Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/ca4da51c-fc0e-4105-afe2-413f4143c150.roa
File: ca4da51c-fc0e-4105-afe2-413f4143c150.roa (raw, json)
Hash identifier: wlzu3NPBWwh9JodKsSH4nZZHsBmNM4E42gOJWH0E6mk=
Subject key identifier: 2A:F9:68:6E:0F:A1:47:EB:88:A5:8B:3F:80:47:6A:D6:A4:BF:35:CE
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 7C18D1E17B0CF1B53F2EBB17340A09688BB40FA6
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/ca4da51c-fc0e-4105-afe2-413f4143c150.roa
Signing time: Tue 07 Mar 2023 00:00:00 +0000
ROA not before: Tue 07 Mar 2023 00:00:00 +0000
ROA not after: Fri 10 Mar 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7c:18:d1:e1:7b:0c:f1:b5:3f:2e:bb:17:34:0a:09:68:8b:b4:0f:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Mar 7 00:00:00 2023 GMT
Not After : Mar 10 23:59:59 2023 GMT
Subject: serialNumber=c3e61064e4094e0cf343ff0a77dfdfb98341ec294e08675de7ea6915be2d2ae9, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:5b:b7:c5:82:1c:c2:85:d3:41:c8:39:20:3b:
f6:95:f8:78:fc:41:a6:05:f7:d9:8a:00:9e:e3:cf:
d8:39:bd:bd:15:2f:d1:38:bc:74:c6:23:78:0f:56:
ef:c3:38:f6:50:dc:01:a9:99:f6:03:6f:27:cf:93:
eb:88:e2:03:65:0f:8a:be:04:f3:08:b0:98:09:c1:
42:78:5c:55:90:51:db:86:13:f7:f0:6b:6d:a0:e6:
63:6f:45:4b:7d:ed:8c:6d:2a:58:fd:5f:30:85:f5:
26:81:f0:f5:9c:96:f9:f2:f8:ca:47:12:f7:a4:5e:
8e:67:cf:ae:12:35:8e:ba:32:89:fe:ec:a5:d0:e5:
bb:3d:eb:e6:4d:49:7f:9a:c5:df:9c:48:ca:28:b3:
e9:12:51:9f:8a:ed:45:3d:83:f5:c2:87:fb:bd:78:
e6:df:20:3c:e1:6e:24:6e:3b:bb:2d:b7:d0:7e:14:
72:eb:25:13:ed:fb:f2:78:b6:ea:2e:5a:8e:48:d5:
96:6f:63:a5:f6:ab:ae:70:c2:38:9a:fa:1d:84:02:
b0:54:70:1f:10:c9:5f:4e:03:86:33:8c:ff:a1:f3:
4a:8c:e4:a8:41:c9:76:6f:8c:86:ac:a0:9c:57:1b:
40:8a:6d:3d:15:17:d0:06:bb:4d:f5:b1:92:2f:45:
37:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:F9:68:6E:0F:A1:47:EB:88:A5:8B:3F:80:47:6A:D6:A4:BF:35:CE
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/ca4da51c-fc0e-4105-afe2-413f4143c150.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
3a:53:9e:57:e4:09:f5:94:7f:21:9c:61:ff:e8:a3:ab:f7:da:
7d:d5:74:e6:4a:01:9c:46:3a:3b:ac:4c:e9:3b:0b:71:44:ae:
b3:ca:b8:a7:f0:87:99:95:92:72:fb:56:ad:85:6e:23:36:c6:
7a:a0:88:0e:bc:a4:f5:3c:1b:e3:41:ab:17:da:13:16:25:1b:
59:a4:d4:8e:a5:35:2d:93:21:8c:b7:87:2e:36:8e:80:08:e8:
62:cf:95:11:58:06:78:6d:15:ad:50:49:ed:7f:8a:39:19:c3:
84:b2:87:12:dd:7a:68:a1:62:19:8e:03:c4:26:5c:19:84:d0:
71:f2:3b:28:a4:93:8e:f0:ae:b0:42:41:99:81:68:5f:ac:dd:
62:b3:1d:45:52:4b:45:a1:d4:1f:40:ab:ed:00:9b:c9:11:e1:
0b:4c:d7:f2:77:2d:00:53:38:6d:e6:33:19:03:40:8a:e0:0f:
d9:fd:fb:e6:93:91:42:a2:57:19:ee:3d:5a:3f:67:0c:46:fb:
35:f6:f6:19:c7:bc:24:e5:d2:47:e9:3f:49:e2:12:58:36:07:
76:64:a6:e3:71:5e:ed:19:16:0b:be:6e:53:6f:5a:2b:c7:73:
7e:30:56:30:df:04:d0:41:03:5a:9a:62:4b:e6:96:f6:ad:d8:
df:1e:6c:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:53 2023 by rpki-client on console-fra.rpki-client.org