Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/970d0ad5-dc26-4ec2-8a49-b944b78df10a.roa
File: 970d0ad5-dc26-4ec2-8a49-b944b78df10a.roa (raw, json)
Hash identifier: wUw9KbawmYOckUU98s/oVu02Fqc5Cn74lA30EONMMvc=
Subject key identifier: 59:F2:5A:D1:EE:26:DB:12:63:D5:F1:50:9B:E9:F6:44:77:F3:6A:4A
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 735D728495DF8898DC502DF1A548D0742D0EF860
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/970d0ad5-dc26-4ec2-8a49-b944b78df10a.roa
Signing time: Wed 08 Mar 2023 00:00:00 +0000
ROA not before: Wed 08 Mar 2023 00:00:00 +0000
ROA not after: Sat 11 Mar 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
73:5d:72:84:95:df:88:98:dc:50:2d:f1:a5:48:d0:74:2d:0e:f8:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Mar 8 00:00:00 2023 GMT
Not After : Mar 11 23:59:59 2023 GMT
Subject: serialNumber=e9dbecf4d79c9622c400513b8b859972ea1d2fa0264caec73a3491382780c5b3, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:2c:fa:48:8e:65:91:4e:65:61:94:76:65:06:
df:b1:06:9a:49:11:9b:50:17:d9:ce:db:2f:6d:86:
10:d5:b5:2d:15:c3:a1:8f:d5:95:f7:45:5d:c6:ea:
5d:1d:f2:e9:8a:79:bb:9e:99:e0:e3:9e:72:91:fa:
49:aa:89:0f:3b:d5:07:5d:b0:e5:36:98:0f:fb:e6:
bc:fa:5c:17:57:13:38:f5:c6:cd:e4:68:41:cf:8a:
09:8e:b9:be:be:fe:d4:cc:ca:f5:ad:f1:81:cd:70:
b7:92:f7:0e:87:b2:da:e6:34:31:e2:07:31:93:c1:
83:84:8a:6d:4c:c5:d1:9c:5e:65:53:3a:d0:94:d8:
d0:c9:1f:3b:0c:53:95:5e:4b:26:98:a9:ff:99:89:
54:0d:92:e3:42:3a:27:06:a7:1a:4d:f9:70:fa:88:
ce:fa:d6:89:a7:f7:a7:66:8d:e3:25:95:b8:89:46:
55:41:d5:02:5b:9e:76:e2:43:01:fe:68:37:0c:20:
f8:db:a3:29:0c:56:db:dd:de:64:fc:79:b6:08:f0:
f0:89:d6:56:f6:28:50:44:e3:a0:c8:25:b7:d8:fd:
26:cb:d2:4f:01:48:d5:f5:f6:cc:ba:d9:35:87:14:
12:80:23:74:e3:d9:81:08:8c:62:bb:d7:6c:47:b4:
a9:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:F2:5A:D1:EE:26:DB:12:63:D5:F1:50:9B:E9:F6:44:77:F3:6A:4A
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/970d0ad5-dc26-4ec2-8a49-b944b78df10a.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
b2:39:3a:71:8f:25:14:23:49:00:4a:9d:9d:5d:41:2d:5e:96:
b9:fe:d9:97:1d:a0:81:8e:ce:83:95:ab:03:95:9d:1a:90:fc:
2e:f7:57:51:23:d8:6b:ce:a6:32:eb:f3:e1:0d:05:2d:7f:1e:
4b:66:67:21:dc:e0:29:db:4d:30:a2:04:77:3a:f6:9b:94:95:
4d:d5:2f:71:1d:df:67:f5:87:a8:9f:45:96:21:a4:bc:81:c6:
e8:c7:f8:4d:fb:9e:57:03:6f:5e:f7:e5:27:a2:e3:5a:a7:cb:
48:9b:2f:47:d3:57:00:5a:40:b1:83:fa:bf:ca:10:36:63:24:
52:21:8d:8a:f5:47:eb:b7:8b:05:e1:a4:7b:98:37:76:9d:16:
ed:24:a3:1d:ea:d5:5c:94:57:37:03:bb:92:19:d9:eb:1c:c9:
9e:bd:bc:d7:6e:47:8d:e4:4f:6a:2d:83:d7:fc:68:93:55:f2:
59:2f:ba:1f:0a:5d:43:94:d8:48:0e:4d:af:ba:ff:18:f9:4c:
76:d8:eb:9e:f1:87:0a:bf:a8:ec:55:3b:58:d6:3b:e2:5e:6a:
16:61:3d:41:4f:0e:a2:15:07:56:b1:fb:e1:5c:f2:f4:50:b0:
e5:e2:f3:43:e0:0a:ef:2b:88:ef:8e:31:77:e1:9b:f4:49:3b:
40:89:04:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:48 2023 by rpki-client on console-fra.rpki-client.org