Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/a1cbee6e-dab0-4c01-a461-688e61c372bb.roa
File: a1cbee6e-dab0-4c01-a461-688e61c372bb.roa (raw, json)
Hash identifier: cIJu3N3cMoMkgIBAdxYgb0NSoio5Ht61RwwskpX/4RI=
Subject key identifier: B7:6C:AD:07:E9:68:3F:6A:B2:0F:ED:23:C7:40:1F:9F:C5:35:8A:34
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 5574A0662AC62DAAD41DF7AC8D6D727D1B888627
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/a1cbee6e-dab0-4c01-a461-688e61c372bb.roa
Signing time: Thu 27 Apr 2023 00:00:00 +0000
ROA not before: Thu 27 Apr 2023 00:00:00 +0000
ROA not after: Sun 30 Apr 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
55:74:a0:66:2a:c6:2d:aa:d4:1d:f7:ac:8d:6d:72:7d:1b:88:86:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Apr 27 00:00:00 2023 GMT
Not After : Apr 30 23:59:59 2023 GMT
Subject: serialNumber=bea5a426f341ccc742fe7b872e165b7c8fd224561fef6d92b8a14f7affda614f, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:93:28:0f:c1:a4:1e:5b:4e:fc:41:aa:b3:6a:
ac:46:e6:0e:61:aa:fe:d3:f4:83:a5:cd:08:55:81:
29:53:c7:fe:95:7a:6a:86:41:1f:24:79:16:df:f0:
fd:b6:f0:36:02:5d:6e:64:41:cb:ed:4d:f0:d5:9a:
9c:06:dd:d6:94:bd:b6:ce:71:24:a6:a0:fe:81:95:
8c:64:c4:4d:3b:42:3b:16:f8:92:b9:07:41:be:e4:
5f:9a:8c:d7:11:df:20:a3:83:13:d8:9b:f1:e6:0a:
96:20:1e:2a:ea:e5:33:78:50:36:f7:4b:18:42:50:
c6:65:45:99:0a:8d:0e:23:31:83:5c:e5:f6:41:37:
22:48:ed:12:5d:b0:b4:27:f4:25:e5:01:1e:e4:8a:
74:15:15:69:96:f4:a6:8e:d1:c9:2b:a4:74:a1:3c:
c9:1d:97:20:8c:4d:54:90:86:cf:04:13:58:06:11:
44:a2:fc:92:e6:6a:62:5a:cc:42:c5:d6:31:b1:19:
56:0d:b7:24:4c:3a:9e:b6:50:e6:cf:65:68:9f:06:
01:fd:78:98:d7:83:61:08:56:b7:fb:61:7e:fb:4a:
1f:94:43:fc:43:8d:ac:e1:ac:32:d2:04:9b:4d:af:
bf:25:3c:88:78:38:98:d7:7b:df:82:2e:24:b8:20:
04:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:6C:AD:07:E9:68:3F:6A:B2:0F:ED:23:C7:40:1F:9F:C5:35:8A:34
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/a1cbee6e-dab0-4c01-a461-688e61c372bb.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
ab:86:b5:bd:a2:d3:8b:b2:27:7e:6a:b3:9b:d0:17:68:87:53:
48:aa:6d:ca:95:1e:e0:3e:e5:a8:38:31:77:e3:75:58:95:a9:
a7:1e:df:8e:a0:0b:48:0d:5d:92:a4:12:64:26:f7:8d:ea:f0:
c9:c8:ed:2a:ce:e3:52:da:30:3d:66:0b:22:31:6b:54:af:4b:
40:dd:03:b0:ed:5b:f0:56:80:72:65:7e:bc:2e:38:78:2f:45:
b2:e6:2c:97:b2:a5:69:b4:2a:cf:5a:6c:d9:4f:18:e3:0f:81:
a3:6e:f6:a9:b7:8d:5d:7e:67:80:7b:73:2f:b3:c8:3c:0e:cc:
a5:fd:43:13:97:67:c3:bf:19:2e:d2:26:7f:08:32:2f:42:76:
bd:93:fe:b7:44:0f:14:75:af:78:5c:d4:ca:ee:b7:c5:96:98:
6e:1f:c1:22:74:8f:b8:cc:9e:8a:82:34:0f:e3:c7:c7:8b:65:
dd:b3:41:01:31:4d:95:53:16:37:96:fc:8b:29:b2:83:79:73:
2c:77:bd:4f:1b:e4:ad:12:82:28:5c:f8:b9:36:6f:a7:3f:45:
83:a3:60:0b:3a:a6:17:a2:36:41:c1:95:a4:6d:68:c1:89:0e:
72:a4:e7:e8:ac:5e:07:41:e6:da:40:12:b2:b1:c6:1e:db:c1:
e8:2c:dc:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:49 2023 by rpki-client on console-fra.rpki-client.org