Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/aef85e26-f6a8-4bc5-87e3-734c3a427d57.roa
File: aef85e26-f6a8-4bc5-87e3-734c3a427d57.roa (raw, json)
Hash identifier: Yxt//096gZxDXI2d17P31kJAhO8zJT64YpzWu1pBR5U=
Subject key identifier: 8E:75:41:ED:9E:F7:EA:7F:51:A6:59:25:6D:82:AE:EF:E8:15:6E:F9
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 5CBE18D510138D082740A2CA610846391F1368BE
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/aef85e26-f6a8-4bc5-87e3-734c3a427d57.roa
Signing time: Sat 29 Oct 2022 00:00:00 +0000
ROA not before: Sat 29 Oct 2022 00:00:00 +0000
ROA not after: Tue 01 Nov 2022 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5c:be:18:d5:10:13:8d:08:27:40:a2:ca:61:08:46:39:1f:13:68:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Oct 29 00:00:00 2022 GMT
Not After : Nov 1 23:59:59 2022 GMT
Subject: serialNumber=9f2798ae14915dcd60b54c5e503b3f29c67ebecbbf6f52a536d9ec24bc9d97a8, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:bc:21:e3:f6:32:e0:9d:bd:3a:bc:e3:73:15:
60:42:11:86:70:fd:06:be:02:44:30:12:3f:81:11:
a4:58:a6:98:e2:05:70:ea:89:12:4a:b1:0c:97:cf:
01:d0:80:e6:65:cb:05:78:8a:78:f4:a6:d5:3b:46:
b8:e5:02:6e:60:8e:ee:ed:a4:07:65:c8:3c:72:70:
5e:3a:ec:d7:7d:60:52:c6:d0:8c:04:4c:72:d5:cb:
9e:3d:4d:46:e5:de:39:d1:12:19:53:b0:6c:9a:59:
00:dd:17:6b:2b:46:7d:fc:c3:17:08:2d:c1:96:ce:
13:bf:f8:67:ed:cf:ec:99:4f:11:92:57:73:f6:7b:
68:46:56:a0:1d:05:78:ba:75:02:36:c6:46:19:b8:
4e:11:60:11:95:c9:47:6f:99:d1:13:b9:bd:65:fc:
9c:5d:9d:a3:73:37:bf:6e:ce:63:c7:6c:41:be:79:
05:90:74:95:d7:a4:3c:86:86:e9:fb:97:ba:14:4e:
80:be:a9:78:81:85:08:65:cf:18:82:69:da:31:5e:
2a:27:fd:59:14:78:ab:7c:5a:7f:1a:c0:01:ae:c7:
a3:ff:b0:ba:f4:ec:49:f5:dc:4e:c1:86:ee:7b:fd:
b9:d5:76:af:72:6c:a9:6f:1c:06:c7:c6:3f:ec:00:
4b:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:75:41:ED:9E:F7:EA:7F:51:A6:59:25:6D:82:AE:EF:E8:15:6E:F9
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/aef85e26-f6a8-4bc5-87e3-734c3a427d57.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
06:24:0e:5a:8e:e3:6d:82:e4:a1:6b:15:9d:67:7d:21:fc:c5:
bc:a8:30:62:78:79:c2:d0:b9:2f:3f:54:36:6e:81:5f:71:b2:
34:90:ba:90:a2:24:b7:ed:9a:61:2d:ae:c5:b7:ed:77:50:b2:
e8:b7:5c:90:7c:8c:68:b4:d2:a6:87:42:3c:d4:52:81:2d:b4:
96:be:4c:27:3a:61:88:42:1e:f1:05:f9:13:87:40:ff:95:87:
97:0e:2c:b7:b5:49:df:ef:b2:81:a0:9f:f4:b7:4e:2d:64:fc:
62:66:50:48:47:a3:52:6e:fa:51:db:c0:5c:6b:f8:d4:cb:14:
71:c5:c4:14:51:f7:bc:8c:c6:78:e0:5d:15:29:d3:63:9e:83:
f8:55:05:4e:34:a2:e3:6e:82:4f:13:68:d2:b4:9c:80:40:67:
7e:ad:2c:e4:c9:7d:ad:60:f6:c2:27:55:da:ea:85:4a:e1:10:
f4:eb:f8:d9:85:ed:b7:f3:49:7f:40:cb:8b:29:bd:ba:91:c2:
0b:93:e8:68:34:c5:f5:59:e3:e2:6f:95:77:ca:57:e3:52:f2:
e6:50:7c:b6:0a:50:ba:0e:24:9c:0b:11:e4:bd:f6:c5:20:72:
0b:72:6d:78:f9:c0:59:16:85:26:c7:3a:3f:5e:31:76:e4:44:
99:42:db:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:50 2023 by rpki-client on console-fra.rpki-client.org