Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/afa6bdf8-0b47-417e-853c-023805cb6c16.roa
File: afa6bdf8-0b47-417e-853c-023805cb6c16.roa (raw, json)
Hash identifier: BWP2ccAbz+NYt28qK4uZ3+4nlaPkxIR4a6EMTBVGmPg=
Subject key identifier: 9A:EB:BF:EF:DF:76:6E:1C:25:87:8C:8D:C2:06:29:B2:CC:13:FB:8E
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 1385E07CFA2A37E2FDB08169A8E10649F3607162
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/afa6bdf8-0b47-417e-853c-023805cb6c16.roa
Signing time: Sun 11 Dec 2022 00:00:00 +0000
ROA not before: Sun 11 Dec 2022 00:00:00 +0000
ROA not after: Wed 14 Dec 2022 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
13:85:e0:7c:fa:2a:37:e2:fd:b0:81:69:a8:e1:06:49:f3:60:71:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Dec 11 00:00:00 2022 GMT
Not After : Dec 14 23:59:59 2022 GMT
Subject: serialNumber=35287b7685d2a2f55d3fba8d9558ecddf493273dc785943bbef366ba0238d8c4, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:a1:c6:2e:24:31:3d:88:8b:75:b6:2e:a0:b3:
c5:76:f4:7e:e0:68:93:aa:d0:9d:ad:71:d5:e7:15:
b8:af:bb:c3:1c:e8:d8:73:d8:83:e3:01:ab:5e:e6:
94:32:d6:ca:83:91:35:58:71:f1:cc:8b:b0:ec:25:
5a:fd:8b:eb:ce:08:be:cd:77:89:eb:7f:c6:ae:b2:
e0:2a:4c:2a:d3:85:2d:08:d6:41:f8:14:1b:8e:45:
91:43:5b:83:70:ce:d9:15:16:51:cc:01:03:64:85:
05:cc:4d:e5:b9:f5:e5:0f:12:be:8f:25:80:d4:46:
bf:ba:84:24:83:4d:66:e2:76:1d:1f:f9:c9:ce:3b:
c4:25:32:6d:7b:ec:e6:fd:fa:e5:f6:6a:27:ee:8e:
d1:f9:f7:76:27:30:bc:c9:5f:b8:99:2a:96:50:26:
0a:89:af:48:15:96:42:89:08:4d:bd:46:aa:6c:1b:
9e:52:7e:68:23:a4:88:df:50:cf:08:a8:07:6a:fb:
b8:d1:7b:93:36:8a:ee:c3:28:24:58:40:cc:4a:db:
8a:d7:29:3b:a4:9f:b9:6c:e4:8b:f4:0c:af:3b:2a:
ee:11:1b:dc:f5:33:9d:92:40:c6:e3:6a:8b:64:6b:
43:1e:a2:f3:65:5a:8d:35:ee:52:e7:0e:e4:f7:7c:
1b:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:EB:BF:EF:DF:76:6E:1C:25:87:8C:8D:C2:06:29:B2:CC:13:FB:8E
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/afa6bdf8-0b47-417e-853c-023805cb6c16.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
8e:e0:3a:58:e6:1e:b5:89:d9:2c:ae:93:2c:c4:8d:a3:60:4e:
66:c4:cb:5c:91:ab:8d:0f:46:0f:96:f6:83:48:7e:21:a9:a6:
8b:7f:11:1e:00:52:7b:85:2c:ed:0c:e4:5b:0c:59:d9:f8:01:
7d:22:ff:70:2e:ca:85:15:a4:71:c2:94:5c:8f:f4:c8:65:61:
11:83:b2:e3:a3:8c:33:e8:53:fd:17:4d:df:ce:0b:bd:7a:16:
16:e7:8b:76:20:42:ab:55:bc:f0:d5:ad:14:9e:7c:b1:3b:fd:
12:94:39:fe:3e:db:c8:dc:88:36:b0:c3:ed:cf:89:16:6f:72:
a3:8d:8c:9e:d0:3d:ee:4b:89:f3:98:8f:78:e5:4c:c9:52:6d:
10:05:dc:1a:50:97:8c:07:81:0a:51:8c:1d:f2:e1:da:ed:70:
9d:c6:9a:be:d4:5b:fa:e2:2e:8d:cf:6c:1e:bc:fb:0c:77:bd:
35:8c:f9:c7:38:11:a3:9a:c6:d2:dc:92:a6:b5:4d:29:b4:19:
c5:e7:6e:e2:68:e3:c3:c3:ef:9a:a3:c8:31:c2:82:3a:0c:d3:
ec:be:d7:9f:e9:01:92:fc:77:f1:4a:3f:e4:68:b0:42:7a:59:
a0:e3:b8:11:fe:4e:2e:97:5a:aa:be:53:29:2e:12:50:ba:0f:
78:55:d2:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:50 2023 by rpki-client on console-fra.rpki-client.org