Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/cc2092e6-97f1-41ec-867e-d05f5abec494.roa
File: cc2092e6-97f1-41ec-867e-d05f5abec494.roa (raw, json)
Hash identifier: uggUxw6Pu4G+h8auPjstCFs9TyEPQPPtm1Wbj6OOrd0=
Subject key identifier: 95:35:D9:09:5C:AF:09:DF:F6:55:67:86:98:40:4B:46:69:EC:6E:E8
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 68928A8109A6C29389C4044B3B1C191705FE2E43
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/cc2092e6-97f1-41ec-867e-d05f5abec494.roa
Signing time: Mon 08 Aug 2022 00:00:00 +0000
ROA not before: Mon 08 Aug 2022 00:00:00 +0000
ROA not after: Thu 11 Aug 2022 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
68:92:8a:81:09:a6:c2:93:89:c4:04:4b:3b:1c:19:17:05:fe:2e:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Aug 8 00:00:00 2022 GMT
Not After : Aug 11 23:59:59 2022 GMT
Subject: serialNumber=ba176b7e916b88aa31537d234857be5302804b7d5de8aa64890c77a89d94041d, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:99:56:c2:ca:48:4f:92:fc:9f:de:e7:0e:7c:
2b:dc:3c:7d:32:c0:a5:03:7b:1b:84:6a:8a:cc:87:
67:20:80:4f:36:c7:e9:54:89:95:f9:c9:a6:bd:ad:
b8:21:d4:f5:a8:6d:05:f1:d3:87:40:34:52:5d:b8:
9f:fd:ef:97:9d:a8:9d:98:e4:8c:ac:aa:14:e1:a3:
50:fe:29:2b:18:10:31:b3:63:5c:20:62:fa:fa:8c:
8d:c2:ca:cf:47:17:9b:f6:0f:fc:04:cd:08:e7:6f:
17:6e:a4:c4:76:c0:53:13:5d:c5:41:d3:b0:4b:40:
6c:98:66:68:03:2e:42:ea:e1:ce:9a:9c:f3:71:cf:
3e:f9:85:ad:30:c6:43:bb:2a:e8:2d:59:38:76:a3:
d6:2a:09:83:28:c0:73:b1:95:6d:65:39:92:7a:47:
0a:98:0c:a5:42:42:65:3b:ee:fd:fa:c5:df:50:e7:
55:9b:90:1d:09:5d:46:cf:1a:66:bf:2b:c7:d9:5c:
5b:c2:ab:ee:d3:1a:53:53:cd:be:7e:7d:19:01:62:
8e:a6:8c:34:a7:e1:36:46:13:19:4c:44:87:23:ae:
a9:74:86:0a:44:e2:1a:78:df:7c:57:eb:29:c9:ac:
4d:92:ab:aa:2c:56:76:7d:bd:5b:ae:eb:1a:b0:1a:
e1:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:35:D9:09:5C:AF:09:DF:F6:55:67:86:98:40:4B:46:69:EC:6E:E8
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/cc2092e6-97f1-41ec-867e-d05f5abec494.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
cc:0e:74:be:0f:0d:db:12:b5:37:e5:ff:1d:21:9c:17:49:80:
30:52:13:2c:94:ae:18:36:67:54:a5:65:ba:f0:44:5f:fd:e0:
2d:15:e5:04:5d:15:e8:56:6d:d5:1b:f8:f7:95:69:86:e4:ac:
30:e2:32:df:d7:d6:d1:87:68:7b:6e:b5:30:52:7e:08:4e:cf:
78:d7:46:2e:de:d5:3e:05:29:5b:c5:2b:bc:f7:2f:1e:47:87:
40:f7:e2:54:20:2e:f0:8a:5a:9a:92:d5:eb:95:56:22:38:fb:
fe:70:c0:c4:d0:34:61:2a:b2:f7:e4:13:fc:3a:d3:ba:71:3b:
43:83:29:44:dd:78:9a:55:9e:05:be:9a:7d:8f:07:f6:49:8f:
39:ac:99:ed:1f:e1:72:da:bc:8c:ec:ee:28:e2:a9:96:59:fa:
8b:ae:fe:b6:64:d0:92:e8:f6:1a:07:78:05:77:1d:46:04:83:
2e:76:2f:92:2f:d2:1d:39:4a:de:12:45:43:f2:08:14:37:5a:
1b:cb:6b:02:ca:b3:f6:62:33:cb:08:3e:c2:12:2c:63:54:ac:
4a:8a:50:dd:7f:86:a3:26:21:f3:4f:24:df:22:7e:94:d1:fc:
67:80:35:b1:20:67:f4:89:8f:56:ab:22:98:b4:e0:f5:90:0c:
a6:33:f3:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:53 2023 by rpki-client on console-fra.rpki-client.org