Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/beb54080-f270-4b20-9102-3b179cc95434.roa
File: beb54080-f270-4b20-9102-3b179cc95434.roa (raw, json)
Hash identifier: aZgfEqv2Me6pYspPBRW3u8av/jgq4Rh6IPsRyAZyg98=
Subject key identifier: 88:97:B4:F4:61:4E:7A:67:79:02:F6:83:DB:36:CF:84:27:CF:BA:76
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 2A07CF803F665107A60A85D9A535368E584836ED
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/beb54080-f270-4b20-9102-3b179cc95434.roa
Signing time: Fri 24 Mar 2023 00:00:00 +0000
ROA not before: Fri 24 Mar 2023 00:00:00 +0000
ROA not after: Mon 27 Mar 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2a:07:cf:80:3f:66:51:07:a6:0a:85:d9:a5:35:36:8e:58:48:36:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Mar 24 00:00:00 2023 GMT
Not After : Mar 27 23:59:59 2023 GMT
Subject: serialNumber=99511ab03d64a76672e617c74c63eb0fe01dabb6d8df0bb5f20288ef07817b23, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:c8:10:3d:a5:13:8a:77:d4:cf:2c:97:28:ec:
8f:69:99:ac:0e:8f:74:6f:e8:54:d2:44:79:09:16:
b4:e0:dd:b0:36:2e:58:f5:d7:52:47:db:2f:84:45:
1e:d9:aa:66:33:72:0f:79:e3:53:41:64:8e:04:ea:
b1:de:ae:60:75:70:03:cf:bf:79:94:a8:f2:94:5f:
65:96:f1:68:21:f3:bb:73:88:b3:08:f5:dc:b3:ca:
91:ff:2c:90:b4:6f:97:fa:af:aa:a5:e1:97:cc:a7:
68:6e:13:5e:ba:14:03:98:24:97:68:e7:2b:e9:22:
8d:01:93:e3:14:f5:66:53:95:d9:a8:5e:dc:12:64:
1f:f1:10:35:36:d3:41:33:8b:53:9c:32:75:b2:a6:
60:21:60:d3:28:55:0f:66:72:33:1f:66:a8:16:ac:
89:b4:f2:b8:02:63:8b:5d:b4:b5:33:10:33:ed:10:
d7:ec:19:46:e0:08:db:3d:38:df:b4:33:a6:ea:db:
8b:e9:68:86:d6:f9:12:b3:63:89:da:a0:6d:bc:5c:
69:db:6a:da:e7:32:9a:ac:79:54:93:03:94:48:88:
b5:3d:5d:26:20:1d:36:61:08:df:1a:94:06:76:e4:
48:73:9a:66:06:6e:67:60:03:1c:29:d1:10:9c:01:
5e:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:97:B4:F4:61:4E:7A:67:79:02:F6:83:DB:36:CF:84:27:CF:BA:76
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/beb54080-f270-4b20-9102-3b179cc95434.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
c8:1e:dc:97:d2:3f:45:04:49:67:bb:42:98:dc:d9:c3:fb:31:
b8:3e:6a:ef:eb:77:f2:0c:85:12:4e:fa:3d:37:a1:ce:47:b1:
e1:23:53:ec:7f:d1:b8:b4:88:b9:80:f7:b5:b4:7c:4e:82:eb:
8e:57:1b:4e:79:2d:c5:ed:18:67:9e:3e:0f:34:8f:16:76:4f:
98:03:86:39:f1:14:a0:11:12:3b:ac:fc:bf:39:7d:bb:8f:9c:
b8:e9:d1:1d:1e:5b:b0:0f:33:a8:07:68:89:a9:c1:4e:11:ae:
6d:78:ab:2b:df:f1:a9:3a:0e:5a:b5:a1:9e:0c:5f:73:90:90:
7f:d1:58:f6:17:2c:b9:2e:01:da:87:b7:41:b6:58:e8:5c:0c:
bf:c3:98:af:b3:35:7d:b8:9a:cd:8f:67:46:04:5f:2f:d0:99:
11:9b:eb:2b:d1:64:0f:7b:4c:ef:8f:12:37:97:1b:85:43:6e:
53:f4:fc:60:7b:1f:e7:b1:3f:83:3d:26:85:49:b7:a7:f6:83:
3d:60:f6:58:01:61:ea:b1:0b:c0:9b:95:80:b0:dc:c5:40:88:
df:7b:1a:22:33:da:8b:69:7e:b1:9a:bb:79:f3:c8:b6:03:0e:
c2:02:40:99:d9:23:04:c9:15:cb:c4:f2:21:71:ab:68:dc:97:
e4:27:6e:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:51 2023 by rpki-client on console-fra.rpki-client.org