Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/b1a9b419-a546-448e-86b7-c4a2622c99da.roa
File: b1a9b419-a546-448e-86b7-c4a2622c99da.roa (raw, json)
Hash identifier: Ri3ykPZP6AGhfSQ/OvfpmU0DynrwVF3gy4VVgjDv1aE=
Subject key identifier: 1E:DE:91:03:F2:13:76:CA:4F:7E:CA:C3:61:C2:C2:50:16:9D:0B:2A
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 1007CCE085ABBB62B22B9460D48B11D07BC35906
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/b1a9b419-a546-448e-86b7-c4a2622c99da.roa
Signing time: Mon 08 May 2023 00:00:00 +0000
ROA not before: Mon 08 May 2023 00:00:00 +0000
ROA not after: Thu 11 May 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
10:07:cc:e0:85:ab:bb:62:b2:2b:94:60:d4:8b:11:d0:7b:c3:59:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: May 8 00:00:00 2023 GMT
Not After : May 11 23:59:59 2023 GMT
Subject: serialNumber=b3319948cd91193048def5765b97379ec4fbc68d779fd3679df62d976c2a453d, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:09:3c:f7:8a:ba:ad:1d:5f:2d:c6:a2:20:69:
01:2d:c2:53:c7:1c:0f:25:d6:4e:f9:6d:50:aa:56:
4a:f8:4c:17:8d:a0:b2:0d:c7:fc:0a:f0:90:cc:3a:
7a:fe:4b:b9:53:15:76:ee:e3:90:84:0b:8c:6f:ef:
c6:79:ef:ee:1c:ff:0c:64:0a:a6:3d:79:e0:d0:62:
2e:28:2e:a7:c9:0c:46:86:3a:4e:05:47:9c:b2:d3:
63:ee:f5:47:d2:95:e6:cd:3d:d8:9b:76:bc:ac:1c:
81:8a:ec:38:95:c8:99:2d:5f:b2:12:ca:a3:04:17:
e2:ce:fd:56:c2:83:73:0b:53:44:8d:81:7a:ae:b8:
e5:fa:f3:c4:b6:ec:32:31:f3:3f:ad:52:08:2f:80:
70:81:a9:cc:f4:1d:e9:03:20:6b:9a:cd:0b:04:b4:
34:c1:cc:b7:d9:2e:56:e9:73:c1:7c:af:83:df:0e:
d6:0f:e5:85:44:53:fd:c6:4f:a9:bf:e4:6f:f4:47:
eb:46:79:2d:83:18:d0:1c:e3:0d:ff:1c:ac:71:e1:
89:e5:95:5c:68:fc:b2:21:ba:7f:82:7c:57:58:30:
bf:59:1b:2e:bd:a8:cd:a7:a2:1e:ee:94:04:c4:bc:
d1:54:b2:b8:c7:f0:6b:1c:77:b5:d1:17:d8:d8:ae:
48:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:DE:91:03:F2:13:76:CA:4F:7E:CA:C3:61:C2:C2:50:16:9D:0B:2A
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/b1a9b419-a546-448e-86b7-c4a2622c99da.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
aa:fc:2b:8a:95:76:08:a3:02:58:22:27:a8:db:7f:99:82:be:
9e:42:92:b0:92:b5:93:fd:1b:fa:16:6f:db:97:7c:12:78:ca:
a7:b7:0b:ea:09:95:5c:8c:4b:c5:34:5a:e5:55:84:f2:68:cc:
72:1b:08:7f:44:b2:20:fb:aa:c7:d0:eb:0c:d9:5a:46:bc:89:
a1:8f:44:16:0e:cd:9a:37:0a:6c:26:69:d3:36:e8:37:7a:f1:
07:de:52:31:2c:9c:14:8f:40:ac:84:fb:27:5b:85:13:ac:b1:
92:59:13:1b:5c:bf:9e:2a:ec:ab:a6:38:a4:72:93:76:e2:04:
ab:4b:03:63:1a:42:33:df:2a:b2:9e:09:a1:32:fc:de:48:b7:
72:bf:d8:f7:e0:e0:bb:38:74:1a:2e:7c:a6:5c:fb:8e:80:0f:
a0:04:d0:a0:49:29:47:de:2f:79:b0:53:5c:41:51:6c:66:07:
27:22:f2:34:4a:1b:cc:b9:f3:7b:94:f9:74:7f:0a:91:92:54:
26:22:1e:3f:1c:99:2f:ef:c6:af:59:3f:f5:da:dd:4e:da:2c:
47:4f:fa:7b:f9:08:b4:b9:28:7a:44:5e:29:79:9a:e0:fe:d9:
d5:7f:b0:16:03:d9:f3:21:98:3d:f1:de:02:ce:6a:19:db:7b:
57:ef:b7:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:50 2023 by rpki-client on console-fra.rpki-client.org