Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/0dd3cd66-4924-4829-a637-6adb1616a198.roa
File: 0dd3cd66-4924-4829-a637-6adb1616a198.roa (raw, json)
Hash identifier: pRlnv6+mqZwLbTa6rLIm/qi26reoXgkRr8PXVd8MIfE=
Subject key identifier: 4A:C1:62:80:A1:0F:CA:3A:89:A7:89:A5:2A:14:93:EE:3F:CD:8E:20
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 7D54822F6F698A21CE36020389D5E33F64BED5F8
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/0dd3cd66-4924-4829-a637-6adb1616a198.roa
Signing time: Mon 27 Feb 2023 00:00:00 +0000
ROA not before: Mon 27 Feb 2023 00:00:00 +0000
ROA not after: Thu 02 Mar 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7d:54:82:2f:6f:69:8a:21:ce:36:02:03:89:d5:e3:3f:64:be:d5:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Feb 27 00:00:00 2023 GMT
Not After : Mar 2 23:59:59 2023 GMT
Subject: serialNumber=04d99c2c92ee3795595ded1677d9c86049f10c4f3770bedec1d3435a2dba1d4e, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:3c:d8:52:0a:04:64:2b:2b:12:25:66:e4:7a:
ce:e3:c2:bc:7e:18:5d:72:0b:27:21:27:d4:3d:82:
4d:23:26:5e:8b:fe:82:b6:a9:cb:94:79:ea:8a:32:
8c:39:fe:5c:a3:79:79:93:69:5e:75:a8:9b:e8:37:
e2:4a:77:da:6d:b9:6c:a5:4a:f2:fa:d9:71:f7:81:
07:11:c6:74:e2:00:2d:a4:22:5e:7c:e1:fe:b6:fd:
1c:a0:b5:fd:b8:e2:e6:a8:5c:41:f1:f6:44:71:9f:
9c:c5:82:cc:76:f1:fa:fd:c9:e3:31:77:be:e8:ae:
f9:46:f3:e8:38:4e:c1:bf:cd:4a:7c:3e:e2:69:d2:
9d:7e:51:15:e9:b6:d6:2a:0f:12:a7:27:fb:23:56:
e1:97:0a:63:d8:be:59:0f:07:83:90:48:69:de:79:
b5:e5:7a:00:a5:aa:0b:ef:9c:19:6f:94:89:c7:32:
81:e1:03:41:72:7f:19:76:61:87:54:67:b2:48:a6:
85:f7:73:78:3d:fe:e2:30:92:ba:3b:7a:37:40:e3:
73:c5:2e:b1:51:9b:74:37:ec:66:f0:8e:eb:fc:21:
be:f0:55:7c:b4:3e:19:af:be:20:8a:20:62:26:65:
10:57:b7:d0:1d:16:de:8a:f7:02:13:9f:23:40:35:
c5:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:C1:62:80:A1:0F:CA:3A:89:A7:89:A5:2A:14:93:EE:3F:CD:8E:20
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/0dd3cd66-4924-4829-a637-6adb1616a198.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
78:3f:9f:9b:cb:c9:fd:5c:d7:a6:98:1d:be:f5:ac:76:62:58:
02:7a:47:6e:78:ea:b2:27:cb:c3:d8:f6:62:e3:49:1d:49:b6:
69:30:e0:13:95:4d:90:24:10:b9:7a:7a:c7:27:05:f7:d7:77:
97:be:31:3d:e7:29:f5:e8:f0:3b:9b:8c:0c:dc:2f:65:59:60:
ec:e4:72:51:c5:35:a5:88:c8:82:a9:41:f2:16:fe:64:23:7a:
d0:fe:b2:c6:50:f1:5c:5b:13:c6:2b:f1:19:7d:4b:0e:7c:0b:
82:8d:2f:47:10:3c:53:33:58:6e:89:76:f4:e7:4b:26:26:89:
e9:65:55:50:40:b8:8f:c7:75:68:c8:00:66:e2:7b:d4:34:1d:
7e:fd:68:98:1c:48:a1:7e:f9:96:2d:af:5c:c4:cd:0c:a9:48:
81:13:c4:a8:5e:a1:5e:22:42:83:bf:ae:4e:8e:76:09:30:73:
84:05:ed:81:a0:ad:0e:20:95:0a:03:0e:54:7e:3e:62:72:59:
21:81:d1:3a:25:15:ff:61:55:b8:97:70:a0:27:92:4c:49:26:
fb:07:0b:67:af:36:64:ac:b7:c4:6f:88:a4:31:2b:93:52:f1:
00:fb:f2:6b:cc:af:e3:7d:97:9f:91:bd:8b:9b:e3:91:87:f1:
34:cb:96:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:37 2023 by rpki-client on console-ams.rpki-client.org