Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/cbe51877-7fa4-48f0-a7e6-e03422d2520c.roa
File: cbe51877-7fa4-48f0-a7e6-e03422d2520c.roa (raw, json)
Hash identifier: WmSmvPXLVOK6j5NPuQJATTebFnx8SS1n1TOL6OMt30Y=
Subject key identifier: 75:F8:CC:0B:F1:05:FA:F8:78:3C:0A:1B:8B:8F:4D:A7:2A:A3:B8:39
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 3C0A195CFE3AA165078153BFA65FAF936BD829F1
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/cbe51877-7fa4-48f0-a7e6-e03422d2520c.roa
Signing time: Wed 08 Mar 2023 00:00:00 +0000
ROA not before: Wed 08 Mar 2023 00:00:00 +0000
ROA not after: Sat 11 Mar 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3c:0a:19:5c:fe:3a:a1:65:07:81:53:bf:a6:5f:af:93:6b:d8:29:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Mar 8 00:00:00 2023 GMT
Not After : Mar 11 23:59:59 2023 GMT
Subject: serialNumber=52f3233ac26b4d0d9201d1e7aaf7f3de2a69c936b82e3052786ae3bba8ef9110, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:9d:53:0e:24:88:09:a2:c7:ce:c2:66:00:55:
f2:63:76:6d:e4:39:54:82:73:71:e1:23:c9:70:b1:
69:65:3c:12:ad:cb:d2:73:d1:5f:45:f6:e1:71:e2:
2e:09:4d:69:f4:c0:c1:b6:81:7b:30:37:19:ad:6f:
10:a4:54:1c:db:ce:bd:39:3a:f7:bf:d0:c6:56:36:
37:34:54:f4:68:03:0b:04:e5:64:f4:2c:f5:7c:ef:
5e:cc:0b:d3:02:2c:ae:96:7f:d6:ae:c1:39:27:58:
7d:38:38:68:6e:6b:99:a6:73:e5:a7:e1:cb:10:5f:
e2:0a:9f:bb:ae:9e:f7:0d:fe:d8:98:6f:30:f9:ef:
15:99:fc:89:ff:e0:71:e3:9f:b4:15:b2:22:25:4c:
67:51:31:a9:ff:cf:bd:53:43:7a:e2:ff:3b:51:51:
f8:e9:c6:3d:78:34:54:6f:53:d1:de:30:0f:ea:9b:
29:72:dc:84:47:10:ec:de:3d:a8:93:9d:a8:45:91:
f6:76:ce:32:e4:8e:49:9e:13:74:0f:fb:8e:f9:da:
3b:fd:d3:0d:ac:2e:16:3f:1b:33:1d:69:d8:42:d2:
0e:66:8f:05:51:cd:f3:ad:bf:7a:53:3a:ea:f3:53:
ab:fd:6f:94:de:ab:02:e4:a4:4a:19:dc:8f:df:4d:
34:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:F8:CC:0B:F1:05:FA:F8:78:3C:0A:1B:8B:8F:4D:A7:2A:A3:B8:39
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/cbe51877-7fa4-48f0-a7e6-e03422d2520c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
6b:40:69:48:9c:87:df:27:3c:cb:bb:c5:71:98:4a:ba:95:c7:
a0:69:37:17:51:98:9a:c3:65:c0:9d:c4:71:a4:ec:f6:b0:af:
bf:d8:88:50:d9:88:9b:a8:eb:02:07:ad:25:a7:76:e1:23:f7:
51:2f:cf:82:a5:cc:85:de:cb:f5:2a:70:fd:b5:3c:2e:75:0d:
05:70:96:52:fa:3f:15:a7:07:1f:77:38:63:5a:40:5b:e3:85:
20:45:fb:82:f4:fa:ea:ac:7a:6e:61:9c:ae:0e:5a:25:02:81:
90:82:06:d2:9c:72:b1:27:b8:64:67:05:f2:82:40:08:72:b2:
81:56:a5:4e:e9:2e:ee:cd:54:17:14:0f:07:8b:ba:ad:66:ad:
76:82:93:64:d3:1b:44:59:d3:2b:33:ef:65:4f:c9:fb:c4:86:
91:46:b9:8b:c6:7c:8f:b1:83:a8:26:f2:72:81:f1:2f:81:50:
a0:be:c4:67:e6:c2:cb:bb:7a:ad:02:29:57:63:26:ca:18:e0:
dc:f0:6c:e3:ac:1f:f5:d0:b2:00:87:c5:09:3b:ce:0f:90:ec:
03:a6:50:c9:a0:33:36:11:7a:b6:dd:2d:cf:cf:80:72:12:e5:
66:1d:14:cd:93:b9:dd:a7:9c:9e:30:65:a6:b9:42:c7:16:18:
21:40:c1:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:53 2023 by rpki-client on console-fra.rpki-client.org