Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/ef3e653b-5e95-4dfc-aec1-a9ab2bc38d0b.roa
File: ef3e653b-5e95-4dfc-aec1-a9ab2bc38d0b.roa (raw, json)
Hash identifier: sZyHzPXGguaxzqTQQLW+AMJtYf8NjWwqlAvxT2QbXxY=
Subject key identifier: 79:6C:27:E5:A0:C6:CE:48:44:5A:A9:8A:93:69:68:DA:2C:7B:06:D6
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 1B5A2FF48DD03249E3A8B6962069B35610F1581E
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/ef3e653b-5e95-4dfc-aec1-a9ab2bc38d0b.roa
Signing time: Sun 04 Dec 2022 00:00:00 +0000
ROA not before: Sun 04 Dec 2022 00:00:00 +0000
ROA not after: Wed 07 Dec 2022 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1b:5a:2f:f4:8d:d0:32:49:e3:a8:b6:96:20:69:b3:56:10:f1:58:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Dec 4 00:00:00 2022 GMT
Not After : Dec 7 23:59:59 2022 GMT
Subject: serialNumber=48b32c693e0fbf82f95d7137584a5e5e3641b2ccb208d3004e806fdef8ec691b, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:95:ec:ec:a1:9a:c8:4a:1f:64:3d:d6:2e:f3:
fa:95:9b:aa:57:27:6a:2b:e6:cf:b3:39:f4:97:c6:
61:60:95:c0:38:88:52:d6:a7:55:6d:fa:f4:44:0f:
c6:55:b0:19:2a:ff:96:72:97:ef:ec:b5:00:f7:09:
00:d3:19:10:a9:ab:ae:e7:f7:e1:c5:3f:78:8c:82:
b6:46:5d:72:0d:80:02:a5:a3:da:0d:04:0d:87:2c:
2c:76:0c:04:2a:59:87:19:95:2f:7d:1a:c1:b5:e7:
cf:d8:db:b4:40:1b:9d:78:a6:30:fb:5b:16:af:65:
23:05:9a:18:6c:39:47:ef:7a:42:54:b2:b9:3b:44:
61:c2:d9:51:50:67:8c:b2:55:6f:37:ed:27:c6:59:
46:86:f9:c2:38:cc:fe:fd:1c:2a:45:ee:a1:c6:49:
0c:50:d9:08:fe:38:be:7a:bf:41:d5:ba:e5:35:b5:
95:f5:7a:75:c0:c0:ee:59:8e:a0:83:01:ec:21:2d:
fc:13:2e:e3:92:10:65:8a:14:a0:5f:26:c8:54:0b:
31:5e:be:62:6f:4e:37:1c:9e:88:9c:a7:c4:7e:79:
a4:35:97:e3:41:ed:42:03:70:45:ba:6f:54:77:84:
37:77:bb:7d:40:5f:36:6a:e9:01:60:3b:90:29:61:
26:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:6C:27:E5:A0:C6:CE:48:44:5A:A9:8A:93:69:68:DA:2C:7B:06:D6
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/ef3e653b-5e95-4dfc-aec1-a9ab2bc38d0b.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
16:85:1a:08:1c:45:93:81:95:a5:7d:c7:7d:c8:41:33:e5:b5:
f1:f9:ee:81:50:05:f3:02:07:b2:fe:36:19:fa:e0:c2:3a:ff:
61:82:ae:8c:17:5b:bc:3b:60:f7:c2:8e:eb:fe:3f:93:8b:6b:
3b:49:39:65:02:5a:4f:ad:32:2d:a4:a2:79:40:e5:c3:41:37:
3f:7d:9c:be:43:72:a9:92:cc:0b:3f:9d:73:77:26:e7:cb:b0:
1d:3b:7a:67:a4:6f:4b:5f:cb:60:c0:67:39:8c:3a:d0:9b:42:
91:75:42:7d:dc:76:bd:01:12:de:e2:4e:63:3d:f8:7c:7b:63:
b2:b4:07:c8:c3:a5:6d:06:8a:80:f0:a9:8b:48:83:13:a0:df:
68:b9:43:a9:2a:f6:a0:9e:b3:c7:f9:46:66:6e:41:a0:4a:9a:
21:63:27:2f:a7:d4:3f:87:86:72:7e:47:aa:83:ef:85:c4:81:
31:7c:34:71:55:7a:bc:9d:ca:49:ac:cb:f6:04:71:96:8d:61:
54:2c:6f:38:d9:2d:13:87:15:2e:b6:04:b7:79:87:e9:b3:15:
4c:65:fb:ee:43:c9:1a:81:a9:e4:50:42:ef:73:31:be:d6:5c:
9c:96:6f:0a:07:28:37:96:b5:26:c0:15:17:cb:3a:bc:ab:b3:
53:7d:14:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:55 2023 by rpki-client on console-fra.rpki-client.org