Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/a03e6747-6b76-4095-b5cb-37987d38c98c.roa
File: a03e6747-6b76-4095-b5cb-37987d38c98c.roa (raw, json)
Hash identifier: AI6mFxIL2+8Wc9/o77EqftqBW2aM3nJ2my//8qziCRE=
Subject key identifier: FF:E6:DB:8D:C0:D2:24:9F:AE:4E:FF:92:C4:BA:A0:F0:33:2E:59:7B
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 7E8F267455AE2E502A9FC82479807465329CA9E2
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/a03e6747-6b76-4095-b5cb-37987d38c98c.roa
Signing time: Mon 04 Jul 2022 00:00:00 +0000
ROA not before: Mon 04 Jul 2022 00:00:00 +0000
ROA not after: Thu 07 Jul 2022 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7e:8f:26:74:55:ae:2e:50:2a:9f:c8:24:79:80:74:65:32:9c:a9:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Jul 4 00:00:00 2022 GMT
Not After : Jul 7 23:59:59 2022 GMT
Subject: serialNumber=c8d2935922eea5ee6c7000609abd3371a2da0c1b8468e9b3f61e0ae4db8d36b9, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:46:d5:a8:fc:74:06:e4:82:b9:2f:81:a4:b2:
99:ed:52:b4:f3:3a:5a:0e:37:ef:27:c0:4f:f4:cd:
9e:31:76:a6:c6:d7:7e:77:09:51:0e:76:46:f0:17:
68:dd:62:5b:c3:d4:0e:3b:4c:8e:1e:c8:5c:88:2d:
46:e9:d3:6c:6f:56:bf:a2:c1:bc:2b:14:e9:79:55:
43:13:93:ce:53:5b:bc:bd:43:f0:a9:72:1e:6f:0b:
a4:21:82:85:fc:73:8e:e6:6c:58:74:b5:42:ec:a2:
f9:16:58:3e:09:c6:1c:32:f6:d4:3e:18:b3:9d:ff:
14:53:74:89:de:42:2a:28:0e:c5:9b:d4:42:e1:8b:
5a:78:6f:27:88:09:32:68:69:44:49:7c:7b:0d:36:
eb:1a:cd:9b:3f:2e:b8:c7:01:22:a2:5a:58:71:37:
2d:39:db:84:3e:61:31:77:76:1d:ed:92:11:cc:75:
96:2b:27:b7:93:25:c2:5c:87:f5:e4:e6:c4:32:a1:
be:8c:fa:64:57:ed:03:18:41:54:b6:19:73:c8:e9:
b5:10:d9:a5:46:66:a6:af:f8:5a:40:4a:bd:91:84:
2c:40:70:eb:62:2e:01:1a:db:db:1a:71:38:95:f9:
73:2a:c4:a0:e2:d3:e1:4f:1e:5a:d4:a3:20:17:d4:
88:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:E6:DB:8D:C0:D2:24:9F:AE:4E:FF:92:C4:BA:A0:F0:33:2E:59:7B
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/a03e6747-6b76-4095-b5cb-37987d38c98c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
ad:ac:62:ed:92:4d:aa:d7:4c:93:a4:c9:3c:bc:50:c7:67:2d:
17:dd:66:ef:7b:d1:58:bd:d4:d9:03:28:a9:4d:1a:e4:7b:10:
0f:8f:7b:e1:a9:54:41:fe:f9:04:97:23:a3:8a:9e:e4:4a:eb:
fb:42:e4:09:2e:f4:c6:f4:f0:51:4b:39:2f:4b:39:48:bb:a4:
63:75:a9:53:e1:6e:97:dc:cb:be:57:d6:b8:3d:ad:33:d7:7b:
cb:04:49:d9:80:cc:b2:0b:df:6a:fe:f3:0c:c5:17:da:87:2d:
cf:19:d9:8b:f8:3e:1f:a0:52:e3:0d:95:82:6a:2b:33:bf:19:
57:f1:0e:16:eb:90:34:d5:a6:5e:23:64:36:84:c3:0a:33:3d:
ef:04:25:94:1f:63:1c:c5:c4:fc:df:70:1e:34:1a:49:2c:a2:
d5:e5:a7:70:22:e6:77:6c:3c:44:5e:79:7c:13:a0:a2:60:10:
1b:8f:72:ef:c4:8a:1c:25:17:55:1c:9a:57:d1:01:d7:d9:e1:
c2:24:be:5e:be:75:82:cd:74:bf:9f:05:d6:fe:ee:68:6a:9e:
1e:81:9b:4b:34:fd:46:f7:fb:45:ed:c5:8e:a5:38:9d:22:7b:
b4:10:da:9b:78:64:b3:c1:ce:8a:35:d6:00:72:3a:d4:6a:0d:
29:19:d2:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:49 2023 by rpki-client on console-fra.rpki-client.org