Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/8ba4b478-d844-436a-86d7-0491f88af410.roa
File: 8ba4b478-d844-436a-86d7-0491f88af410.roa (raw, json)
Hash identifier: EVIKbFTM1bdJRP7IB6Ygm2c+FEpXzgvD5DsPO6eVliQ=
Subject key identifier: 89:55:CA:2F:27:DC:4B:78:30:56:A0:EB:F2:2A:3C:88:A5:82:84:5F
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 288F2540DBD7CAF09BA7FA64A0A1D4ED57158005
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/8ba4b478-d844-436a-86d7-0491f88af410.roa
Signing time: Tue 30 May 2023 00:00:00 +0000
ROA not before: Tue 30 May 2023 00:00:00 +0000
ROA not after: Fri 02 Jun 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
28:8f:25:40:db:d7:ca:f0:9b:a7:fa:64:a0:a1:d4:ed:57:15:80:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: May 30 00:00:00 2023 GMT
Not After : Jun 2 23:59:59 2023 GMT
Subject: serialNumber=5af2d2650b80a4cce0ac7cc7eaec10cf5adaef9057a748bd647a502c8de1420b, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:21:fe:83:b2:3b:9a:1b:09:f6:99:8d:5a:89:
82:9f:3f:eb:8c:5a:c4:4c:ef:0d:b0:03:28:2f:38:
f6:2d:86:9b:68:8f:11:76:7b:fd:d3:2a:fd:f3:3e:
02:59:d9:9a:cb:91:80:f4:64:90:f3:69:ea:4c:9c:
c0:0e:e0:62:7d:f7:14:81:5c:0b:b2:bf:48:11:42:
6c:3d:01:a7:93:50:25:b0:16:ff:e9:a2:bd:c4:0f:
29:da:30:85:b9:5f:2e:33:b3:59:d3:43:39:b4:7d:
1e:98:12:93:3d:46:6b:99:af:12:a6:5c:cd:0b:30:
c9:72:b2:55:a6:d7:e0:ff:78:61:a8:2b:4b:a5:39:
5b:59:a1:74:65:e6:ab:03:96:ce:b2:64:c6:e3:ee:
19:e7:28:8a:f9:31:1c:0f:5a:47:b6:46:dc:11:65:
8e:c8:1f:3d:e6:7c:5b:6b:ed:d1:cc:3d:02:3a:83:
2f:77:98:f7:1b:72:41:fe:96:c3:45:68:12:61:64:
a3:18:5e:60:fe:8f:33:17:e2:9e:d3:2b:6e:00:0c:
6b:a2:42:0a:f1:36:5a:35:1f:bb:c6:d0:48:75:c6:
48:b7:ac:7d:77:5a:0f:a5:c8:4e:e3:18:47:9f:08:
4e:14:3d:01:90:5a:e5:9a:59:55:04:8e:c1:a5:b4:
0b:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:55:CA:2F:27:DC:4B:78:30:56:A0:EB:F2:2A:3C:88:A5:82:84:5F
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/8ba4b478-d844-436a-86d7-0491f88af410.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
ae:f2:b7:58:6e:b3:0b:03:72:12:4e:69:30:70:62:c3:75:76:
e4:49:a1:6d:76:47:55:b2:8c:34:94:8a:c5:95:e9:62:b1:f8:
29:ab:11:63:a0:6a:84:38:bb:18:62:23:70:41:fa:5c:bb:41:
69:f7:73:c5:b0:97:11:3b:9a:fd:2a:36:63:a4:cb:26:df:aa:
a0:c6:8a:cf:cd:30:e3:8f:63:ca:b6:46:d2:05:f6:46:da:2f:
47:34:3e:c4:c1:a6:ba:ba:0b:55:54:cc:21:36:a8:41:60:89:
52:49:74:2c:32:12:c1:3e:f8:d3:55:37:74:a6:41:18:70:03:
d3:86:c7:94:2e:ab:72:f2:f3:05:88:73:0f:0b:81:6f:84:0f:
c3:aa:5b:45:5c:f4:6d:c3:13:c2:a9:0f:b4:01:76:31:06:43:
c9:9a:30:7e:9d:99:ea:e6:d1:5b:a6:33:d8:91:0e:b3:f2:b1:
47:dd:53:fb:2b:15:69:e0:da:f0:3b:f1:48:42:df:a4:18:eb:
03:9f:b8:77:0e:f3:02:33:27:27:79:80:72:3b:ed:aa:e4:73:
90:54:b9:9a:97:e9:0b:79:88:54:60:5b:f0:b3:cf:47:3b:2d:
74:42:7e:0f:25:68:51:69:84:94:5c:90:35:74:e9:6c:66:8e:
8f:33:cb:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:48 2023 by rpki-client on console-fra.rpki-client.org