5b:92:11:c4:c4:d3:c4:ac:72:d6:d0:a9:8a:63:
f4:1a:27:c4:c3:b3:d8:5c:6d:32:24:dd:8a:91:2a:32:7d:4e:
48:05:85:dc:aa:04:9a:3f:f1:3a:65:39:35:63:8d:b5:05:cf:
fa:79:08:7a:25:c9:ba:70:13:a5:37:27:8d:4d:d5:46:77:a8:
34:4c:53:63:90:ad:1b:ae:f1:a9:83:e0:82:8f:4f:92:98:c0:
51:25:73:14:00:0d:1f:2c:86:48:4a:f2:25:c7:ce:6e:a6:77:
06:81:2d:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:48 2023 by rpki-client on console-fra.rpki-client.org