Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/d9db3c65-2264-468e-ab5c-93ec87ac4dcd.roa
File: d9db3c65-2264-468e-ab5c-93ec87ac4dcd.roa (raw, json)
Hash identifier: lOprXWnZ9LCG6uBhFW/tbWbGqMyN8xp0hOxGV5w0HSM=
Subject key identifier: 65:6E:D4:2B:E9:EB:B1:F7:51:36:1A:BA:3F:F8:DE:9F:C8:7E:D0:B0
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 122D738CF12FB3B7087A1857AC7BA065DA59FF24
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/d9db3c65-2264-468e-ab5c-93ec87ac4dcd.roa
Signing time: Fri 05 May 2023 00:00:00 +0000
ROA not before: Fri 05 May 2023 00:00:00 +0000
ROA not after: Mon 08 May 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
12:2d:73:8c:f1:2f:b3:b7:08:7a:18:57:ac:7b:a0:65:da:59:ff:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: May 5 00:00:00 2023 GMT
Not After : May 8 23:59:59 2023 GMT
Subject: serialNumber=f6b6da446b016a4dc6d8323fed1c49378edb8ad37d23a965c485ee4225bf8227, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:42:69:8b:63:ea:5e:6f:af:ab:f0:f7:e1:00:
84:c2:99:d7:5e:38:e8:38:28:60:09:b3:6b:70:0a:
b6:11:5b:28:fa:39:ce:58:7c:41:73:96:3c:61:1e:
11:5b:94:f6:8b:58:cd:82:d0:45:7d:ab:21:f9:bb:
76:3a:98:9d:74:ab:70:f8:55:35:1d:07:f8:80:a7:
aa:38:99:ee:49:8d:35:f1:15:7a:ce:bb:8c:17:2a:
ae:ed:5b:36:4b:b0:81:fd:f5:c8:3e:bc:c2:d5:1b:
c2:2b:95:1c:b7:0e:17:07:a3:51:2c:ca:b4:3a:a7:
0c:9a:9f:df:c4:17:9e:54:45:5d:e3:0f:d9:df:a0:
01:5f:a0:93:3c:bd:00:81:ee:f2:47:ff:cd:7e:0f:
a7:bf:cd:46:17:a1:10:5b:cd:de:f2:cf:73:1a:6b:
b0:24:03:3a:e9:7f:09:d2:7e:52:49:10:14:1e:fe:
68:63:12:1e:58:80:1d:46:4a:0b:7f:b0:c8:a6:6f:
d7:23:25:16:3c:21:f5:19:2f:4b:42:90:28:c6:ff:
83:37:16:f8:65:cf:6b:0c:61:33:37:15:7e:26:29:
7d:c4:70:b5:16:54:7d:09:4e:d0:61:f9:c8:64:2f:
7a:b1:6c:24:dd:72:6a:91:fc:52:8a:16:2c:11:2b:
63:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:6E:D4:2B:E9:EB:B1:F7:51:36:1A:BA:3F:F8:DE:9F:C8:7E:D0:B0
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/d9db3c65-2264-468e-ab5c-93ec87ac4dcd.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
03:11:95:8c:8d:67:1a:19:28:97:a2:32:9f:dc:e8:20:74:38:
04:ea:4d:8f:5b:f5:fd:19:ad:53:92:8c:cc:18:52:61:06:84:
c9:94:ab:3c:e3:f7:0d:99:1f:9d:90:88:8b:01:83:03:25:10:
52:7f:25:6b:d7:99:88:bf:63:4f:1e:7c:00:6f:bc:bd:ce:d7:
7d:ee:6f:10:09:33:ff:47:d7:bc:02:44:a6:97:42:85:dc:de:
8f:cc:d0:f3:eb:c2:c4:ec:f5:fb:13:b0:5d:c5:38:62:b5:05:
c1:93:d1:7d:c3:c7:ac:cc:76:bb:d6:ed:6d:4e:e9:3a:33:be:
d2:12:0b:3f:a7:60:da:c1:a8:c9:c1:a5:2a:13:b3:09:dd:37:
1c:f6:fb:12:05:c4:56:9d:1b:b7:01:c0:0e:07:b7:49:42:7a:
ce:12:cc:3a:28:d6:f1:5b:5b:ea:c1:88:16:a7:14:ba:9c:0e:
3c:68:72:ef:fa:07:17:8e:3c:b1:f4:68:ad:98:de:38:e3:74:
ee:08:cc:7c:f4:db:5e:a2:c9:86:e6:64:95:cb:0d:d1:64:ef:
aa:6b:1a:c5:e2:fb:a4:63:94:1d:38:76:59:77:c5:4d:20:5f:
52:52:4e:12:e5:44:7d:99:82:96:f3:5c:29:b0:3e:7b:ec:23:
39:80:80:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:54 2023 by rpki-client on console-fra.rpki-client.org