Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/ef4949bc-e0b8-474d-9722-4864596617cb.roa
File: ef4949bc-e0b8-474d-9722-4864596617cb.roa (raw, json)
Hash identifier: 7fJLItk+Yb2xwdfWzdsPbbSQsNYMswRKJ26TCPlwFXI=
Subject key identifier: 89:73:C7:51:DE:5E:0A:BC:6D:9F:70:79:00:08:8D:35:68:9B:0F:3B
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 0D98B0DE9E72E47EA51D86852441017CAFBBF68E
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/ef4949bc-e0b8-474d-9722-4864596617cb.roa
Signing time: Wed 07 Dec 2022 00:00:00 +0000
ROA not before: Wed 07 Dec 2022 00:00:00 +0000
ROA not after: Sat 10 Dec 2022 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0d:98:b0:de:9e:72:e4:7e:a5:1d:86:85:24:41:01:7c:af:bb:f6:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Dec 7 00:00:00 2022 GMT
Not After : Dec 10 23:59:59 2022 GMT
Subject: serialNumber=b465e2280f3563093a11f6661f360ff001568080f4be84ede6b60d325f4b2280, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:ff:ff:2d:01:99:48:a9:9e:cd:16:e7:58:99:
2a:95:c5:ea:c5:f6:0d:72:dc:6a:d1:c5:51:e4:dc:
30:6e:1b:6a:ba:48:03:76:8e:9f:57:e0:2d:53:aa:
b5:04:00:d5:9e:2c:44:e0:25:12:59:3c:c6:8b:8c:
90:db:72:54:be:67:29:64:1d:c3:bc:84:bc:60:30:
36:ff:34:95:4b:7d:fa:3e:5c:94:d6:35:c4:33:60:
d1:0b:86:a5:65:da:9b:0b:4f:ea:0a:f2:ef:1c:f0:
e4:18:68:d4:96:f2:b1:25:f8:2a:79:fb:e6:97:c2:
31:31:1a:ff:f1:a4:37:4d:ad:3c:e3:7a:bf:1a:e1:
f2:93:57:34:67:d8:e1:c5:9e:99:df:d1:be:fe:06:
04:b8:3c:dc:fa:6e:ed:cc:f9:37:05:e9:58:bf:04:
eb:79:d7:28:cd:47:7b:86:69:2a:b4:55:e9:50:5b:
68:be:d0:92:29:9e:48:ee:a9:a1:1c:9e:d4:c8:f1:
e8:73:06:5e:b7:50:49:bd:4b:19:4d:12:a5:01:39:
64:ec:5e:b2:59:bc:ee:45:6a:f8:60:83:38:86:b9:
74:f4:23:6f:47:ef:ff:82:1b:5f:ae:ca:7b:dd:b9:
a2:a4:08:35:72:c4:66:08:bb:9e:67:88:6f:e4:fb:
cd:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:73:C7:51:DE:5E:0A:BC:6D:9F:70:79:00:08:8D:35:68:9B:0F:3B
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/ef4949bc-e0b8-474d-9722-4864596617cb.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
28:05:73:d6:8f:bc:77:e8:5c:13:da:bb:72:dc:3f:5c:77:ff:
c7:e5:bc:6f:b6:b8:0a:9f:38:55:1e:e3:7a:53:bf:ca:c0:a9:
38:02:0d:06:2a:e8:35:7e:29:20:49:e8:52:b4:07:e5:86:82:
94:cf:74:51:8a:f1:bf:77:01:2c:3c:4f:a9:d7:25:45:3d:73:
49:d4:21:76:13:38:a5:fa:c6:74:9b:08:28:30:5d:d6:4b:1e:
d9:2e:2d:57:cd:c0:b8:a4:71:39:90:b6:e4:95:c9:d4:d8:ec:
12:5d:c8:c6:8c:d9:32:13:d7:38:f1:56:8b:a8:13:33:56:5f:
b1:40:a8:2d:b6:dd:5f:c6:8a:f0:0f:e6:13:a5:d8:2a:0e:79:
91:98:92:e6:46:61:bd:cd:ad:1e:ac:bd:7e:6a:75:99:60:1d:
8a:0d:7f:73:80:90:75:2f:11:db:9c:4f:ae:8e:0f:e4:85:68:
c5:73:1a:52:c4:77:2d:f8:97:e3:44:56:34:4e:8f:2f:9d:b9:
05:04:eb:eb:ce:f7:ea:e0:f7:30:9e:25:6d:88:5e:a0:8e:ac:
61:c7:40:62:51:f6:f2:39:21:e4:3e:71:e9:9b:f6:01:e2:a3:
11:7e:f0:9f:a4:25:3f:35:80:19:d9:86:ae:c3:cd:aa:b4:d4:
50:a3:aa:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:55 2023 by rpki-client on console-fra.rpki-client.org