Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/dd1b802a-59ac-485a-8416-be9ae44c6b7c.roa
File: dd1b802a-59ac-485a-8416-be9ae44c6b7c.roa (raw, json)
Hash identifier: DMHMQIW9VI2/Zh2MIImy9RVW2bF+9oCNo8MktkEvs9Y=
Subject key identifier: C6:20:32:8F:5C:8B:51:A0:B1:6D:8A:4C:5A:0D:1F:32:A1:DF:83:9B
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 3090DE70BD74BC46D432502633C9F20BF6A99D15
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/dd1b802a-59ac-485a-8416-be9ae44c6b7c.roa
Signing time: Sat 04 Mar 2023 00:00:00 +0000
ROA not before: Sat 04 Mar 2023 00:00:00 +0000
ROA not after: Tue 07 Mar 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
30:90:de:70:bd:74:bc:46:d4:32:50:26:33:c9:f2:0b:f6:a9:9d:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Mar 4 00:00:00 2023 GMT
Not After : Mar 7 23:59:59 2023 GMT
Subject: serialNumber=45a09c9f24892323d4ef5034154893bb77896d4c1b328bbcaf1f73df16fd86e5, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:b0:4e:24:4f:8f:aa:8b:0c:69:a8:26:f0:28:
cc:df:48:62:1a:c8:ff:59:98:a2:6b:28:f1:97:5d:
ca:f9:06:3c:60:a2:10:c8:bf:8d:d9:09:fa:0a:3b:
20:cf:54:08:0f:6f:35:03:65:d6:e4:4d:f1:31:4f:
fb:69:5f:33:be:cf:f1:fb:16:af:65:3b:e8:f1:65:
8e:9e:5b:f7:9b:b3:49:fa:df:28:2e:a4:0e:3f:2c:
83:5b:e2:ed:73:4e:c7:72:74:b4:40:39:0e:23:da:
69:5e:36:a2:62:ba:e2:00:27:ac:e8:7a:41:a2:f4:
9c:52:a7:b6:c5:32:9a:5a:e2:0a:4d:2e:8f:52:3f:
b1:e0:6e:8a:00:8f:99:c7:dd:d6:78:4e:6e:13:19:
59:44:89:45:e6:69:19:35:f3:ad:41:03:c5:4a:8c:
0c:3a:44:55:ee:91:54:24:f1:95:f0:5a:0e:b2:33:
a2:47:de:13:48:cf:f3:9d:0d:24:34:17:2c:b2:a2:
ff:f3:06:f3:26:b0:3f:6c:4a:f9:76:59:06:35:76:
28:b2:a7:54:19:c6:ac:28:98:5f:d0:1b:7e:92:52:
6a:c5:aa:d2:82:be:a7:a9:97:45:66:b7:65:95:a4:
4d:2f:90:43:16:9d:18:4a:c6:8c:45:f2:1c:42:bc:
c1:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:20:32:8F:5C:8B:51:A0:B1:6D:8A:4C:5A:0D:1F:32:A1:DF:83:9B
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/dd1b802a-59ac-485a-8416-be9ae44c6b7c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
b8:59:88:44:20:e9:de:8e:f7:98:86:6f:88:7c:d4:77:56:26:
07:d6:fe:26:c4:64:dd:80:a3:43:9f:54:5a:27:fd:94:15:f5:
67:06:64:90:03:08:9d:8a:fa:29:a6:10:2f:a1:be:42:53:41:
e0:e3:cb:c9:92:d3:bb:87:40:e0:f1:9c:b3:60:3b:4b:f8:37:
c5:ee:0b:c9:e9:54:ab:68:fa:55:e6:d6:9c:dd:17:9e:f3:fc:
c3:fc:12:34:c3:8a:32:f6:13:26:51:b0:bc:06:35:ab:5d:70:
ee:73:bb:d9:73:00:c8:32:e1:3c:e9:57:5f:e0:61:82:4d:86:
7a:6e:69:3c:d7:90:0c:37:63:a6:0d:9a:8e:48:37:88:3a:b4:
a5:74:8d:37:15:0f:41:7d:8b:42:4e:9e:5c:2b:60:b7:f1:bb:
91:ef:e9:10:dc:a3:35:53:34:b1:e0:ba:a2:a7:fe:b2:a6:69:
60:a0:08:11:74:0e:e2:94:44:00:d5:5a:f4:5d:50:9d:b6:33:
f5:16:a9:57:e1:88:40:ca:94:e6:7c:b6:08:7b:8f:8c:0d:fd:
2c:94:48:e8:f2:89:37:b5:41:1c:bf:b9:3b:d8:a9:67:69:7e:
be:f6:e2:39:51:f9:94:99:cf:73:92:63:80:c6:c1:df:62:bb:
83:c6:43:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:55 2023 by rpki-client on console-fra.rpki-client.org