Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/d7320a74-c605-49c6-be6f-80872136c5d5.roa
File: d7320a74-c605-49c6-be6f-80872136c5d5.roa (raw, json)
Hash identifier: +iQgLw5mrNVusT2COEJQ5zayQxHowhzfmIu+q/kDSNk=
Subject key identifier: 3C:01:A3:75:5C:35:D4:9E:7F:97:03:6A:A1:36:70:69:DD:C7:84:E7
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 70BF5AC9B899B59D9E5D28CBBF51207DB8719285
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/d7320a74-c605-49c6-be6f-80872136c5d5.roa
Signing time: Tue 02 May 2023 00:00:00 +0000
ROA not before: Tue 02 May 2023 00:00:00 +0000
ROA not after: Fri 05 May 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
70:bf:5a:c9:b8:99:b5:9d:9e:5d:28:cb:bf:51:20:7d:b8:71:92:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: May 2 00:00:00 2023 GMT
Not After : May 5 23:59:59 2023 GMT
Subject: serialNumber=cdf1c12597e78866a8095615725c518931f566aad250f473ae5fce871289163b, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:1e:89:23:4e:ba:02:3a:7e:da:1a:7c:88:b4:
8d:c4:d2:83:71:c8:9c:40:66:c1:a3:e6:e0:58:23:
8f:8a:fb:01:55:30:d8:63:e3:48:3c:19:7a:54:36:
47:31:4d:50:48:da:8d:f4:15:17:d0:57:2a:d4:29:
99:cc:25:5e:de:46:81:e4:45:37:6a:6e:96:fa:de:
83:c2:a9:f5:82:c5:f9:87:3e:a2:fa:16:09:a3:e2:
39:a0:1c:0f:4f:99:97:aa:e0:83:4e:66:2c:10:66:
43:58:cd:27:de:26:30:b0:4b:02:e8:15:22:f3:2c:
65:4f:a8:23:f9:22:8c:12:a2:20:56:c2:0f:d0:7d:
ac:43:ca:b0:51:cf:82:c2:44:90:b9:39:37:e4:f9:
59:a3:70:be:ad:91:85:91:94:c9:c2:81:f6:30:cf:
35:14:4e:cd:18:5c:ab:d0:6c:44:79:a9:79:1d:4f:
30:b2:39:00:e9:77:b5:57:3d:77:bc:9e:69:db:fb:
f9:f1:eb:65:28:7d:f7:00:1a:3c:87:cb:d1:e7:59:
ff:b2:8a:69:ea:c8:9d:32:a9:2d:75:8e:f9:e1:fd:
7a:39:f4:34:bf:32:3b:94:f0:09:4e:06:35:bc:c0:
92:37:2d:28:26:40:5a:ea:5f:e0:16:7a:7b:a8:e8:
2a:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:01:A3:75:5C:35:D4:9E:7F:97:03:6A:A1:36:70:69:DD:C7:84:E7
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/d7320a74-c605-49c6-be6f-80872136c5d5.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
aa:a8:e0:e1:98:df:fe:22:34:34:be:2f:22:78:65:82:76:1a:
5f:62:20:8c:b3:8c:9a:e2:06:0e:85:d3:c0:43:13:6e:50:c8:
80:95:57:ad:c9:b7:bb:39:84:36:01:30:43:25:74:1f:19:85:
1c:9b:f1:d5:cf:4d:2b:1e:bc:45:c4:0e:27:39:7d:c8:03:16:
c9:e0:82:28:93:ae:38:fb:26:e9:df:23:64:17:b2:18:87:99:
7c:24:c7:4f:5d:e1:20:2d:43:61:2a:54:5f:a9:e5:3a:da:6f:
25:cc:8d:b4:7b:b4:b3:18:35:b7:74:8d:d3:fa:43:7f:85:06:
36:73:7d:d4:2c:a6:72:0b:93:b6:f7:02:38:99:e8:6e:7d:88:
fb:13:29:6e:62:7e:41:82:f9:21:76:f0:55:e2:b1:21:8e:71:
3a:34:44:28:1f:75:09:85:79:0c:e0:d6:f7:09:e9:77:47:a2:
ab:21:fa:ec:a0:51:b8:5d:04:2f:06:ff:cb:49:fa:e3:9e:e8:
71:d5:f9:82:fc:fa:94:2a:e1:82:5a:4f:96:b5:03:d4:cd:6a:
a9:cb:94:04:f5:92:3a:8f:b9:65:f1:44:e3:92:4a:8e:79:89:
66:34:5d:16:85:f3:81:fb:7c:49:31:d6:fd:cd:b7:d3:6f:5c:
38:80:b1:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:54 2023 by rpki-client on console-fra.rpki-client.org