Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/fbb50036-4b86-4fbb-b90d-5614c57b3638.roa
File: fbb50036-4b86-4fbb-b90d-5614c57b3638.roa (raw, json)
Hash identifier: tUutDSuVv3/2SCxTEU30KmfOCY9H0/zV8X5timg07+A=
Subject key identifier: 44:05:2F:16:3C:09:8C:6D:A4:08:1A:A4:86:58:47:AE:F8:56:75:45
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 09CFE13A560C25EAB4AF5A0B4DFD08A042F1FF4D
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/fbb50036-4b86-4fbb-b90d-5614c57b3638.roa
Signing time: Mon 19 Dec 2022 00:00:00 +0000
ROA not before: Mon 19 Dec 2022 00:00:00 +0000
ROA not after: Thu 22 Dec 2022 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
09:cf:e1:3a:56:0c:25:ea:b4:af:5a:0b:4d:fd:08:a0:42:f1:ff:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Dec 19 00:00:00 2022 GMT
Not After : Dec 22 23:59:59 2022 GMT
Subject: serialNumber=9d1960778202e3ecd4259bcb74a7bba753d7f8b22dcd28d407154272d86a08d9, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:93:cd:d8:fc:16:3e:43:c9:21:3c:0c:de:e9:
33:31:3e:0a:d7:74:88:a5:d3:79:8b:fa:27:32:fa:
62:b7:1a:d6:cc:6a:ba:f6:8c:d8:3e:b7:61:bf:fb:
83:a5:67:8d:dc:5f:85:79:83:77:5e:0a:55:0e:29:
26:1c:ab:aa:d7:69:35:38:b4:82:ee:3f:e2:c8:99:
9a:01:5e:d5:d9:ad:ff:72:e8:7b:88:c1:13:d0:3b:
60:09:2f:23:cc:43:5f:5e:8d:63:49:77:ee:17:0c:
49:b9:c5:de:44:28:23:65:b0:15:78:c0:18:cb:ca:
57:ec:9e:20:4b:0d:8e:95:7b:e2:58:72:65:d6:df:
6f:0e:57:63:9c:23:31:5b:3c:45:5d:2a:00:55:f3:
70:ee:d7:3e:09:cf:34:ba:fe:f3:78:1d:b7:78:ba:
af:e1:26:f2:e6:f0:bc:f7:d8:74:8c:78:b6:ba:43:
4e:ad:7c:7a:20:8b:d3:ac:1c:dc:1d:3c:f7:28:aa:
33:5b:bf:b7:5d:67:d7:90:a8:29:45:4d:3e:68:a9:
09:69:ad:79:82:79:66:0c:fb:a4:54:58:d6:ee:ba:
7c:a1:31:bd:dd:67:c0:25:3b:33:f1:d7:f2:33:ba:
64:29:a5:75:d5:b5:c4:b3:bf:f6:01:7a:7f:61:e2:
bd:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:05:2F:16:3C:09:8C:6D:A4:08:1A:A4:86:58:47:AE:F8:56:75:45
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/fbb50036-4b86-4fbb-b90d-5614c57b3638.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
c0:e3:5b:40:ba:77:67:4f:d7:eb:7c:df:10:ec:87:3f:fc:9e:
f1:83:5c:52:e8:b2:8b:8a:47:d9:99:63:ce:7a:24:d9:54:f7:
f9:70:57:15:93:75:5c:75:30:a5:9e:98:d9:be:3b:2b:0d:bf:
6f:7a:01:a0:f5:95:27:d7:71:0f:ea:73:0c:f9:8c:75:b6:ef:
3e:d3:fa:e1:51:c8:a5:eb:06:98:ba:9d:60:f7:8b:66:2c:0e:
19:c9:6e:ff:61:e4:57:7f:01:bf:ba:e2:18:17:3a:cd:7d:4a:
bc:09:7d:75:b9:ac:c7:81:8a:69:f6:2a:88:e9:73:03:3a:7c:
d5:1d:c7:b2:50:bb:9d:bf:e3:52:63:57:ea:37:2b:a7:1c:86:
b3:8c:b8:c0:66:66:af:99:a7:bf:57:e9:26:1d:8c:ff:ce:c5:
34:ed:41:b7:ca:86:51:13:40:bf:23:44:33:87:59:18:49:80:
37:de:0d:c1:93:4f:45:8e:aa:ea:2a:14:af:eb:8e:e1:68:70:
5d:9b:6e:34:9f:28:aa:98:32:29:82:33:61:7e:64:16:7d:0a:
bd:fd:f7:86:92:f5:9d:9b:8b:e1:7e:5e:e2:73:26:29:10:47:
8f:77:57:4c:3d:14:25:ec:13:2c:6f:b2:b1:b3:d4:bf:f1:4f:
53:cd:40:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:56 2023 by rpki-client on console-fra.rpki-client.org