Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/f3dd24a1-900b-453d-99f4-c5714b0a9974.roa
File: f3dd24a1-900b-453d-99f4-c5714b0a9974.roa (raw, json)
Hash identifier: VVMDkIM737zbqZnIGXACfUqMSTHwd/PJ2OHIX82kgdA=
Subject key identifier: CF:6C:40:69:6D:EB:64:5D:EB:B9:2C:07:26:D4:76:D8:B1:B3:3F:A2
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 64519BC13E5170E53559910C1F184F75BA40DD9D
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/f3dd24a1-900b-453d-99f4-c5714b0a9974.roa
Signing time: Thu 18 Aug 2022 00:00:00 +0000
ROA not before: Thu 18 Aug 2022 00:00:00 +0000
ROA not after: Sun 21 Aug 2022 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
64:51:9b:c1:3e:51:70:e5:35:59:91:0c:1f:18:4f:75:ba:40:dd:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Aug 18 00:00:00 2022 GMT
Not After : Aug 21 23:59:59 2022 GMT
Subject: serialNumber=2b2ebde7ebbc88ca8400f5de3792e77f3dc61c6ff3483600dbc3bb0bd6dad4e6, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:36:86:19:5b:72:29:5d:a6:55:a2:48:ef:f9:
0c:d3:ba:d5:a4:6a:d1:8c:ce:03:e0:ed:27:79:41:
65:84:21:8c:af:78:d2:75:50:4b:90:7b:52:48:ec:
db:94:5f:f6:c4:0a:ff:7b:6b:d9:b4:b2:8d:6d:c1:
48:80:d5:d9:d3:07:78:99:7e:36:ca:08:2a:bd:66:
06:5a:3d:89:7d:5a:66:41:85:aa:0e:99:b2:e9:d3:
82:39:42:a0:33:dc:5b:39:dc:2e:b9:72:be:06:74:
7a:50:82:ba:80:71:bb:b7:a7:c5:18:d2:30:b2:14:
f6:51:31:9f:fa:77:5d:4f:cf:fe:98:fa:5d:f2:78:
92:eb:05:5e:9a:e0:00:5e:7d:d6:7c:57:46:4a:f1:
42:ec:24:12:82:56:01:a2:8f:f1:d7:4a:c7:33:ae:
8c:70:42:99:29:a7:ea:89:6f:b8:f9:0f:f2:7d:8e:
0d:e0:34:da:fb:ea:c3:7c:6c:ff:de:85:3f:35:13:
64:6d:49:58:62:54:29:27:68:1c:30:8e:03:39:56:
3d:4e:29:72:0c:47:16:89:59:f8:7f:1e:97:fb:7c:
12:93:66:ce:ec:f7:0a:59:c5:11:c2:25:49:6b:be:
d1:4a:b5:2f:17:67:a6:f3:71:87:aa:a0:0a:c8:f6:
2d:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:6C:40:69:6D:EB:64:5D:EB:B9:2C:07:26:D4:76:D8:B1:B3:3F:A2
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/f3dd24a1-900b-453d-99f4-c5714b0a9974.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
3e:df:68:93:3c:40:63:6e:d9:18:26:fb:84:6a:bc:47:3f:d5:
63:57:3a:9c:41:48:6d:62:69:b3:e6:91:1b:8c:cc:f6:6c:e6:
08:98:51:ea:0b:a0:4b:69:b8:cb:ec:ee:34:e5:95:97:c8:82:
fe:ff:c5:6f:fc:cb:27:79:84:ca:c2:78:0f:a4:db:f6:ed:d5:
72:2b:5c:10:ac:90:cd:e2:05:b5:eb:46:8f:71:ef:c3:56:d0:
84:8d:69:af:75:5f:16:5c:aa:ef:52:81:de:82:b8:eb:ae:d0:
10:77:95:00:48:ce:3a:59:1e:02:b4:17:06:97:56:bf:e2:e8:
05:1f:5a:bb:a8:8e:32:9f:5e:ff:13:83:48:43:7b:10:5c:d3:
61:97:b7:8e:5f:18:8e:18:b9:a8:78:e1:70:be:24:58:5b:e4:
4b:f6:89:da:df:c8:db:d5:bb:a6:13:85:91:87:83:1f:07:fe:
23:37:8d:a3:d9:b3:eb:21:ad:1b:7c:86:cf:06:a9:90:8c:78:
3e:37:da:83:74:12:07:66:c0:08:ea:5b:2d:59:04:a1:7a:d1:
24:02:a4:a9:b7:7e:e7:bf:60:fd:ca:98:fb:a9:dc:7c:f4:79:
ed:50:93:ce:8d:1f:ac:ba:3b:cb:8d:f3:72:c7:8a:8a:75:a5:
bb:d4:f2:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:56 2023 by rpki-client on console-fra.rpki-client.org