Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/06e214bf-5b96-41b8-b102-3b58bce0f97f.roa
File: 06e214bf-5b96-41b8-b102-3b58bce0f97f.roa (raw, json)
Hash identifier: 4L6lljqjcqNFTwlwFIFey7eySso11KEQAaz2071L3SA=
Subject key identifier: A8:58:03:20:19:CC:AC:1F:05:3B:9A:73:80:B7:D8:8A:F9:79:59:E2
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 626AE25ED921EF56B22EC22026D1CF19B78EB713
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/06e214bf-5b96-41b8-b102-3b58bce0f97f.roa
Signing time: Mon 27 Feb 2023 00:00:00 +0000
ROA not before: Mon 27 Feb 2023 00:00:00 +0000
ROA not after: Thu 02 Mar 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
62:6a:e2:5e:d9:21:ef:56:b2:2e:c2:20:26:d1:cf:19:b7:8e:b7:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Feb 27 00:00:00 2023 GMT
Not After : Mar 2 23:59:59 2023 GMT
Subject: serialNumber=08f258e1560bb1c0990f1dae7e08f360bce64581e93bb3591e321c0c211d940b, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:5a:ff:4e:02:73:f5:1c:7a:53:d8:04:d3:98:
3d:91:f6:dd:f3:c7:00:35:37:95:9f:dc:c6:67:e3:
fd:a6:f6:ce:dc:92:df:a0:6e:ca:3d:eb:a2:a9:2d:
8d:2a:3d:a2:cc:01:48:2a:fb:59:cc:47:b5:66:9f:
94:06:13:a3:2d:16:ae:92:8d:18:af:8f:00:f5:22:
50:2b:38:10:02:7a:eb:e0:2b:f6:db:17:4e:75:ce:
92:54:d5:b0:5a:4c:2f:cb:91:0f:e2:43:02:ef:50:
45:da:37:35:e1:93:32:7a:b0:96:1e:10:6a:1b:6d:
45:eb:ee:4e:88:c8:68:7e:df:ab:3b:59:d3:1c:b6:
ed:3b:78:67:00:54:93:92:7e:2a:58:97:6d:37:a2:
92:8b:82:33:9a:3a:65:a9:93:7a:14:7a:72:44:3d:
a1:b2:38:29:ed:6a:a9:7c:5d:96:0a:f6:af:25:3c:
8d:83:02:a6:c1:51:ed:6b:e3:69:7e:db:ee:9e:aa:
25:1d:2f:67:6a:95:8c:88:27:69:00:e7:1a:6f:60:
8a:12:bc:93:10:b4:1a:31:3d:4f:68:be:6a:0d:97:
30:57:2f:e8:e3:a8:df:cc:20:7b:f7:1e:9d:c8:8e:
d1:e2:4b:93:0c:34:a6:f2:6e:96:33:54:3a:f8:21:
f9:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:58:03:20:19:CC:AC:1F:05:3B:9A:73:80:B7:D8:8A:F9:79:59:E2
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/06e214bf-5b96-41b8-b102-3b58bce0f97f.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
8e:30:d2:5a:20:95:29:61:f7:c0:af:b5:94:e0:43:45:93:e3:
e5:08:b4:6d:19:df:1d:40:86:b7:03:f0:90:d1:09:fe:ed:3c:
71:53:f3:d6:32:e1:98:1c:16:9c:77:f4:2d:59:06:cb:25:b8:
07:97:76:75:dd:04:19:fb:1d:ff:14:7c:46:09:ca:d9:21:83:
ae:92:6d:eb:4b:f2:b0:3d:05:74:e6:01:93:1c:e9:1f:2c:ba:
51:71:fa:dd:5e:3f:7b:63:0c:39:1f:c5:b7:de:88:d9:cc:6a:
fb:a4:a6:f2:94:d4:66:9d:05:55:c4:07:2c:ef:d5:3e:f7:e4:
57:e1:da:67:ba:09:84:0e:8e:66:f4:71:87:c0:32:62:2b:71:
d3:bc:4d:f1:ab:c3:e2:a7:04:05:46:5f:18:64:60:de:52:06:
9c:59:05:7c:7b:53:e0:cc:6f:2f:06:b4:b2:31:a3:04:6e:66:
e0:ac:13:84:7e:30:01:8f:34:12:a0:e5:37:f7:f7:0a:dd:7c:
9a:11:d5:75:96:90:59:ea:6b:39:e2:dd:89:36:2e:22:aa:af:
2e:0c:40:70:e3:63:01:e7:10:b7:bc:ad:b4:74:8c:2e:01:7d:
87:05:7d:b8:8f:c7:ba:2a:d5:c9:26:24:9a:2b:ef:67:54:dc:
aa:00:b3:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:36 2023 by rpki-client on console-ams.rpki-client.org