Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/d6345afb-d783-4f2d-bde3-413a45e08cba.roa
File: d6345afb-d783-4f2d-bde3-413a45e08cba.roa (raw, json)
Hash identifier: Aj4f3ylp+KZtrfalpAUhwy49cnHEN0zeA2/4LXTeXv0=
Subject key identifier: EA:5B:35:0F:B6:4D:9F:66:F5:61:9C:69:0E:1A:EC:DE:D1:E2:AC:5A
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 619A09470E53E0522F7ACF0F38C90C9C37F4F96E
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/d6345afb-d783-4f2d-bde3-413a45e08cba.roa
Signing time: Mon 28 Nov 2022 00:00:00 +0000
ROA not before: Mon 28 Nov 2022 00:00:00 +0000
ROA not after: Thu 01 Dec 2022 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
61:9a:09:47:0e:53:e0:52:2f:7a:cf:0f:38:c9:0c:9c:37:f4:f9:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Nov 28 00:00:00 2022 GMT
Not After : Dec 1 23:59:59 2022 GMT
Subject: serialNumber=5dd4bd20bf9ad7f30fc8a8c46af7ca943761974bdd4cda146bcf1e439a412193, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:31:57:ae:b4:1d:04:8f:a2:7d:08:be:47:54:
cf:53:91:4d:c1:6c:10:6b:fa:1c:2f:d3:b7:36:29:
cb:6f:3b:36:8c:ab:ab:1a:f3:0c:a3:63:4e:fa:21:
ef:d6:5b:81:0d:ca:67:2c:a9:08:b7:f0:8c:62:2a:
2c:89:02:44:37:f0:df:37:32:d7:20:16:6c:b3:68:
53:e2:94:3f:88:b2:7f:53:92:91:33:84:02:8c:39:
97:d2:a0:97:91:a3:b8:28:e9:7b:03:a4:b7:f9:f6:
78:63:14:db:0f:28:bc:f4:3e:30:71:93:1b:1d:31:
a3:30:ab:a8:d5:20:d5:99:34:09:5a:41:f0:03:e8:
a1:30:18:78:af:3e:5f:50:33:08:2c:b7:49:d2:a9:
a4:d2:32:39:36:ea:aa:f8:a6:07:0d:46:85:78:3e:
74:5b:5f:8d:7a:44:22:6f:b1:20:e6:6f:00:e2:a6:
ee:29:09:18:42:65:df:2a:d3:e9:2b:db:83:e3:f6:
d3:08:ca:46:92:47:8e:8d:2d:77:41:d8:4a:ab:af:
ab:63:fd:77:07:bb:24:6f:97:38:15:9d:61:6a:cc:
28:2e:9c:a2:61:52:2f:98:28:51:ab:e2:0e:f1:64:
b1:a8:2f:97:ff:2e:6d:41:e7:46:57:e2:d8:67:a1:
58:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:5B:35:0F:B6:4D:9F:66:F5:61:9C:69:0E:1A:EC:DE:D1:E2:AC:5A
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/d6345afb-d783-4f2d-bde3-413a45e08cba.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
00:00:e7:be:4c:50:77:1a:25:10:28:e0:37:c0:86:9b:e3:7f:
9b:fa:ec:85:10:a7:30:85:fd:38:7e:d6:91:c7:61:fa:b7:da:
21:b7:88:b8:66:3a:4c:0c:01:2b:0a:9f:f4:de:6d:8f:9f:18:
39:0d:52:22:f9:b2:10:ab:78:76:3e:a9:bf:ef:c7:96:a1:f8:
a4:04:56:52:4f:0d:f6:0a:49:99:be:de:f4:22:bf:92:3b:88:
f1:54:1d:dd:32:74:6b:c9:34:41:c7:6f:69:3f:13:d6:b7:aa:
5c:09:2a:4c:d1:7a:5f:37:24:20:87:39:2d:d9:95:02:1a:41:
13:d9:32:dd:1a:c5:ed:3e:5d:c4:b3:52:aa:86:55:ca:98:fa:
82:c4:e5:ad:9c:46:07:1a:1f:cf:4c:5d:36:0a:8e:3c:9d:b2:
1d:21:24:55:2b:ab:6b:dd:66:7c:fd:f8:b7:91:52:c8:f4:96:
2d:fd:07:e3:1a:4d:54:41:e2:e4:78:d4:29:a2:31:53:df:db:
c7:02:72:44:1f:6d:32:57:fb:75:3e:73:a1:04:0a:61:24:1d:
66:81:2a:9f:ee:9e:9d:ef:79:39:7a:c3:4e:33:ca:20:b8:d6:
14:3c:d6:86:78:48:05:58:81:7e:2a:d7:c4:2f:1e:43:90:13:
fc:ae:6b:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:54 2023 by rpki-client on console-fra.rpki-client.org