Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/a1958d06-cb4e-4712-8d79-e0c7ecfbd492.roa
File: a1958d06-cb4e-4712-8d79-e0c7ecfbd492.roa (raw, json)
Hash identifier: zjDw8ZMbMOWDKGI0PpVF89F+TQHX4/fni/tbELOs9Xk=
Subject key identifier: 96:57:65:0B:CF:14:66:4C:B8:71:56:51:B4:A6:48:64:A1:28:D4:6E
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 0BBA4004081728EBF2286C45C0026EE21F397ADC
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/a1958d06-cb4e-4712-8d79-e0c7ecfbd492.roa
Signing time: Thu 08 Dec 2022 00:00:00 +0000
ROA not before: Thu 08 Dec 2022 00:00:00 +0000
ROA not after: Sun 11 Dec 2022 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0b:ba:40:04:08:17:28:eb:f2:28:6c:45:c0:02:6e:e2:1f:39:7a:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Dec 8 00:00:00 2022 GMT
Not After : Dec 11 23:59:59 2022 GMT
Subject: serialNumber=2fcdb8de0ff5fbe8bf6f89edeb0587bf2aa0bb22e9a264f336a33a4c06083397, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:90:11:20:60:4f:70:d8:b4:18:8d:54:c7:2a:
a2:36:a5:aa:21:ad:03:b5:33:fb:75:78:97:3c:9d:
a9:b6:5d:4a:28:a1:cd:c8:25:f8:37:11:2f:be:30:
b0:bf:45:1f:3d:54:3a:46:54:6e:70:31:41:df:b1:
88:5b:20:ef:3d:ae:01:07:d3:31:08:f7:c9:d0:ba:
48:2f:5e:45:83:2d:6d:be:41:e6:d1:95:0b:96:b9:
db:a9:af:2e:e6:b1:d5:5b:6c:31:b8:7f:0b:0b:d7:
6e:07:34:d0:c8:46:0f:b1:6d:50:dd:49:a0:c0:99:
1e:55:79:fb:b8:ba:16:db:af:71:ec:67:78:2b:7c:
d1:95:d2:0e:ed:1c:62:9a:8e:aa:73:9e:62:d1:ee:
0c:62:ec:e6:0e:98:fe:62:ec:f2:5f:2f:44:13:d8:
b1:d3:7e:25:62:77:00:53:38:34:81:29:19:ea:6d:
a9:fd:95:63:b0:ac:7a:0f:dc:c4:bd:ec:70:83:ed:
a7:b7:9d:c2:b8:24:f9:33:2e:79:66:6b:e4:b8:cd:
be:c1:d6:a9:ae:ae:10:47:71:f4:00:44:62:7b:09:
5d:65:14:3b:7e:ff:da:34:b9:1c:e5:a7:99:80:e5:
9b:7e:ba:37:26:a2:ae:b0:17:f0:df:02:f2:c9:92:
9c:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:57:65:0B:CF:14:66:4C:B8:71:56:51:B4:A6:48:64:A1:28:D4:6E
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/a1958d06-cb4e-4712-8d79-e0c7ecfbd492.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
4e:16:34:a0:76:17:b2:22:1e:f1:d1:5e:db:e4:59:e3:98:7f:
d9:3f:f0:a1:2e:0b:89:19:c5:0f:bd:f3:94:e2:f6:d8:6c:f4:
39:2d:06:58:1f:e8:1d:57:08:27:b7:74:49:5f:42:7b:85:dd:
5a:ad:55:0b:34:1c:c7:db:f8:4f:14:50:73:fc:36:4a:8d:66:
e9:cf:ed:f9:60:25:90:18:f1:2c:c4:ab:16:77:9a:b4:d6:4d:
d5:91:82:f8:c3:68:a4:79:a0:18:85:05:85:ca:3c:bc:dc:9c:
94:17:e8:f2:f5:d2:09:69:b2:b4:55:01:6f:fc:97:d1:18:24:
d1:eb:b9:59:47:8f:f3:19:87:9b:66:37:25:71:89:e1:c2:4c:
16:af:79:d8:98:c0:af:54:bf:ac:c5:83:c5:13:8f:89:7b:c1:
4e:ca:ff:88:5f:48:84:3f:e7:c6:5e:06:f3:08:87:91:18:ba:
ba:d9:d0:9b:ad:5e:a0:39:8a:11:6e:13:9d:4a:a5:19:d6:d1:
7d:66:ef:bb:0a:e5:9c:07:8b:aa:40:ec:d4:f6:dc:88:72:c1:
6c:2e:ed:1d:d5:1f:41:2a:bb:27:a5:23:59:50:24:6f:1d:72:
98:6e:c8:ea:39:d9:90:06:8d:30:b4:d9:61:67:08:1e:bc:2e:
ab:be:0a:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:49 2023 by rpki-client on console-fra.rpki-client.org