Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/9d1fe019-f6d0-43a4-aa5e-6c51f404f53a.roa
File: 9d1fe019-f6d0-43a4-aa5e-6c51f404f53a.roa (raw, json)
Hash identifier: PIXE6QQx9WW/duKSjeTN4MV8pUyI+EheD8qUxdFKfCA=
Subject key identifier: 22:33:3B:34:EC:F4:24:55:95:7E:58:79:3E:9C:0E:3A:99:E3:67:D2
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 7A4749A9B7EB49DC77DDDF4E92F07B41A24C3808
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/9d1fe019-f6d0-43a4-aa5e-6c51f404f53a.roa
Signing time: Sat 03 Dec 2022 00:00:00 +0000
ROA not before: Sat 03 Dec 2022 00:00:00 +0000
ROA not after: Tue 06 Dec 2022 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7a:47:49:a9:b7:eb:49:dc:77:dd:df:4e:92:f0:7b:41:a2:4c:38:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Dec 3 00:00:00 2022 GMT
Not After : Dec 6 23:59:59 2022 GMT
Subject: serialNumber=3180356a0dcfaf407901991c78ae7187dfc0c59095e358684263cc986de2f741, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:f1:63:cc:3f:e0:e9:48:2f:1d:f9:d8:c2:1e:
66:bd:61:6a:68:37:21:4f:e1:fa:d3:af:9b:7e:c3:
f3:bb:bc:67:ac:ac:d6:13:1d:a8:8e:13:8a:fe:73:
96:32:fb:84:fc:56:db:14:34:75:db:67:01:3d:c7:
2c:ae:e7:6d:a6:d7:43:67:d6:d0:68:0a:71:86:04:
03:89:ad:20:2a:bc:d9:ef:f9:de:9b:6e:d9:41:4a:
b7:d6:97:8b:d5:13:1e:e5:46:20:54:0e:3d:60:68:
0b:cf:b4:e0:13:0e:a2:d9:35:43:d4:ea:5c:cb:e2:
d2:61:00:78:75:bd:24:09:55:ef:0c:ab:a6:4a:0a:
3f:84:40:bf:6b:00:b7:51:1c:5b:0f:f8:f5:d0:db:
9a:be:82:90:ce:82:64:89:04:b4:58:25:e1:0e:4a:
02:9a:96:9e:4c:09:0a:9c:0c:8b:ce:79:72:3a:fa:
15:57:e0:df:cd:b2:74:5e:f0:55:17:c5:fe:80:11:
19:06:c2:55:24:03:9e:14:f0:61:de:08:c2:8f:eb:
d9:5b:a4:90:43:2f:0c:76:03:27:52:d5:6f:0a:85:
4a:19:9d:7d:b9:ed:86:15:a9:07:98:8c:37:dd:7d:
4a:13:79:65:3c:d3:7c:79:18:2f:17:b3:c4:5d:e0:
61:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:33:3B:34:EC:F4:24:55:95:7E:58:79:3E:9C:0E:3A:99:E3:67:D2
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/9d1fe019-f6d0-43a4-aa5e-6c51f404f53a.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
95:de:3b:aa:c9:68:1c:7d:a4:8d:fe:c2:3b:ac:57:b9:ab:c4:
de:1c:a9:ac:02:8a:73:ef:07:de:22:66:16:2e:35:f5:d0:b6:
02:d0:06:1e:d1:48:72:f1:52:2f:8c:2c:89:1c:09:90:d9:da:
7c:0e:de:5f:ee:c8:90:d1:ba:81:b5:d8:a0:17:66:43:38:5b:
ee:82:96:d4:f6:2a:82:71:ab:d6:16:65:3a:6a:ea:32:c1:f5:
d4:8f:ed:15:4b:fe:33:8a:50:04:f6:68:29:28:33:cd:14:88:
62:aa:15:61:d8:5e:69:bc:2b:b5:c0:87:ad:59:ef:6c:30:09:
80:a9:25:ff:05:3b:63:bb:7b:32:24:86:2b:2b:20:cb:10:fd:
28:3c:45:c6:bd:22:b8:01:cb:aa:46:25:64:ea:9e:e1:6c:c3:
57:ad:6c:da:ed:72:29:5b:54:95:6b:eb:7b:b4:77:39:1f:d4:
5d:0f:bb:68:05:0e:c8:2f:19:17:4e:9e:f8:65:7b:86:f1:2e:
58:cf:0e:66:7c:52:ba:d5:3f:a7:33:b9:48:e7:c2:84:f9:c8:
8a:7e:fb:4c:ce:0c:1b:04:ae:52:f2:10:0d:89:dc:55:33:08:
93:c8:74:c6:b7:74:40:a4:8a:bd:d2:24:95:1b:88:a6:1a:81:
f2:e0:ff:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:49 2023 by rpki-client on console-fra.rpki-client.org