Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/8bdccc8b-f906-4a04-85ab-e14af8d204d1.roa
File: 8bdccc8b-f906-4a04-85ab-e14af8d204d1.roa (raw, json)
Hash identifier: n7zBPYxiHdZDInSjjtrqennrqMMYdIB9HwOmHvS8UkI=
Subject key identifier: 03:92:23:CD:C8:03:AD:F1:E2:D0:DA:C8:6B:D5:FA:10:39:7B:CF:4A
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 5B77BC3D3DA466A194EDAB823D1ABF3C2C5BD843
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/8bdccc8b-f906-4a04-85ab-e14af8d204d1.roa
Signing time: Sat 22 Oct 2022 00:00:00 +0000
ROA not before: Sat 22 Oct 2022 00:00:00 +0000
ROA not after: Tue 25 Oct 2022 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5b:77:bc:3d:3d:a4:66:a1:94:ed:ab:82:3d:1a:bf:3c:2c:5b:d8:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Oct 22 00:00:00 2022 GMT
Not After : Oct 25 23:59:59 2022 GMT
Subject: serialNumber=e9cb64d0e21f66fe323c7311ffe7b058b94db07a5f8df04bb4c7f6b65e8e970f, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:7e:1e:dd:6c:7b:c4:c2:9b:51:c5:bb:9b:c4:
cb:09:1c:e8:84:b8:a5:61:d0:ec:4c:fc:a5:3a:ef:
8b:11:cd:58:21:aa:4e:e3:cd:03:b1:cf:40:0f:06:
7b:92:88:2b:e6:af:ea:62:b0:c6:ca:af:4e:87:ac:
e2:1a:42:3f:99:03:9e:a0:29:0a:a1:46:4a:05:3b:
76:84:51:91:05:58:a4:0b:fb:7e:33:c4:50:b0:eb:
7d:0a:31:59:d0:b2:6e:ef:c3:1a:6e:f3:72:19:f7:
52:91:34:c4:64:f7:9f:44:17:ed:5b:34:92:c1:cb:
7b:73:7a:3c:68:a0:48:4b:38:5d:9f:55:96:51:d7:
0d:c9:08:05:cb:93:d8:f7:95:07:0c:bb:9c:b1:4c:
4a:38:79:e9:c5:22:dd:7a:d5:99:57:72:da:06:2e:
63:0a:8c:93:44:45:00:14:c7:41:f7:30:53:cb:15:
7c:de:4e:90:05:aa:d0:08:29:77:0b:0b:a3:3d:8c:
2c:6f:a7:49:e5:3a:e7:3a:c7:fe:54:48:3c:2b:de:
09:7d:b0:b0:b3:57:de:70:4b:f9:ef:14:c6:e0:a6:
1c:c4:79:20:86:17:c8:db:45:06:7d:db:66:1c:fe:
7a:cc:c2:a4:59:0d:90:a0:80:5d:8b:51:0e:d3:60:
a6:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:92:23:CD:C8:03:AD:F1:E2:D0:DA:C8:6B:D5:FA:10:39:7B:CF:4A
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/8bdccc8b-f906-4a04-85ab-e14af8d204d1.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
41:c7:18:14:43:af:da:65:1d:46:c9:f6:22:e1:39:5f:dd:bd:
e2:63:b4:63:a9:99:2b:2c:ee:02:fc:1a:64:6b:ab:a1:86:4c:
25:23:fd:cd:cb:f7:f1:26:8a:87:74:9b:79:8e:cd:08:41:b8:
01:87:b9:53:8e:be:eb:d8:83:1c:0a:f4:c6:a9:a9:88:a6:38:
e0:60:f6:06:0f:39:9f:91:57:eb:33:36:ff:a6:86:98:d0:c5:
68:ce:a5:2c:25:98:d4:af:8a:30:68:56:d2:ea:20:ae:d4:36:
a5:dd:46:29:4d:db:c2:31:93:e7:b6:9c:0a:85:8f:6b:60:e1:
b6:0c:5d:a5:c2:32:c1:7c:cb:95:6f:05:44:79:a5:3a:98:df:
ca:c0:44:7f:40:0e:5e:7c:ae:6f:88:78:ac:44:78:bd:98:c4:
dd:88:a9:10:d7:0f:7d:9c:bd:f6:9e:d6:6c:75:a4:b1:09:5c:
1c:86:64:ac:15:cd:e5:c8:79:53:80:b7:d1:96:e1:fc:d8:82:
f8:75:96:b4:dc:94:a3:f2:1f:f4:11:cd:b2:fd:1c:03:f7:82:
f5:6d:e0:e9:f8:68:cc:0e:e4:a1:da:ec:d5:66:ee:d5:3c:12:
bf:16:2e:5f:41:dc:0e:13:43:3e:40:e9:f7:20:cb:e3:07:ea:
4f:0c:ce:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:48 2023 by rpki-client on console-fra.rpki-client.org