Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/f0d4c414-593a-48ea-b3f9-2f273aa1cbd8.roa
File: f0d4c414-593a-48ea-b3f9-2f273aa1cbd8.roa (raw, json)
Hash identifier: PFGexSayguMCWkTDdfebI862HgB1r8BVE9n8ClylBz8=
Subject key identifier: A5:34:A0:0A:2C:9E:2D:C0:F6:76:53:39:C3:48:0C:01:C3:CE:36:D3
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 7A6A3EECA0302E649C96EF33560AED843501B831
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/f0d4c414-593a-48ea-b3f9-2f273aa1cbd8.roa
Signing time: Mon 08 May 2023 00:00:00 +0000
ROA not before: Mon 08 May 2023 00:00:00 +0000
ROA not after: Thu 11 May 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7a:6a:3e:ec:a0:30:2e:64:9c:96:ef:33:56:0a:ed:84:35:01:b8:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: May 8 00:00:00 2023 GMT
Not After : May 11 23:59:59 2023 GMT
Subject: serialNumber=0887f1cd9a972320c7b3df1efe023479cd3d75ccbdfcde22b61d4a8c23f75ab7, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:cc:9c:82:3f:2a:9c:5d:db:49:ae:a1:63:09:
58:ee:17:b6:03:ef:4a:4a:05:66:9e:d2:89:87:de:
fd:59:2b:7a:b9:70:12:02:cb:08:1c:7b:ec:ed:70:
09:06:85:a9:21:da:13:f0:78:df:b2:d3:b5:09:2c:
4e:3b:42:40:dd:90:2b:8c:dc:01:04:48:98:29:8b:
d3:0c:8d:a6:7b:4b:31:ee:45:da:fe:ca:c6:60:2a:
7e:5e:8e:28:06:23:1f:2b:19:ac:a0:78:26:b7:39:
05:62:b0:b3:16:7a:a4:28:b0:73:ea:aa:57:3e:79:
5a:0d:37:41:e5:48:31:57:65:4d:67:19:d5:7f:fb:
e2:25:ab:a6:21:93:d0:ff:0d:f3:a9:af:32:ef:e1:
9b:50:b5:ad:7f:f2:b3:41:16:1b:a4:16:d4:f8:6a:
33:42:ce:85:c4:2c:d1:22:2c:b9:62:f8:d5:c7:65:
18:1c:24:c6:64:40:a8:70:24:f6:c7:41:a3:54:28:
66:ef:21:12:7e:da:37:00:6c:d5:7b:59:fa:30:bd:
d1:49:2f:d4:45:0b:7c:d7:cd:fa:47:3a:1f:48:c7:
5b:1d:83:75:1b:bc:a8:d9:d7:7c:75:c4:73:0b:40:
cc:38:88:1c:64:1b:67:19:f0:8e:95:cc:ca:7c:4e:
f3:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:34:A0:0A:2C:9E:2D:C0:F6:76:53:39:C3:48:0C:01:C3:CE:36:D3
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/f0d4c414-593a-48ea-b3f9-2f273aa1cbd8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
1c:27:38:65:33:e6:55:d6:57:06:df:e7:52:54:8a:06:51:20:
be:e6:65:f6:5a:a0:af:0d:1d:88:1d:e1:a6:29:3c:82:96:36:
55:dd:99:82:79:85:6c:09:13:0d:e1:78:6e:34:06:54:be:5c:
34:38:20:6b:d8:81:bb:06:43:0b:33:db:af:29:e9:04:ba:4b:
27:57:66:69:fb:d1:f6:31:09:2e:6d:29:0e:15:3b:74:cf:7f:
de:79:20:35:c8:3e:5b:0d:cc:28:de:11:d3:1c:79:4b:9e:e9:
4f:2e:d1:62:bb:d0:3f:fa:a9:d6:21:e9:fa:c6:57:06:61:8e:
40:22:00:45:30:b3:6f:96:ed:d2:54:8d:45:0f:50:4c:f2:b4:
e2:8c:e7:4b:19:4a:b9:7f:c3:96:16:0a:9d:4b:d5:7c:82:9e:
b4:ba:96:79:a0:2b:44:c5:e1:81:ab:c4:d2:77:69:da:7a:ea:
e0:85:85:b7:da:9d:a0:6d:1f:9e:34:95:43:c8:a5:25:de:4f:
81:99:a9:77:f3:ca:64:63:c9:fe:96:bb:57:43:b7:48:2d:00:
7a:6c:57:d4:0a:8a:f1:f7:c7:49:bd:bf:3a:91:6c:1f:ba:31:
3d:94:02:c2:6d:58:6a:b3:4f:2f:97:74:bb:b9:24:23:31:12:
93:6c:89:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:55 2023 by rpki-client on console-fra.rpki-client.org