Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/fa24eded-3b33-4408-9259-353eaf251745.roa
File: fa24eded-3b33-4408-9259-353eaf251745.roa (raw, json)
Hash identifier: DpqrPZEZIz08x7KGXiOCBEUSY4f2yQoNY03qUWwTWhA=
Subject key identifier: E0:7E:E9:A7:39:2D:C6:E6:2A:63:57:D9:8E:2B:48:21:09:CA:4A:A8
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 14B73A84E329CA9493EA97220C1175940C4B05A1
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/fa24eded-3b33-4408-9259-353eaf251745.roa
Signing time: Mon 29 May 2023 00:00:00 +0000
ROA not before: Mon 29 May 2023 00:00:00 +0000
ROA not after: Thu 01 Jun 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
14:b7:3a:84:e3:29:ca:94:93:ea:97:22:0c:11:75:94:0c:4b:05:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: May 29 00:00:00 2023 GMT
Not After : Jun 1 23:59:59 2023 GMT
Subject: serialNumber=5dce40f800fd3ca47678cd53f3cdad6bfb7875c91c76d5c707e3481aa4104e90, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:47:c8:aa:9a:3e:e6:d3:a0:06:4a:4e:42:ce:
c9:66:01:23:90:13:70:3c:79:53:90:e5:fc:44:84:
01:98:df:33:4e:41:d0:c8:cb:8b:50:f0:48:7f:c0:
de:27:14:bb:37:42:b9:a1:9c:61:be:db:82:f6:38:
8e:3e:b8:a6:96:2f:da:88:be:35:64:da:0a:f5:1d:
77:2b:48:45:74:42:52:90:db:eb:8e:ac:a3:5c:e9:
a7:32:b8:82:26:e5:19:26:5c:6e:cd:85:46:f0:0d:
83:ed:a7:a1:ec:f2:65:2b:07:01:48:41:9f:6f:12:
14:d2:b6:44:e3:ff:87:92:16:eb:04:a7:c1:60:b0:
7f:41:40:41:28:b1:eb:9b:01:cf:e7:6e:90:38:a6:
65:14:30:11:6a:15:4a:73:97:ea:b2:2a:bf:51:e7:
4d:3a:42:5e:d9:1e:25:40:0b:81:95:bd:ff:b9:11:
95:c6:ac:7d:a0:4b:85:8d:3d:c4:31:71:71:79:0e:
76:b0:fa:46:8b:f4:1c:1e:59:32:23:10:68:d5:30:
50:4b:8d:6c:93:1c:32:ee:bf:ca:a0:a9:c9:bd:48:
3e:d4:a9:30:8e:cd:30:c8:b7:59:b5:ca:c8:df:8a:
de:e3:9d:f8:ec:d7:44:86:7c:b2:9a:71:42:52:50:
ad:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:7E:E9:A7:39:2D:C6:E6:2A:63:57:D9:8E:2B:48:21:09:CA:4A:A8
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/fa24eded-3b33-4408-9259-353eaf251745.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
0c:2c:4d:17:ee:d9:6f:f3:20:6f:43:39:57:28:24:be:21:41:
9b:ce:b1:85:24:fe:4a:ea:62:1b:40:52:ba:65:dd:6c:44:42:
52:f7:08:da:56:99:19:8c:2a:e3:5a:57:2d:cb:c8:12:2a:45:
03:d7:08:f6:be:12:f2:6f:1e:0a:20:51:29:3b:47:bb:cd:6f:
ad:6d:3f:08:1a:53:cc:b9:4f:c2:01:e7:d7:5a:5f:d6:0e:9a:
31:74:0d:ea:54:78:8c:c4:6b:69:32:8c:50:26:f8:d4:b7:60:
43:3e:50:a7:c3:25:ec:d2:a8:78:c8:e9:e9:03:cd:55:92:61:
4a:9d:ce:93:c3:60:51:4b:b9:56:df:45:be:3f:3c:2f:a7:98:
aa:62:55:ee:87:ca:1c:db:b4:f0:ec:d2:e5:b5:9c:6f:85:25:
b8:7b:37:04:f4:6b:ca:74:cb:be:5a:23:73:7e:07:ab:30:96:
c9:89:55:e8:da:96:7d:8b:3f:ec:6b:35:97:cd:67:40:4f:92:
1d:b2:ec:ac:8c:7f:41:8c:ce:57:90:2e:74:a2:36:35:26:c0:
e1:21:2c:4a:9e:26:7b:40:0b:a3:20:bc:fd:4f:ba:4d:3e:5f:
f9:17:69:ca:fc:4d:d8:0a:4e:bf:a8:de:dd:38:3a:f7:6b:bc:
5e:80:c0:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:56 2023 by rpki-client on console-fra.rpki-client.org