Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/e107131c-997c-4bbb-b582-ac4e3ab6805b.roa
File: e107131c-997c-4bbb-b582-ac4e3ab6805b.roa (raw, json)
Hash identifier: 3MGR6hSjABqHDInK5kjImD1IdOGUqTy8PqAKA3wJcEk=
Subject key identifier: DE:D3:A3:BD:C9:2F:B0:19:17:41:3A:AD:14:B5:23:1F:F5:DE:28:74
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 6BE976814303126A72671CB10C5EB40C5825EBCC
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/e107131c-997c-4bbb-b582-ac4e3ab6805b.roa
Signing time: Wed 29 Mar 2023 00:00:00 +0000
ROA not before: Wed 29 Mar 2023 00:00:00 +0000
ROA not after: Sat 01 Apr 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6b:e9:76:81:43:03:12:6a:72:67:1c:b1:0c:5e:b4:0c:58:25:eb:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Mar 29 00:00:00 2023 GMT
Not After : Apr 1 23:59:59 2023 GMT
Subject: serialNumber=553985dca5092e1410f7e1774a938c29f65e9b3bf84edbc74abb7351dc46e486, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:75:9a:a4:94:05:28:30:0e:1b:94:89:5c:19:
0b:6e:f0:a5:2d:15:ba:26:a2:ea:da:6f:08:23:db:
4c:d0:d7:d4:28:03:1e:e6:bf:ee:c2:30:58:7e:04:
a0:c4:83:18:e3:79:24:93:b8:9b:78:70:43:3e:fe:
df:32:2d:e7:cc:94:fd:5e:e4:64:65:a2:cb:0d:36:
1f:83:8c:a6:db:e5:10:36:df:63:38:ff:66:90:5a:
f8:f0:db:97:18:c4:93:9f:86:4c:fb:f8:33:02:30:
71:dc:5f:65:d0:7f:fa:4f:81:b9:32:49:9f:b3:64:
b5:00:1d:4b:06:31:1c:ab:c1:7b:d9:3e:ba:51:34:
2c:53:41:3e:7f:fb:6e:eb:26:50:b0:1d:2e:55:99:
05:c8:b9:dc:67:32:5d:84:a7:50:50:f1:5e:f1:dc:
f4:07:a1:12:88:33:83:4d:ee:3a:7d:28:2f:68:d5:
09:92:91:9f:76:04:e8:70:cd:54:aa:a0:e4:62:94:
8f:7c:bc:94:16:47:d9:59:0d:68:68:24:db:a4:ff:
9c:c7:a0:56:fe:da:88:ca:c7:c5:3c:d5:91:bb:1c:
f6:35:40:f4:33:bf:b6:01:6e:c6:69:6b:21:dd:30:
ea:e7:ae:f7:31:6b:4d:c2:1b:dd:bf:b3:19:fd:7f:
12:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:D3:A3:BD:C9:2F:B0:19:17:41:3A:AD:14:B5:23:1F:F5:DE:28:74
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/e107131c-997c-4bbb-b582-ac4e3ab6805b.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
c2:f3:90:be:e3:47:cc:f3:19:7e:ec:e5:49:e7:6a:f7:b5:88:
43:68:85:d6:ff:4c:4b:d0:0d:4a:76:ef:89:82:03:49:08:57:
0b:73:7f:50:f3:90:65:09:2a:05:72:19:7e:6f:e5:91:14:5f:
69:09:0c:60:ed:87:cf:d0:f6:3a:10:16:5e:18:6c:86:52:5d:
e4:91:97:ae:eb:bb:88:17:d2:87:dc:df:c1:03:53:c8:23:3d:
91:76:68:49:fe:30:2d:8a:b3:6c:a1:8a:00:be:a6:bd:1a:39:
cd:82:7b:36:3c:78:21:06:85:0b:c8:b6:46:b7:50:b0:b7:ed:
02:d2:c4:96:0b:77:d9:1b:87:c4:33:cc:02:12:3c:2f:a8:ce:
bb:76:db:6a:1d:ce:ed:a1:11:5a:fc:ab:ec:b9:79:2e:49:b5:
3d:ad:ac:d1:da:1c:27:35:9c:74:d0:95:d7:30:32:84:be:d0:
98:81:72:25:20:31:89:57:55:2d:17:88:18:87:11:7a:b3:49:
d5:ac:bb:83:1b:a1:40:1a:b5:73:5c:59:33:d3:42:8d:70:b4:
8a:07:54:56:7f:f9:d5:34:95:17:2f:c5:cc:10:f5:e5:18:a2:
e9:6a:94:07:6e:e3:ed:aa:fb:84:ba:30:14:4e:30:1a:4d:22:
30:41:a0:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:55 2023 by rpki-client on console-fra.rpki-client.org