Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/d61d682f-0b26-4313-8f22-323d9d31557b.roa
File: d61d682f-0b26-4313-8f22-323d9d31557b.roa (raw, json)
Hash identifier: g23pHcZVQkf54neE8dvyOXLJBl72An9yeacFWGHNwms=
Subject key identifier: 2B:57:D4:6F:2A:6C:DF:12:86:C6:99:A7:71:76:00:0F:45:1C:7A:4A
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 6B3BD347ACB3BE37DB2A83D39CAFFEB3B2B8EFAD
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/d61d682f-0b26-4313-8f22-323d9d31557b.roa
Signing time: Sun 18 Dec 2022 00:00:00 +0000
ROA not before: Sun 18 Dec 2022 00:00:00 +0000
ROA not after: Wed 21 Dec 2022 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6b:3b:d3:47:ac:b3:be:37:db:2a:83:d3:9c:af:fe:b3:b2:b8:ef:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Dec 18 00:00:00 2022 GMT
Not After : Dec 21 23:59:59 2022 GMT
Subject: serialNumber=ddf4733c4b6d06a9f1c06a2b813fc62a6760a17a7e26fb7c07ebb9eb63e6aeb2, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:82:d5:8e:25:a4:cc:be:56:f5:40:b6:0d:b4:
84:94:11:d8:43:5a:43:95:d1:bd:31:0d:5d:6b:78:
87:5d:f8:bb:73:e7:54:f8:51:c5:e0:3e:11:c6:45:
9a:f7:c1:cb:52:02:9f:ad:86:0c:3d:a4:fc:bc:5b:
17:79:d1:0f:52:4f:50:a4:d4:2b:97:e5:27:e3:43:
09:aa:0c:04:9e:5e:13:64:26:4d:8d:22:ed:d7:45:
c9:77:c9:b6:83:87:01:6a:7b:53:aa:37:88:21:6a:
8d:4d:e1:44:05:6d:90:7d:c6:91:6e:44:73:87:20:
ec:ee:6d:f9:bd:d6:bd:eb:03:37:10:89:f3:c2:fb:
b0:ab:21:25:b2:57:4c:ae:72:51:11:d7:be:c5:c2:
a3:19:b8:51:40:5d:e1:9d:0e:31:5a:cd:51:be:84:
40:a4:6a:45:53:0b:a2:cd:4e:a0:05:a0:42:8b:0f:
f0:50:f4:d0:62:ec:2c:ec:b3:bd:83:f5:6c:a7:21:
53:62:b0:00:7c:e4:29:c3:e1:c6:5c:65:8b:f4:b0:
cd:33:e5:48:1b:92:99:7d:29:0d:fa:9c:b2:07:6e:
9f:87:17:e8:15:d6:4b:94:11:cc:e7:08:71:e9:b9:
c2:0f:81:c7:00:ca:07:26:46:e9:8e:79:b9:f8:46:
90:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:57:D4:6F:2A:6C:DF:12:86:C6:99:A7:71:76:00:0F:45:1C:7A:4A
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/d61d682f-0b26-4313-8f22-323d9d31557b.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
1e:06:27:31:35:3b:cd:37:b4:4c:4e:e8:fc:75:6c:f5:fe:dc:
c1:68:47:1c:6a:8d:bc:9c:cc:95:e9:99:90:fe:b4:9a:e2:75:
67:bb:af:ec:f8:6e:b8:a4:74:ef:31:09:b2:bd:ec:73:ed:d5:
1f:8f:16:6a:7d:ba:61:b8:b7:3f:e1:2e:e4:e6:82:a2:2c:22:
f2:54:25:42:63:bc:df:f5:f3:4b:7d:2e:8f:8d:1d:02:bb:d2:
8d:23:7a:49:53:22:28:91:b3:cb:14:47:65:67:3a:3c:9e:51:
cd:1c:f8:66:69:00:c5:34:74:52:f4:d5:a9:cc:f8:9e:c9:79:
58:c1:26:99:ac:82:0c:1f:a3:39:0b:5f:08:fc:d1:6f:6e:dc:
68:42:1c:47:da:c4:35:a5:90:0c:ab:b1:23:4e:9c:7b:49:27:
a3:49:2a:fb:6b:b4:72:a0:1d:46:e3:fb:99:44:5e:47:29:4c:
cc:96:bf:61:b8:cd:da:27:47:80:cf:b8:10:8d:2f:97:a1:5b:
19:d4:1e:57:81:bc:1e:19:d5:2e:f7:73:5e:55:ef:9e:cc:1a:
e0:a1:77:22:bc:e1:6c:fb:5a:41:bd:b3:b8:5a:4b:b1:3b:a4:
cc:5b:8b:af:d6:26:dd:4f:29:46:46:84:77:e3:ba:47:d1:8c:
89:e5:71:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:54 2023 by rpki-client on console-fra.rpki-client.org