Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/b5ec81b2-88a2-4301-ba63-3ea047eb28a2.roa
File: b5ec81b2-88a2-4301-ba63-3ea047eb28a2.roa (raw, json)
Hash identifier: hNZZKLihISDHfcsh8ZGmLTlhmwlnKpGkfBxTTyXUKCA=
Subject key identifier: 31:7B:FA:38:6F:E1:4A:C4:49:20:40:D7:A1:5F:7D:AE:41:F1:EE:C0
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 19C6CB108BE5462EAD81D2B69BB7DEBC1B008E28
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/b5ec81b2-88a2-4301-ba63-3ea047eb28a2.roa
Signing time: Tue 09 Aug 2022 00:00:00 +0000
ROA not before: Tue 09 Aug 2022 00:00:00 +0000
ROA not after: Fri 12 Aug 2022 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
19:c6:cb:10:8b:e5:46:2e:ad:81:d2:b6:9b:b7:de:bc:1b:00:8e:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Aug 9 00:00:00 2022 GMT
Not After : Aug 12 23:59:59 2022 GMT
Subject: serialNumber=39ba765465155d23dbdc64cb47f3a9d5d01a64ed46bf6359c60285f8d756a112, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:fb:40:e5:02:9a:1d:e6:b1:63:4d:26:29:b1:
33:26:24:21:e4:36:b3:0e:f2:d3:13:98:6d:c4:66:
11:21:ca:48:ab:8b:14:5d:77:31:9b:e9:aa:b5:72:
5d:cf:09:27:5b:e5:38:77:13:da:42:3e:f7:cf:7a:
26:58:9f:ae:7f:ea:0d:7e:35:bb:40:b3:9e:7e:ec:
d1:12:ac:f2:8c:f0:25:4f:c9:af:f6:5a:f4:fa:fe:
98:a9:c0:06:8d:bd:3e:56:51:a6:95:77:a7:f2:37:
f1:43:83:60:b5:52:34:54:4f:96:27:fa:77:b7:a0:
97:e7:08:fc:0a:43:98:03:fe:b3:b7:1c:16:c7:76:
ab:6e:ed:62:4f:28:1a:07:c9:ce:53:a4:78:62:c3:
5b:e0:71:22:dc:e6:cb:4a:18:f0:18:d4:84:b1:3e:
b7:86:8f:ee:fe:2e:9e:80:4f:4d:ad:9a:60:c3:2e:
be:d7:d8:78:b7:46:cd:88:f9:74:82:fe:fb:04:c8:
bd:3e:47:1b:ff:21:d7:db:f7:d1:0d:15:df:67:99:
84:a7:73:9b:67:b3:6a:2b:53:39:67:fe:de:c8:32:
72:24:8d:41:67:8a:cb:db:be:b2:37:3a:84:b1:98:
a1:e4:85:71:0e:ac:24:81:91:6d:a0:ac:0a:ae:ba:
95:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:7B:FA:38:6F:E1:4A:C4:49:20:40:D7:A1:5F:7D:AE:41:F1:EE:C0
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/b5ec81b2-88a2-4301-ba63-3ea047eb28a2.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
07:14:fc:d6:a0:b4:09:fd:eb:1d:59:c8:ac:bb:c2:d6:ca:2c:
0c:54:06:c5:3f:b4:6a:d1:9c:cf:af:41:b3:06:53:97:c5:9b:
87:63:db:cc:c4:34:d9:49:0d:6e:8e:c1:cc:0e:39:5b:bb:d4:
30:c3:e3:ee:73:81:55:89:76:ef:54:75:c3:0f:74:27:28:bc:
c5:d9:ce:f8:01:1f:74:ba:f7:fd:79:15:0b:8f:b7:ce:47:64:
a0:ff:22:aa:77:0a:05:a6:91:dd:4b:64:a9:19:e6:16:5d:12:
a2:d3:ca:ee:8b:d0:52:f0:0a:c8:15:e7:88:39:0c:81:09:96:
9c:e0:c5:41:85:aa:6a:c2:72:46:ec:ee:31:48:01:ce:b9:53:
8f:dc:a3:3a:cb:e8:cd:88:8a:07:58:eb:64:77:1d:a2:71:19:
df:65:8b:ef:d9:85:01:b8:cb:d1:69:3e:15:40:ca:26:db:c7:
ca:d9:a9:90:3d:c0:00:b0:63:96:fa:5b:be:d8:39:87:1d:75:
bc:aa:7b:dd:3f:2d:23:88:3e:6a:37:2a:1a:66:1b:14:58:92:
f1:a1:d1:d5:2c:63:eb:eb:f1:c7:fe:3b:05:cb:bd:3a:d8:4f:
8c:b6:33:cc:d1:38:76:95:2a:d1:4a:27:5e:8c:12:7f:4a:d0:
ce:9c:f7:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:50 2023 by rpki-client on console-fra.rpki-client.org