Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/c26a1b7a-be66-4e22-a405-b7c3f9afbbab.roa
File: c26a1b7a-be66-4e22-a405-b7c3f9afbbab.roa (raw, json)
Hash identifier: bv0m8iFYWv+obLamJgSBp0xeYEX9DxGbryIKa80WPsg=
Subject key identifier: 70:C0:02:80:8D:0F:EF:B1:9E:05:7A:BA:48:EF:06:9A:F9:13:A9:3F
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 7CEB304BE88362BB9EB4AFB9B1EACE500DBA5EC4
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/c26a1b7a-be66-4e22-a405-b7c3f9afbbab.roa
Signing time: Fri 03 Mar 2023 00:00:00 +0000
ROA not before: Fri 03 Mar 2023 00:00:00 +0000
ROA not after: Mon 06 Mar 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7c:eb:30:4b:e8:83:62:bb:9e:b4:af:b9:b1:ea:ce:50:0d:ba:5e:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Mar 3 00:00:00 2023 GMT
Not After : Mar 6 23:59:59 2023 GMT
Subject: serialNumber=235d6d833b5c8a7ca37fec3319e2e942f4b9f443869c2b5b49d008e0c3cf536b, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f5:37:ac:8f:f9:60:76:cf:73:8c:cc:c0:73:9a:
ed:bc:9a:0c:80:bd:f0:07:8e:46:0b:6b:ff:91:35:
fa:43:c8:96:15:b3:16:63:fc:59:86:16:87:b4:04:
61:f2:74:64:b8:93:04:cc:68:9c:56:25:3a:84:3a:
59:04:1b:b0:45:7c:41:b4:f1:8d:95:88:51:92:1e:
be:e1:59:4a:20:1d:36:45:3f:44:5b:fc:ea:53:e4:
8f:13:6f:9d:59:7e:f0:e9:4c:b3:b5:db:4e:1a:31:
06:0d:8b:8b:79:ef:e9:79:7c:f5:22:eb:ff:bd:f2:
42:3f:85:de:80:fc:37:a6:a8:f1:ac:52:a4:d3:68:
4d:1f:5c:e3:6f:51:bc:13:5c:d1:91:90:ec:62:f3:
e1:91:cd:41:b4:3f:f9:9c:29:49:47:8d:c7:e0:8f:
d0:b9:91:97:ba:39:a5:18:d0:c5:24:24:ac:3a:ff:
82:eb:51:04:39:01:97:71:1a:6b:73:33:e3:85:b5:
75:a0:86:76:89:c8:54:6e:b7:66:7e:ee:38:e1:8e:
44:65:f1:21:c8:8a:5a:6e:44:7d:1a:c2:a3:9f:71:
bf:98:72:de:69:5f:56:4a:88:99:c0:cc:be:06:be:
67:0c:17:37:ad:39:5e:3a:ca:95:84:a9:59:38:60:
75:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:C0:02:80:8D:0F:EF:B1:9E:05:7A:BA:48:EF:06:9A:F9:13:A9:3F
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/c26a1b7a-be66-4e22-a405-b7c3f9afbbab.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
9c:e3:1b:d9:9f:97:fd:d3:ef:dd:e3:31:0e:a0:33:88:05:84:
91:f5:c3:b2:23:0f:ab:c9:3d:9b:3c:70:bb:88:38:b5:5a:0c:
95:be:2c:b3:1a:a0:d9:71:05:5c:74:01:e0:b0:8a:3e:62:63:
8e:12:98:21:72:ee:3b:d4:2b:82:81:9a:92:4d:9f:2c:3b:e2:
97:c0:bd:d0:bb:71:08:4f:1d:e9:5c:af:13:7e:16:b4:80:21:
8b:56:71:29:17:45:68:5e:0d:8f:55:42:ef:d4:69:ad:76:d4:
28:a3:19:d7:5b:e6:8d:46:27:c9:5d:d7:d3:f7:6b:c9:ad:05:
b5:6a:df:b8:df:77:2a:bf:dc:73:86:7f:ff:95:16:1a:6b:5c:
ba:6b:40:d5:a3:2c:e5:93:13:39:3d:ff:ed:c8:64:86:6d:e4:
77:72:18:03:4e:83:18:9a:0b:af:14:f2:5f:44:77:25:eb:d7:
d4:2d:b6:ae:cf:e8:9f:62:a4:54:31:8b:26:4a:9c:41:6b:6d:
77:85:ba:a3:92:8a:71:d7:24:c1:a2:31:1f:62:6c:76:97:07:
66:f0:0f:f8:05:78:74:5f:4d:1b:05:da:f6:44:f9:2c:f8:25:
26:fc:cf:45:9d:02:a7:3d:30:26:65:2d:e3:37:02:61:a2:ce:
f7:c9:b1:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:52 2023 by rpki-client on console-fra.rpki-client.org