Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/db5c092c-139c-4d26-beef-7de738abc09a.roa
File: db5c092c-139c-4d26-beef-7de738abc09a.roa (raw, json)
Hash identifier: umskhaVfO+XgFA3wnIEw70OtizOUN3645TqGW7irkZA=
Subject key identifier: 25:1D:65:96:BF:AD:B8:A7:D9:11:CF:D4:E0:C3:72:18:6B:26:61:3E
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 14A5C519BD0F3723ECBE64D83F81F3E36677E338
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/db5c092c-139c-4d26-beef-7de738abc09a.roa
Signing time: Wed 08 Mar 2023 00:00:00 +0000
ROA not before: Wed 08 Mar 2023 00:00:00 +0000
ROA not after: Sat 11 Mar 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
14:a5:c5:19:bd:0f:37:23:ec:be:64:d8:3f:81:f3:e3:66:77:e3:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Mar 8 00:00:00 2023 GMT
Not After : Mar 11 23:59:59 2023 GMT
Subject: serialNumber=1185051628bc7c1f02d0f47ebec8082aa9f7f51debb1a4014e17623f43bc997e, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:87:54:1d:24:18:1e:7c:c9:99:33:15:c3:c7:
85:62:1e:de:f2:ce:d2:4e:a5:b9:56:a4:a6:c5:c1:
9e:8a:89:35:1a:15:4a:cc:e8:8b:ed:7a:10:ec:23:
22:f7:71:de:a1:29:49:19:14:48:07:d9:e6:2f:92:
07:25:a7:b5:79:b2:bc:e7:80:06:36:30:61:68:61:
15:b4:a6:d0:4e:da:6a:6f:a0:89:42:52:4e:9b:1a:
5f:d6:c1:b6:ce:85:ab:77:79:75:f5:8a:90:bd:7f:
0d:77:ad:2a:6f:d8:d8:ed:34:0f:1c:d9:b3:15:ef:
59:bb:f0:d8:01:ac:55:29:18:cd:8d:5f:55:5b:fe:
b8:02:d0:54:ba:b3:3b:4c:18:c2:7b:a3:9a:f5:85:
cb:ed:42:0e:3c:7a:84:f7:e4:2b:f8:47:cc:87:5c:
f0:5c:f3:38:52:d8:13:ef:96:00:d5:d9:1e:45:e3:
0d:f8:54:49:f4:b7:6f:76:a6:b7:17:41:26:78:1e:
3b:d0:10:b2:1f:8f:f8:1b:c4:62:c8:16:a0:54:0f:
82:5b:33:f8:1d:83:48:0c:ff:9b:bd:b4:a7:f2:8e:
00:05:5d:c9:23:29:c8:a8:fd:b8:65:0f:a9:f7:66:
c1:d9:0d:1a:e3:f5:c9:d3:3a:57:1f:eb:2a:13:7e:
a4:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:1D:65:96:BF:AD:B8:A7:D9:11:CF:D4:E0:C3:72:18:6B:26:61:3E
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/db5c092c-139c-4d26-beef-7de738abc09a.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
5b:33:f5:67:49:60:85:4f:9f:37:46:87:b2:d3:22:e2:81:5a:
ef:1d:c8:ae:dd:0f:06:6c:c0:74:d6:e6:2f:f4:53:3c:84:08:
58:e8:ca:ab:95:7d:39:ff:dd:e8:5a:01:77:57:8e:88:b6:00:
c7:16:ec:d6:67:05:6d:f7:a4:44:61:80:62:0b:e1:b9:58:91:
6c:33:84:df:de:6e:9d:5e:73:eb:ba:a1:2b:87:a1:03:71:2f:
d0:68:c4:0d:71:f8:d0:93:0a:2b:c8:7e:cd:02:6e:e6:7d:8a:
22:b0:08:c8:52:36:25:0d:74:d9:fa:03:07:8e:fc:e9:e3:af:
5c:97:72:ce:f6:a9:25:06:57:64:06:45:8a:96:b5:e8:38:21:
06:e4:b3:7e:8d:b0:e1:d2:98:47:a9:75:ae:6c:69:20:15:41:
4b:d5:9b:0f:70:f9:67:be:5d:16:28:21:a1:12:2a:1d:f3:7a:
15:b3:95:83:26:d5:71:84:f9:0c:55:2e:d5:03:53:5d:58:12:
09:e6:6c:40:64:af:fe:2b:13:46:5d:05:31:94:27:d6:ee:eb:
2c:27:b8:80:53:39:c0:b7:95:21:53:13:ae:2d:b5:77:3c:90:
ab:3e:e8:1c:15:ce:48:f0:2b:82:54:55:c9:16:f2:31:07:31:
ff:e8:f2:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:54 2023 by rpki-client on console-fra.rpki-client.org