Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/9b78c694-523b-4c04-9e8f-4035c96a55ed.roa
File: 9b78c694-523b-4c04-9e8f-4035c96a55ed.roa (raw, json)
Hash identifier: Lr08CxDC99HudMx4jDvqe+pfK61RMfCsvDGzO6f/mWs=
Subject key identifier: E1:A5:FA:57:54:32:DC:61:A2:F4:BA:FA:2A:F7:52:DE:F9:BA:47:02
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 3454357AE4FC2F7D458EE71021B4470B6563CB19
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/9b78c694-523b-4c04-9e8f-4035c96a55ed.roa
Signing time: Mon 20 Mar 2023 00:00:00 +0000
ROA not before: Mon 20 Mar 2023 00:00:00 +0000
ROA not after: Thu 23 Mar 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
34:54:35:7a:e4:fc:2f:7d:45:8e:e7:10:21:b4:47:0b:65:63:cb:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Mar 20 00:00:00 2023 GMT
Not After : Mar 23 23:59:59 2023 GMT
Subject: serialNumber=ec6b03fc1ac32261ad3a8435e5d9e99a7a94b51b188a87c614c3897d97f5dbc7, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:2e:49:0e:ae:72:5a:b1:7c:2f:24:88:ca:79:
6a:03:9b:e9:c8:28:4a:60:b6:7d:54:cb:cc:f3:8d:
25:17:47:87:10:f2:54:02:6d:4f:18:79:3b:d3:02:
3f:98:07:08:79:4b:a3:a6:cf:02:53:81:40:fc:e8:
3a:a4:6e:62:a8:f9:2e:23:b4:88:4e:d2:80:95:57:
ae:83:d0:2a:22:9d:da:71:ed:d3:67:aa:e1:09:97:
3f:c3:23:70:58:f6:f2:9b:98:fa:e6:89:be:10:a8:
23:03:78:7e:49:fb:46:70:77:cb:98:94:df:a8:97:
0d:55:db:d9:62:5e:95:7a:fc:10:e7:ea:c7:e1:aa:
23:e4:28:1d:dd:d9:b6:85:b6:a8:40:bd:c7:76:7a:
7b:04:17:b0:12:7c:ba:2f:ab:43:87:61:0c:40:75:
61:52:50:66:d0:c5:b5:a2:b1:84:8e:a4:3c:cb:23:
c9:25:b0:39:70:61:e5:f0:d6:20:76:a1:50:01:51:
58:19:54:88:36:bd:6e:7d:c9:82:70:1e:bf:f5:8f:
4a:d4:00:a5:71:c1:27:d1:97:d4:cb:7e:3d:19:14:
67:fe:c5:b2:1c:1b:c8:dc:98:e9:26:52:3b:0b:12:
b3:57:97:4a:d8:2c:ad:4d:95:97:f4:30:a5:a5:6a:
11:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:A5:FA:57:54:32:DC:61:A2:F4:BA:FA:2A:F7:52:DE:F9:BA:47:02
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/9b78c694-523b-4c04-9e8f-4035c96a55ed.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
06:ac:a5:f9:dc:ca:43:13:82:4c:a6:d2:50:18:5a:70:7c:6b:
02:15:6d:0c:8e:68:06:92:d1:ba:6f:cb:8b:11:62:67:20:12:
a6:d9:31:9c:d7:7c:38:a8:3d:20:e4:17:f4:28:01:23:1f:7f:
19:e8:0b:f6:da:14:b3:66:51:c7:ca:64:9c:0c:67:f7:c4:a1:
b8:62:d4:34:ba:8b:75:54:60:99:bf:18:90:f8:09:16:ae:0e:
fb:79:57:b7:5e:01:d4:e8:77:9f:0c:0c:b2:fb:2f:18:63:16:
f2:8c:7a:ca:8a:09:7b:5e:3f:da:cf:81:22:52:89:25:49:5d:
aa:b6:fb:33:8a:b2:e5:1a:f7:d5:70:a5:4c:8e:a5:18:ec:44:
06:57:86:6c:a6:7a:f4:36:b1:f2:f3:5e:d5:2c:fc:9b:69:0b:
24:90:11:b3:84:52:a8:cb:21:98:af:41:db:70:de:cb:f8:f8:
58:bf:7f:b9:5c:38:ea:a2:67:83:ec:e6:fd:5d:dc:75:6f:e3:
e5:d3:5e:e3:d6:f1:7f:b1:ba:d3:09:0f:39:97:2d:77:91:51:
8c:9f:f1:63:16:3b:15:b5:26:a3:9d:63:ea:e6:b5:8f:39:62:
8e:36:07:72:de:a9:72:da:15:bf:69:a1:37:7c:0b:68:3d:8d:
ac:d2:05:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:49 2023 by rpki-client on console-fra.rpki-client.org