Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/c3eb1c3b-c801-4516-9ce3-7d4811698849.roa
File: c3eb1c3b-c801-4516-9ce3-7d4811698849.roa (raw, json)
Hash identifier: 4BPjiOwnd4QgKv1opKujcbnfa1StGE/Mrhmrg/0DBL8=
Subject key identifier: 7B:C2:51:22:28:D4:82:E1:DF:45:26:FD:08:4A:A7:BD:01:4A:6F:AF
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 33008B1A6157F819EAFA85893002208C49442D0A
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/c3eb1c3b-c801-4516-9ce3-7d4811698849.roa
Signing time: Mon 13 Feb 2023 00:00:00 +0000
ROA not before: Mon 13 Feb 2023 00:00:00 +0000
ROA not after: Thu 16 Feb 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
33:00:8b:1a:61:57:f8:19:ea:fa:85:89:30:02:20:8c:49:44:2d:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Feb 13 00:00:00 2023 GMT
Not After : Feb 16 23:59:59 2023 GMT
Subject: serialNumber=03b62a15a22960020a3a72b07679d10cfe07d440d7956d132ad526274d18efc7, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:9c:d7:0d:b2:8a:9b:ef:45:e2:e5:0b:f5:67:
2b:91:be:ce:d1:6c:54:81:a5:1c:da:60:44:a8:20:
06:ad:8c:61:e5:df:7f:7c:76:59:2c:7b:84:0f:7f:
93:ec:f3:44:fd:cd:3e:4d:58:29:23:50:90:cf:62:
45:3a:4c:fd:a0:f0:70:d9:a6:d4:2d:9d:01:5a:12:
d8:59:90:4d:b5:cf:18:c1:fd:5c:5f:8b:81:8a:90:
fe:e8:1c:8e:7e:14:73:aa:4f:22:e5:88:16:1e:64:
77:8f:a6:32:cf:b0:ee:98:9e:88:a3:d0:a9:60:09:
17:cd:19:1e:41:a8:df:0e:cb:5b:44:76:b9:6c:b4:
e6:2a:97:24:bf:0f:06:b0:f5:ee:89:50:5a:17:d9:
57:32:7d:83:f3:d7:7f:20:07:bc:33:63:ea:01:86:
7c:96:2a:31:fa:a6:fd:b4:55:a1:f4:7d:bd:9e:2a:
32:56:d9:de:10:da:95:ed:23:b1:ac:05:6e:8a:3c:
33:ee:f7:32:2b:e4:b4:5b:4a:fd:a6:0f:04:68:48:
b0:c5:58:ed:4a:77:43:5c:2d:57:0f:e4:02:3b:ae:
e0:26:25:6d:d7:bb:cb:98:04:98:95:56:72:5d:71:
9d:60:8f:12:1b:d3:f8:1c:ac:cf:30:05:3a:04:df:
7a:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:C2:51:22:28:D4:82:E1:DF:45:26:FD:08:4A:A7:BD:01:4A:6F:AF
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/c3eb1c3b-c801-4516-9ce3-7d4811698849.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
60:1b:70:88:89:59:53:d5:98:20:b9:c0:41:a4:00:82:0d:9b:
64:76:6b:81:6e:49:83:4d:b7:45:4c:a3:fc:a5:37:b5:4e:c5:
87:23:e7:83:5a:63:75:35:c1:aa:b4:ad:30:f5:3d:42:a4:b2:
f3:e5:3b:37:7d:e6:a3:10:79:96:b2:90:fc:b1:ef:ce:dd:1b:
29:2a:d0:ef:40:e8:cf:74:89:9e:4b:56:89:ca:b0:c4:22:08:
9e:1d:82:70:e2:53:bb:5e:79:af:d3:54:cf:d1:be:b7:c8:66:
fe:a3:c3:89:58:c0:fe:c1:7e:b2:f5:1f:30:bd:e7:4c:d3:e0:
dd:7b:8b:2d:37:0c:94:48:98:98:38:e7:be:6b:27:8c:1f:96:
11:06:76:e3:d2:23:e5:4f:e8:9c:8b:d4:1b:37:6c:3b:64:98:
84:db:f0:0a:70:d5:7c:80:05:17:8c:44:c2:4a:f0:f0:2d:79:
87:48:eb:7a:f2:72:e5:14:7e:f7:b9:82:bc:43:c6:2c:52:d4:
e2:6a:80:5f:17:09:2e:84:00:53:5c:93:e3:18:2e:35:6e:51:
b1:63:70:9e:63:b1:6a:16:63:82:47:99:ea:d6:3c:27:58:f3:
fa:db:f3:e6:d8:84:4f:07:3b:20:b1:81:26:99:2d:4a:74:2e:
7e:eb:8b:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:52 2023 by rpki-client on console-fra.rpki-client.org