Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/ee77e949-8b7b-42a6-94d6-3502a2e0e486.roa
File: ee77e949-8b7b-42a6-94d6-3502a2e0e486.roa (raw, json)
Hash identifier: cGKPs57Gt1PHohGNvrifuf2rDTg/j4RbZqaAJzfhLxM=
Subject key identifier: 59:47:C2:54:74:94:C8:73:AD:08:DC:AF:CC:34:9E:51:B7:14:A8:1A
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 2C847E055A147670C340BED52E01EED1D2CC4FF6
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/ee77e949-8b7b-42a6-94d6-3502a2e0e486.roa
Signing time: Tue 30 May 2023 00:00:00 +0000
ROA not before: Tue 30 May 2023 00:00:00 +0000
ROA not after: Fri 02 Jun 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2c:84:7e:05:5a:14:76:70:c3:40:be:d5:2e:01:ee:d1:d2:cc:4f:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: May 30 00:00:00 2023 GMT
Not After : Jun 2 23:59:59 2023 GMT
Subject: serialNumber=dc3281e05e9c5f8c53aa2431ded43eb0071b3f6a892b1c6d7b08d7ad6fea75bb, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:aa:46:cb:fb:6d:ae:90:eb:2c:e5:84:0b:fc:
fb:38:e2:94:29:fa:64:ab:de:98:37:41:5f:60:a0:
56:98:63:0a:ea:12:9f:fc:56:e2:6d:ba:c7:d9:98:
94:b3:07:f9:35:fc:cd:d1:a0:4a:71:4d:3c:24:24:
f1:37:33:55:31:ba:16:54:f6:f9:95:f6:d3:40:1d:
72:6e:e2:66:3f:71:10:ba:fe:cb:9d:be:cf:18:b3:
6a:e5:b1:b1:ba:f0:b6:b6:a1:a6:45:de:0b:69:af:
ca:f1:f2:4d:a8:c9:4a:39:c4:7f:06:06:98:63:69:
7c:2b:9d:30:d6:5c:6b:b4:5f:40:06:3f:d1:67:52:
6d:18:87:90:d8:8a:71:dd:11:9c:b4:86:d5:f7:a5:
0e:d6:67:3e:b6:30:e0:b6:74:e5:ad:44:53:75:d5:
cf:fd:81:8c:0a:de:11:8d:ec:6a:4a:8a:1c:a0:74:
cc:85:ec:e1:88:e8:2d:46:3e:12:1c:67:0b:4f:f5:
02:02:ad:40:e5:32:cc:98:55:3d:c6:46:4a:66:8a:
cc:7e:4b:d9:4e:97:0a:79:c6:a6:e4:51:c2:1f:99:
b7:f5:d1:e8:1c:78:2c:3c:56:a9:4d:93:36:c6:9e:
1e:25:c0:3e:d1:ef:c8:08:b1:61:d3:7b:11:c4:a2:
9b:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:47:C2:54:74:94:C8:73:AD:08:DC:AF:CC:34:9E:51:B7:14:A8:1A
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/ee77e949-8b7b-42a6-94d6-3502a2e0e486.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
09:2d:32:a8:ec:42:3d:b7:af:7e:ab:9c:f2:b5:fc:40:39:e8:
e0:c1:be:3e:34:9c:eb:01:27:a2:3e:3e:f3:64:b0:a4:ed:e5:
ef:4d:34:cf:fb:d5:f3:de:e9:aa:bc:fa:96:60:ae:b4:f0:52:
2a:49:a3:dd:dd:9a:79:e4:fa:51:90:a3:c1:56:f7:ba:eb:54:
88:bc:53:9b:73:45:8e:ac:81:25:2e:e0:22:05:4f:6c:22:62:
44:00:3c:f0:64:5b:ad:ac:f5:a0:8a:ed:d4:ac:df:49:50:ad:
af:8f:01:b6:f1:86:92:80:a7:2a:c1:ce:65:84:89:1b:6f:95:
28:9a:17:04:22:64:39:62:b9:a6:b0:cd:61:14:f0:4a:5c:46:
17:28:33:fd:8e:4a:c7:d7:6f:3d:d2:05:de:4f:63:ed:be:8f:
73:90:b1:b9:44:74:59:6c:ca:f9:f6:2d:22:66:27:72:26:fe:
a6:8d:1b:6a:66:5d:f6:52:70:6d:68:c4:de:4b:54:9a:af:0c:
05:e0:ba:e0:6e:fe:76:a0:ee:a1:3a:01:a6:ff:0f:f9:34:6c:
e9:58:25:58:b3:5b:3a:44:c2:85:63:5c:af:27:78:e8:f6:c9:
bf:04:28:4e:30:b8:fb:7d:27:ec:44:24:ac:ce:dc:69:fe:ea:
9c:be:10:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:55 2023 by rpki-client on console-fra.rpki-client.org