Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/b778c74d-5206-44f4-8f33-26e0a82134c0.roa
File: b778c74d-5206-44f4-8f33-26e0a82134c0.roa (raw, json)
Hash identifier: 6cz3dBYOBuitYpp0O8hScNB6BBF/UMZF1jUHq1r1AWo=
Subject key identifier: C1:57:F1:70:04:14:1F:81:D1:19:A2:19:7C:69:C4:F6:0E:81:F6:4F
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 703A38E3BF80B6B9FC6ED45DED7686876E2AC151
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/b778c74d-5206-44f4-8f33-26e0a82134c0.roa
Signing time: Tue 28 Feb 2023 00:00:00 +0000
ROA not before: Tue 28 Feb 2023 00:00:00 +0000
ROA not after: Fri 03 Mar 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
70:3a:38:e3:bf:80:b6:b9:fc:6e:d4:5d:ed:76:86:87:6e:2a:c1:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Feb 28 00:00:00 2023 GMT
Not After : Mar 3 23:59:59 2023 GMT
Subject: serialNumber=64fbb5813d0b72d3139f6407ab36f8101077e19e45a6ce0b7c74f1a3d07c512b, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:a2:36:1f:11:f7:98:37:24:96:fb:5c:56:f6:
4f:29:d2:be:f0:26:ac:86:c1:ee:0d:b4:29:b6:86:
f0:e9:ec:c7:44:e0:9f:a3:90:c5:50:86:52:36:6e:
0a:42:be:25:57:e0:64:7c:d4:33:9b:b6:31:2c:d4:
33:65:5a:3e:35:54:11:7f:9f:70:cd:d0:1a:d0:94:
55:cf:12:0c:f6:e8:83:cb:4d:f3:74:c9:f3:e9:f5:
11:fd:a6:98:57:04:4b:0f:7d:34:e9:f8:e0:ae:76:
da:cf:d8:da:b6:8e:11:73:39:ef:d0:2e:d2:70:3a:
78:26:d2:e4:48:77:21:7b:60:ec:ca:bb:c4:58:0a:
84:0e:54:97:aa:6b:d0:bb:a0:3c:02:4d:06:a8:9e:
25:e5:06:38:7d:1a:f0:e7:a4:38:61:6d:8e:02:8e:
ff:fc:21:ff:83:7e:fe:56:65:ff:8e:0d:02:c2:4b:
98:9d:fd:cd:4a:c4:0f:b9:f5:85:a8:1d:ab:a0:c4:
d7:02:d6:de:a1:72:7f:cb:bd:1a:54:a4:bc:32:8b:
8c:3d:89:a5:e3:10:ea:8d:a2:1c:f8:0d:ea:dc:96:
36:84:ec:82:21:09:07:2c:02:93:98:c0:3f:5a:a3:
4d:de:00:39:89:ba:f0:bc:9b:74:7c:11:1e:f3:6d:
32:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:57:F1:70:04:14:1F:81:D1:19:A2:19:7C:69:C4:F6:0E:81:F6:4F
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/b778c74d-5206-44f4-8f33-26e0a82134c0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
99:95:4f:a8:2c:cf:42:79:b2:f4:41:5c:57:72:5b:b6:53:e0:
84:18:4b:fd:0b:10:49:a9:87:0f:55:2b:e9:93:b2:48:11:30:
a0:72:73:d1:5f:7d:4d:8a:97:d0:08:cd:77:4f:31:bd:81:c5:
8f:51:41:dd:69:17:02:cf:d7:25:db:2d:79:95:b2:1c:68:5b:
28:78:50:97:18:7e:30:07:89:71:7c:61:e0:c7:a8:b4:a1:c6:
30:eb:0c:83:10:81:15:d6:62:84:e9:ef:81:c5:65:2e:9e:2f:
4f:22:63:03:f0:3c:99:5d:0d:2d:ba:29:08:46:13:f2:52:84:
70:17:8c:ec:7d:7f:15:d0:a4:4c:01:ea:61:82:73:d8:51:c5:
79:f8:1d:84:3c:84:f5:41:9a:ba:73:87:d0:e8:3c:d9:31:2f:
a3:15:9d:0a:04:0f:9b:ab:b9:b3:08:29:d0:d1:56:39:8a:d7:
a8:de:f9:a5:08:22:21:97:4c:25:ad:cc:30:13:05:71:08:57:
a4:bb:00:f4:52:c7:8a:05:34:4a:23:11:d1:b8:c1:a2:1d:11:
dd:a6:df:ce:73:0e:d8:7a:90:68:ff:21:9f:b1:ca:75:08:12:
4a:b8:8a:c7:f2:2f:30:71:91:81:3c:5e:10:88:ee:75:25:94:
0d:c2:1c:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:51 2023 by rpki-client on console-fra.rpki-client.org