Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/bd9fce06-a353-4a64-a1b2-c93fe1c6f533.roa
File: bd9fce06-a353-4a64-a1b2-c93fe1c6f533.roa (raw, json)
Hash identifier: oaDKXyfMiqRiUlTi13DvTj+8tvLy3m+8iDKYlmDaUZE=
Subject key identifier: 70:CD:25:D0:9E:6A:D9:70:6B:55:F0:AB:2B:37:5C:9C:7B:B5:6D:90
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 0EACC91FD33B4ABF8C09105D35BB3CB48C09557F
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/bd9fce06-a353-4a64-a1b2-c93fe1c6f533.roa
Signing time: Tue 09 May 2023 00:00:00 +0000
ROA not before: Tue 09 May 2023 00:00:00 +0000
ROA not after: Fri 12 May 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0e:ac:c9:1f:d3:3b:4a:bf:8c:09:10:5d:35:bb:3c:b4:8c:09:55:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: May 9 00:00:00 2023 GMT
Not After : May 12 23:59:59 2023 GMT
Subject: serialNumber=68b1d5ee8946be068172d0f30bb24e56095dce9c02e3447986aa58f2d7e06cad, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:a8:21:68:64:87:36:96:63:8e:73:16:8d:b5:
68:78:31:ce:de:64:2e:5f:d7:0e:34:f7:dc:86:83:
ef:9d:0b:0e:91:81:3c:7f:75:6b:af:a4:3f:e4:6c:
35:13:93:dd:d5:5b:53:32:ea:8f:d4:40:8c:11:88:
0c:76:8a:0b:05:5b:fd:7e:ae:41:f3:b2:d6:39:32:
49:3e:2f:08:28:5f:ef:e6:d3:ed:85:0a:ea:ea:a3:
be:06:5c:54:d2:3e:06:12:12:d9:e7:e4:4c:fd:01:
56:4a:a7:54:cd:c6:c9:54:d6:8c:fb:3c:7a:03:07:
e7:a7:51:f5:14:ec:5a:e0:55:c3:cf:57:ac:3c:f8:
a1:9a:3e:a6:2d:55:3e:d0:76:6d:ec:90:8a:0e:f3:
d0:74:db:65:9a:ea:a8:88:80:3e:85:a2:41:0d:bb:
bb:71:a6:c3:62:e4:d2:15:b4:e6:f4:d2:72:6e:12:
c3:53:47:dd:c5:68:74:99:03:66:b8:17:44:b1:a9:
cb:6f:d0:b5:e4:58:11:c1:9d:3d:87:24:eb:32:8b:
ab:07:f0:b4:1a:d7:ab:d7:75:5c:29:6a:19:5a:e7:
38:97:90:1f:27:47:ce:cf:a7:0b:41:f7:ad:d1:d4:
f4:f1:c0:d0:b8:cb:68:5c:62:99:9a:75:8e:db:20:
6f:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:CD:25:D0:9E:6A:D9:70:6B:55:F0:AB:2B:37:5C:9C:7B:B5:6D:90
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/bd9fce06-a353-4a64-a1b2-c93fe1c6f533.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
4f:b2:11:4a:06:d6:a0:41:c9:3e:92:94:79:90:90:0b:8c:26:
e1:1d:86:ea:3a:c8:db:20:b8:47:9b:78:4e:5a:a4:21:88:6a:
7d:f3:5c:e4:9c:f4:a0:75:db:a4:8d:ba:2e:33:0c:de:51:9c:
20:63:ec:58:d8:41:2d:6a:36:0d:f2:73:c6:3a:14:43:9a:21:
30:a3:f8:bd:bb:d5:0f:86:e7:11:ee:28:f8:05:e6:a4:12:d6:
66:25:ed:9d:a6:d0:9d:77:81:93:af:42:ad:dd:2d:1b:9a:ef:
c9:55:42:eb:d0:ca:d0:7e:c3:d1:fc:7c:43:95:21:84:ce:69:
cb:7b:42:9d:bf:69:87:0d:b3:97:bb:9f:60:f5:cd:37:d9:a5:
c7:89:07:79:3a:17:c7:02:27:74:5e:b2:99:e5:b0:cb:7f:bb:
cc:13:d2:c4:81:44:0e:7b:57:50:0f:98:0b:56:01:b7:64:da:
47:09:a9:3a:64:52:2a:2d:5d:7e:66:94:fd:7e:00:ec:2a:cf:
05:0a:c5:ca:e3:84:25:fb:7d:bf:a1:f4:da:5c:5e:b4:4e:ee:
3f:13:da:7f:c4:09:52:2e:ca:26:2c:2b:30:54:c6:f0:88:3e:
ba:10:ec:f9:e6:5c:75:66:f2:6f:49:7f:02:69:99:f3:f9:98:
71:a0:53:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:51 2023 by rpki-client on console-fra.rpki-client.org