Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/bb6dffd7-b093-40a5-8ae5-6111277321b6.roa
File: bb6dffd7-b093-40a5-8ae5-6111277321b6.roa (raw, json)
Hash identifier: xEv16/ZAwoqC/AZxby0D7/P2qFfPzYZaIZIx+NI/EqY=
Subject key identifier: 0B:A1:1E:46:49:7D:42:43:8D:E7:91:B3:CD:F2:12:04:46:75:4B:4C
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 564A720BC7AE35C1354D7F306DF89DEC4C6E604E
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/bb6dffd7-b093-40a5-8ae5-6111277321b6.roa
Signing time: Mon 01 May 2023 00:00:00 +0000
ROA not before: Mon 01 May 2023 00:00:00 +0000
ROA not after: Thu 04 May 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
56:4a:72:0b:c7:ae:35:c1:35:4d:7f:30:6d:f8:9d:ec:4c:6e:60:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: May 1 00:00:00 2023 GMT
Not After : May 4 23:59:59 2023 GMT
Subject: serialNumber=ff473256e764bd51e1ce92c90b3c18ac57a2f2d4a40e7dc4be89f2b27d3a72e2, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:f6:e9:d9:6d:a1:27:7f:fa:38:5e:59:f5:7f:
f4:2c:0e:49:a8:77:b7:18:8c:fd:c6:62:d2:f1:0e:
68:8c:ba:c5:ff:7d:03:ab:01:0d:ae:c2:3f:f3:2e:
16:c2:6c:ce:56:83:cf:86:07:8f:2b:68:03:a5:09:
3d:35:24:c0:28:cc:7c:15:57:99:2d:3d:72:ff:a8:
dc:56:30:b5:ae:4c:65:66:98:14:fa:2b:77:ea:d9:
ba:bb:70:ac:6d:ae:ce:9a:67:82:40:7c:26:01:74:
f6:72:a1:e9:c5:b9:57:5d:5f:d7:ef:3e:0e:5d:82:
79:97:ad:54:e7:10:83:b4:26:af:14:7a:51:8f:96:
16:52:83:cb:63:eb:f4:19:e4:c4:89:6e:9b:0f:39:
b8:4e:62:bd:89:37:9a:dd:be:38:04:8e:47:1a:ba:
56:b0:1e:9e:b8:b5:30:65:2b:6f:2f:45:4e:16:57:
f5:82:78:70:93:d8:76:2e:29:f2:52:f8:c4:a0:11:
f5:74:a9:11:d0:e8:a2:5d:ff:ff:2e:6a:b9:c0:c5:
97:1f:6d:46:b4:1f:b2:49:da:c1:b1:b9:fe:8a:dc:
56:f5:7a:97:54:cd:d3:fe:29:f5:0f:94:9b:53:43:
6e:6e:c3:1d:90:cb:67:59:43:e6:ff:db:98:89:f4:
0e:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:A1:1E:46:49:7D:42:43:8D:E7:91:B3:CD:F2:12:04:46:75:4B:4C
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/bb6dffd7-b093-40a5-8ae5-6111277321b6.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
3c:23:63:33:47:7c:cc:76:64:d2:35:36:f9:4d:28:8d:ca:fc:
d5:ee:59:4e:c0:c9:43:fa:48:f6:3c:48:d1:86:f6:73:15:e7:
64:ae:dd:c7:1b:66:89:5a:9f:07:aa:d2:60:f2:c0:b8:b6:9f:
01:2d:9e:40:3d:ff:0d:ed:55:a1:6a:5b:9e:6f:ff:59:7b:ec:
7e:00:08:48:08:69:30:c0:35:19:fa:4c:1a:89:63:92:47:25:
e5:71:26:9d:f0:5f:fc:8a:e3:23:1b:78:f0:0b:d4:c1:aa:33:
d4:16:8a:d3:a2:26:73:0d:60:5a:87:81:04:9a:27:fc:bc:b0:
18:22:5d:95:01:e7:5d:54:c4:56:45:e4:a1:94:db:41:11:11:
e8:ab:45:75:85:39:1e:ea:ce:73:1e:a7:d8:06:fb:6f:98:8f:
4a:83:88:b8:74:80:8f:05:f5:45:63:b0:6b:4e:6e:6e:28:43:
94:09:17:b1:2a:5c:fe:2b:db:f8:93:55:75:ee:14:30:0e:ca:
89:69:07:fa:b5:ad:1c:7a:6f:0c:f5:5a:f7:35:4c:8e:47:57:
67:f0:f8:33:03:c9:97:66:2f:80:7b:81:09:31:1a:30:8b:4d:
ba:6c:4e:da:a3:18:10:c6:f7:2f:c2:20:40:c2:b3:96:3d:aa:
4f:e0:f6:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:51 2023 by rpki-client on console-fra.rpki-client.org