Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/cde0aeda-92e7-4229-8486-e2475fef82c4.roa
File: cde0aeda-92e7-4229-8486-e2475fef82c4.roa (raw, json)
Hash identifier: rew61//zNrJc+bAQHWhS3Y86yNFyFW4ERN6ZNK8xIL0=
Subject key identifier: 31:EC:01:20:EE:5D:18:EF:42:DC:AE:85:06:5C:71:97:24:97:D4:38
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 1E18FBC4197E8BAB40AD4B48284EB82853B0B75C
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/cde0aeda-92e7-4229-8486-e2475fef82c4.roa
Signing time: Sat 04 Mar 2023 00:00:00 +0000
ROA not before: Sat 04 Mar 2023 00:00:00 +0000
ROA not after: Tue 07 Mar 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1e:18:fb:c4:19:7e:8b:ab:40:ad:4b:48:28:4e:b8:28:53:b0:b7:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Mar 4 00:00:00 2023 GMT
Not After : Mar 7 23:59:59 2023 GMT
Subject: serialNumber=d92c4848bec3524c98899b3234ee3f5e9aed35f9ef5d7d98182a25b0bd580287, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:90:41:58:da:c3:69:68:14:67:e8:cf:f8:e5:
f8:d9:30:da:5c:1a:8b:f1:43:3b:ac:47:a4:7f:16:
d9:8c:5c:f0:24:56:44:37:2d:a9:5a:68:e0:80:01:
d5:91:14:f7:18:b4:ac:be:e0:a5:d0:ce:9a:73:8e:
0e:1e:8c:89:18:35:fe:95:06:e6:c3:07:06:f1:46:
dd:fe:e5:e4:6a:76:d6:81:3f:a2:a2:6b:fc:e2:de:
68:6a:21:fd:8e:98:8f:f4:54:4a:48:d0:c6:94:22:
c6:93:a7:0d:58:43:6e:d5:d6:11:ee:15:03:ec:cf:
1a:d9:61:23:52:fe:55:4a:a5:87:03:36:e5:b3:87:
f2:ca:23:7b:cd:bc:38:e6:af:f6:7a:90:43:88:ec:
c4:8f:4a:82:19:fd:7c:83:f9:0b:f0:da:14:76:21:
73:1e:35:fb:fe:bf:a2:37:83:bd:49:12:2b:d3:f7:
3d:69:c7:13:16:21:63:cc:4f:d5:e4:ae:1b:38:5e:
1a:1c:16:25:9d:9e:18:30:cb:63:db:30:ab:f0:22:
63:df:6c:19:89:3e:65:23:45:ad:1c:a6:eb:b3:55:
33:ff:4d:c2:50:9b:f5:4a:32:df:95:3f:35:12:8b:
e1:94:08:39:6e:19:22:15:c5:62:38:c5:23:aa:0a:
1b:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:EC:01:20:EE:5D:18:EF:42:DC:AE:85:06:5C:71:97:24:97:D4:38
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/cde0aeda-92e7-4229-8486-e2475fef82c4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
2d:ed:72:d8:a4:ec:b6:88:97:9b:98:26:f9:fe:94:94:3b:e3:
1b:aa:6b:bd:a9:40:21:6b:9a:b5:21:c7:ed:69:b6:b8:e0:01:
c6:d9:1a:b7:07:e8:66:e0:ac:9b:45:4d:8b:cc:e4:9a:ef:d9:
fa:54:48:ae:d1:87:3e:14:5a:dd:49:43:1f:32:94:87:37:77:
9a:49:39:d1:81:cd:d0:af:dc:09:dd:28:4c:11:88:79:15:84:
5e:00:ad:21:5b:cc:25:57:0c:05:3a:b2:33:05:72:e5:82:3d:
3f:71:34:15:3d:cb:22:10:7d:15:30:98:09:1b:a7:79:21:ff:
43:62:0c:ee:79:3b:19:78:f7:10:bc:b2:db:cb:7d:95:e6:5d:
9f:d7:bf:4c:7b:fe:f9:65:39:78:67:97:88:f5:d4:a9:4a:60:
4d:18:5e:32:15:4c:3b:43:4c:c9:60:fd:13:c0:78:7b:68:23:
6e:b1:a6:0b:7c:e1:d6:f0:0d:1b:ee:87:ad:9c:b3:58:b4:45:
c9:a1:49:83:b5:f3:c4:5f:94:95:89:05:b8:65:e0:d8:8d:b5:
ca:4e:a6:1d:9c:8b:9a:30:39:d6:6b:41:8f:0b:e4:a5:c6:77:
6c:35:4d:9f:e7:e9:72:c0:af:72:6f:f4:4a:e3:7d:51:e6:f1:
95:fe:83:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:53 2023 by rpki-client on console-fra.rpki-client.org