Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/ac884f29-df3e-4ce0-b744-cde9c697f419.roa
File: ac884f29-df3e-4ce0-b744-cde9c697f419.roa (raw, json)
Hash identifier: nniV3ozB1Na8aZEqeDVpIZO53ciWhNCr0JVVycFQlcY=
Subject key identifier: 50:93:16:23:94:EF:C5:A1:38:DC:3D:9C:E0:B7:00:59:10:D0:CD:39
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 0843401A6A3BDBEAA301EA68DA6EF6AE189B006A
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/ac884f29-df3e-4ce0-b744-cde9c697f419.roa
Signing time: Mon 15 May 2023 00:00:00 +0000
ROA not before: Mon 15 May 2023 00:00:00 +0000
ROA not after: Thu 18 May 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
08:43:40:1a:6a:3b:db:ea:a3:01:ea:68:da:6e:f6:ae:18:9b:00:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: May 15 00:00:00 2023 GMT
Not After : May 18 23:59:59 2023 GMT
Subject: serialNumber=8c449aa8c8f3f50ebf227ec01174bffb97c82a2a0a5406010980387415d76267, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:bb:95:c4:43:2e:f1:1c:df:1e:7f:7e:9c:c7:
6b:e2:18:2f:ee:9f:41:35:4c:c5:29:0d:0c:26:91:
19:1b:5c:e2:19:c5:02:f5:ad:9e:9a:89:a5:2d:9c:
2c:b4:db:0f:75:33:0c:e1:bf:37:a3:77:5f:cf:bf:
21:cb:89:16:ab:01:a0:d5:ae:6d:12:ad:42:b0:6c:
74:dc:b2:18:fd:87:db:64:48:f8:73:30:dd:be:c7:
ee:55:ca:58:e2:08:45:03:be:ce:1a:a3:47:84:59:
e5:77:77:bc:aa:4c:a2:23:7b:71:f0:9c:50:64:af:
25:51:96:1c:88:b6:4d:f1:4d:7e:03:4c:27:b6:69:
03:e8:9b:cd:e1:e6:e6:d8:c3:4d:b2:14:d3:ad:69:
93:5e:01:80:88:1e:96:c5:a9:d7:ac:cb:80:0b:ca:
01:77:3f:f5:7f:f7:13:43:9f:8d:5e:f1:41:80:14:
42:ef:da:66:49:aa:46:15:76:1d:f1:da:90:0d:1f:
49:70:e3:ad:05:cf:a9:91:b7:7d:cc:e9:31:33:24:
4a:35:b4:26:42:18:9b:2a:ad:d1:87:bd:86:dc:d4:
cf:6c:1f:7e:67:7d:db:b2:4e:11:4c:e6:80:72:d8:
14:e8:38:1c:ea:75:41:63:84:74:26:de:1b:55:9c:
a7:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:93:16:23:94:EF:C5:A1:38:DC:3D:9C:E0:B7:00:59:10:D0:CD:39
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/ac884f29-df3e-4ce0-b744-cde9c697f419.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
59:fb:f8:1b:0a:27:e8:02:ee:c4:66:58:14:e4:8e:32:d1:f1:
43:c8:14:aa:d9:6a:87:ee:0e:54:3e:12:02:83:23:69:61:ab:
1f:af:cc:8b:93:ba:08:ba:9b:b1:71:6a:0e:78:93:55:fd:2d:
66:94:92:36:b7:71:1c:78:01:94:f3:16:02:19:fa:d9:03:fd:
73:2b:1f:be:7f:62:18:8d:0e:aa:44:f7:5e:50:49:ab:23:7a:
0e:29:3d:50:63:4a:cd:2b:30:89:37:8d:94:d0:8f:03:f6:ae:
5e:26:0c:af:1e:40:e2:08:f4:94:be:37:12:b0:bc:f9:2b:3a:
3e:73:8c:74:4c:6b:ef:c4:45:9c:e9:17:c3:12:cc:19:ed:4b:
de:5e:a4:7c:27:be:3e:93:c4:54:85:3a:79:b5:07:b2:25:64:
41:55:cc:c1:3c:c4:ee:c5:21:93:2a:f2:06:94:f5:a1:15:eb:
c3:34:7a:74:e3:be:4f:d4:14:7e:f6:f5:dc:b3:47:53:17:94:
07:be:8c:88:6a:46:7e:40:08:dc:40:c7:c4:57:2a:26:3d:05:
09:c0:f5:a8:1a:77:b9:1c:3c:6c:e7:6a:8b:93:a3:95:90:68:
c8:13:0c:af:21:19:f2:01:59:e2:26:ec:7a:c0:30:53:d6:a7:
b9:7c:51:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:50 2023 by rpki-client on console-fra.rpki-client.org