Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/ee435e17-932b-4c1a-aef4-746a866c0553.roa
File: ee435e17-932b-4c1a-aef4-746a866c0553.roa (raw, json)
Hash identifier: DdDcMADN1jYL/5m5EHoVp/zoGNsYnuTmbiBjFFj60GI=
Subject key identifier: C7:87:2C:60:01:8C:6A:74:CD:AB:D5:A0:E3:9B:8B:78:A7:B9:84:AF
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 11F897344C3A495D086A8382DFCBF39B7DB51236
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/ee435e17-932b-4c1a-aef4-746a866c0553.roa
Signing time: Mon 27 Feb 2023 00:00:00 +0000
ROA not before: Mon 27 Feb 2023 00:00:00 +0000
ROA not after: Thu 02 Mar 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
11:f8:97:34:4c:3a:49:5d:08:6a:83:82:df:cb:f3:9b:7d:b5:12:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Feb 27 00:00:00 2023 GMT
Not After : Mar 2 23:59:59 2023 GMT
Subject: serialNumber=66349026ec2d4821756ef2198023a7848a5b9b9d1723215ebaa43f068af2b06c, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:fa:4c:24:a5:3c:59:70:b5:ce:46:b9:c2:8b:
df:2c:39:50:29:78:78:0a:89:b1:04:33:d8:1d:58:
9f:90:75:72:7f:70:8f:ee:1d:10:6b:d5:26:31:38:
1f:ee:69:55:3e:22:7c:76:fa:3b:c9:05:70:47:4e:
8d:fe:45:76:83:e3:38:2e:22:d5:22:41:ed:a3:df:
20:6a:8a:80:32:d8:3c:e1:65:ad:25:6f:0e:f4:8d:
1b:c1:9e:01:ce:0f:04:6a:5f:2b:81:a3:d0:3d:be:
0e:62:d4:90:c8:41:a3:99:9f:5c:bf:b8:5c:bc:9e:
eb:c5:e4:51:ac:4b:fa:23:69:93:e7:04:64:ef:f3:
94:0a:31:ad:18:0a:02:ce:41:61:1a:eb:38:a6:bc:
01:68:3e:ad:76:b2:8e:3e:32:a3:42:06:47:e3:a4:
00:49:69:33:32:51:87:cb:7b:11:83:de:b8:72:ea:
2a:d5:74:b0:8b:8c:50:3e:8b:d3:94:91:ad:24:81:
45:fa:67:23:26:a7:12:af:30:66:36:ae:fc:d0:9d:
ae:b0:ee:43:95:e5:c0:e6:70:35:aa:50:a8:e3:dd:
95:f7:b9:0e:d4:23:9d:fc:e4:99:9a:ca:62:bc:a8:
a9:ad:db:f9:ce:94:bb:db:7b:a2:3e:15:91:fa:4b:
4d:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:87:2C:60:01:8C:6A:74:CD:AB:D5:A0:E3:9B:8B:78:A7:B9:84:AF
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/ee435e17-932b-4c1a-aef4-746a866c0553.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
b0:6b:83:62:42:03:6b:75:62:f6:f4:1a:1c:be:3b:8b:48:f2:
f4:28:b9:15:79:d5:91:4c:15:4f:40:92:eb:a2:b9:62:07:e4:
5d:bf:46:7d:36:3c:70:bc:eb:45:c8:fb:16:a4:7f:28:c2:2e:
f5:c3:bc:0a:3a:bf:ff:7d:29:81:9b:b3:da:46:c3:ac:40:5b:
92:c2:30:5c:25:a6:c7:fe:1b:c8:81:ff:c1:6e:08:af:7e:92:
a4:6b:96:f3:3c:de:36:90:99:fe:b9:6a:7f:3a:ca:76:3f:b8:
64:c0:f5:6e:d3:4e:35:80:66:cd:55:12:d2:2a:6f:b2:ca:2a:
f2:7e:e0:8a:19:b7:86:b7:f3:d7:98:38:f5:af:ce:98:61:c1:
da:ba:4e:e4:ce:7f:4f:25:50:d9:90:90:09:4f:eb:6a:aa:54:
8e:94:80:36:a6:ff:47:6b:c8:b8:cc:b2:6b:1b:28:8f:19:a9:
5b:3c:57:ef:01:b5:91:f4:00:53:41:f3:24:b4:60:fd:a8:8e:
97:09:08:28:6e:5c:86:75:06:f9:0e:31:20:9a:8a:6c:90:34:
ed:4a:b0:23:a1:0b:ac:99:72:e1:f7:63:89:9a:c0:26:3a:4f:
a8:ca:a7:27:91:c4:7e:24:f4:72:00:93:22:dc:31:d3:fe:98:
97:13:1f:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:55 2023 by rpki-client on console-fra.rpki-client.org