Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/d0233e3a-011c-4b9e-9f5a-17989f82cae2.roa
File: d0233e3a-011c-4b9e-9f5a-17989f82cae2.roa (raw, json)
Hash identifier: rGQ9P3tQRgzwyD2zYj9/kbu7wyUwWvgYdjXVY9jK0ME=
Subject key identifier: 98:E6:36:EA:60:8F:3D:AB:6F:5E:F0:83:F4:AF:59:FA:33:9D:E0:D4
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 1E249AE2A63C75771629168A9CCE4A624957ADE1
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/d0233e3a-011c-4b9e-9f5a-17989f82cae2.roa
Signing time: Tue 23 May 2023 00:00:00 +0000
ROA not before: Tue 23 May 2023 00:00:00 +0000
ROA not after: Fri 26 May 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1e:24:9a:e2:a6:3c:75:77:16:29:16:8a:9c:ce:4a:62:49:57:ad:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: May 23 00:00:00 2023 GMT
Not After : May 26 23:59:59 2023 GMT
Subject: serialNumber=78ad4c5e29085aef776a3c359883b3de6c76c3ea76cb68d4fe7b2b2fe04e4687, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:3c:79:96:52:de:b9:84:03:14:de:e4:18:94:
c2:fb:e7:c9:c0:da:0a:50:22:26:30:10:e6:a4:a6:
de:10:92:af:3a:65:b5:23:f5:79:e1:03:07:72:f7:
7e:6a:6a:4c:39:7e:8f:63:90:f3:7a:a8:34:d2:80:
c2:e4:4e:ab:ea:1c:d8:4c:3a:59:71:c8:de:41:0b:
da:ac:4d:d0:41:ea:f5:71:30:c5:ce:52:74:dd:9f:
96:10:01:11:7f:26:55:59:b0:82:26:92:ff:43:e3:
f3:32:85:70:29:34:91:44:49:d0:1d:5e:da:25:7e:
fb:75:83:a2:31:40:a6:00:02:77:ed:47:9e:f8:b7:
1c:6d:64:c7:7c:86:d6:2c:66:61:6d:8a:2c:e6:e6:
ba:60:9b:be:cc:50:72:0e:96:6a:79:b9:b5:f9:81:
fd:75:13:f4:ab:c6:bf:a4:c9:ea:20:92:13:69:9e:
b9:dd:a8:6f:cb:7a:01:33:ee:52:5e:bc:f9:87:c6:
16:89:47:90:5b:5e:7f:08:2a:3f:fb:25:f6:ec:93:
de:f7:40:1b:78:11:16:0c:7e:be:50:b7:96:74:ac:
d3:8c:23:dc:09:bb:f3:52:04:84:1b:e1:1e:80:0c:
bf:77:a0:8e:69:b5:f6:f0:12:bb:82:3c:70:fc:78:
57:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:E6:36:EA:60:8F:3D:AB:6F:5E:F0:83:F4:AF:59:FA:33:9D:E0:D4
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/d0233e3a-011c-4b9e-9f5a-17989f82cae2.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
6b:88:61:f2:21:09:98:7f:f5:5d:d7:48:0d:79:f8:55:e5:b1:
8f:da:48:0d:1b:b1:1f:78:36:0a:2e:b5:66:ed:82:7c:20:a6:
ee:16:03:22:aa:f7:60:85:a9:cc:4e:0c:b8:64:f8:3e:37:1b:
85:65:6a:6a:16:67:7a:0b:a6:df:41:6a:34:8b:2f:0b:d9:79:
9f:d0:43:9a:bd:6f:03:9f:15:5f:74:14:26:b4:89:64:fe:2d:
aa:28:57:c3:aa:2c:97:01:e3:ed:87:15:bd:ec:cf:1e:c0:13:
e8:08:59:01:65:d3:a5:4e:a3:cb:b6:e0:c8:00:ad:a7:24:42:
70:5e:4e:ca:f6:d8:ba:77:83:7a:0d:e1:20:39:2f:77:43:06:
6c:f9:02:12:3e:03:47:ec:d4:0c:8e:63:6e:7d:28:ee:59:d5:
b4:c0:67:3a:e0:ba:83:03:43:b9:9e:87:5b:c3:88:96:03:16:
44:61:c7:72:c5:ab:c4:e0:cc:ab:bd:ac:5c:c9:39:2d:e3:ff:
39:9e:23:8c:4a:77:7d:d1:63:bc:68:f2:24:e9:3b:6a:88:4e:
21:00:b0:13:dc:23:4c:d6:93:a0:96:d8:c2:49:bc:f0:47:be:
11:7e:61:a9:50:57:cd:5f:eb:c3:9f:64:4a:1c:3d:93:72:b0:
05:eb:c2:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:53 2023 by rpki-client on console-fra.rpki-client.org