Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/bb9b4e69-b22a-43fb-ae8f-cc261e213f0f.roa
File: bb9b4e69-b22a-43fb-ae8f-cc261e213f0f.roa (raw, json)
Hash identifier: pOM2bC44XFvqntnvNnEdMvWd8xorEwhWX4rMRJH2A0Y=
Subject key identifier: DC:68:69:4F:3F:F6:C0:6D:6F:41:5C:C3:30:98:A4:E1:54:29:69:BA
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 0D80B0765DFDA904B37F684200DACDDC9A142997
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/bb9b4e69-b22a-43fb-ae8f-cc261e213f0f.roa
Signing time: Thu 30 Mar 2023 00:00:00 +0000
ROA not before: Thu 30 Mar 2023 00:00:00 +0000
ROA not after: Sun 02 Apr 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0d:80:b0:76:5d:fd:a9:04:b3:7f:68:42:00:da:cd:dc:9a:14:29:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Mar 30 00:00:00 2023 GMT
Not After : Apr 2 23:59:59 2023 GMT
Subject: serialNumber=3f5046154c2d3e4a63875de90431b5bcc0bab780951075e55fb437180d3b7472, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:1d:1b:8f:d6:47:1a:e4:54:4f:07:ef:ff:f4:
58:59:15:62:52:63:e3:40:6e:d7:6b:6e:2b:41:e6:
f4:fc:9f:f9:d3:5d:10:ea:fc:36:8d:b5:b7:41:ef:
7f:4c:13:33:b2:cb:ef:3e:e1:53:ee:dd:b1:e4:0c:
b5:01:9b:ef:74:74:aa:6b:74:6c:4a:be:0f:20:dd:
c3:5a:aa:05:9a:de:06:a4:22:8a:6f:71:01:2e:4a:
4a:a3:d1:76:f3:69:46:58:a2:a6:13:f4:3f:34:45:
57:1b:3e:3b:f7:3e:59:7c:96:25:fe:28:20:02:3e:
4d:2d:3f:27:0f:7f:f6:48:99:50:44:02:dc:13:6e:
54:aa:85:58:b7:bd:96:5a:24:36:d3:92:f4:c2:a3:
22:18:c5:5f:83:36:18:c2:43:3e:3d:66:43:4c:72:
d0:95:61:13:c7:bc:5d:38:34:8a:60:61:af:ac:1e:
e5:1a:b6:39:b8:c7:4e:09:9a:2c:9d:48:5e:42:69:
03:b6:91:0d:31:3f:e1:ff:11:5a:b2:d6:33:ac:c9:
81:4b:e9:d9:cf:c8:bf:65:9b:4a:d3:e3:dd:9e:f3:
a9:a7:67:fb:0a:4c:45:9f:eb:d5:dd:b9:cb:c2:f5:
c2:df:44:06:3c:fd:57:dc:d3:cc:8a:99:5c:22:26:
82:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:68:69:4F:3F:F6:C0:6D:6F:41:5C:C3:30:98:A4:E1:54:29:69:BA
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/bb9b4e69-b22a-43fb-ae8f-cc261e213f0f.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
9b:5f:9a:ea:b7:2d:a7:ff:de:08:e2:4c:a4:e7:76:d8:93:28:
7e:25:61:37:9b:4f:aa:b9:ab:b8:72:cb:bc:a6:49:3c:ae:87:
76:28:3c:5c:89:32:4e:1d:a7:b5:cf:83:e8:47:ea:b4:b5:d4:
5f:77:b0:5e:ef:68:7c:b0:02:92:27:bb:b5:d6:0a:47:ca:35:
67:f2:17:5e:20:5e:ff:e2:d0:13:52:f9:04:53:34:e3:01:c5:
47:7c:82:79:df:16:a6:4f:40:74:6c:42:5f:f4:d7:08:22:c1:
96:2b:88:f9:34:17:75:52:47:11:c7:3b:e5:9e:77:e0:c3:cb:
25:e0:b2:58:63:31:e2:c4:a4:c8:27:cc:5c:21:56:95:2d:da:
3b:17:05:24:00:7f:7d:88:7a:6f:d3:bf:34:a1:35:07:7a:e7:
19:b6:8b:2f:f3:30:22:62:17:d8:58:d8:b4:6e:b7:7a:3c:51:
d7:64:e7:26:6c:61:ff:eb:55:84:67:10:1e:63:fd:ab:5a:d8:
12:89:97:0b:aa:08:df:77:85:77:dc:79:69:ae:d2:4b:cc:6a:
bd:94:3f:43:7b:84:84:0a:6c:ce:7b:9b:6e:94:66:46:04:53:
b2:d0:88:19:af:fb:72:a5:2c:10:e0:4f:f8:89:29:a1:04:ef:
f8:56:ef:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:51 2023 by rpki-client on console-fra.rpki-client.org