Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/1218260b-ddc2-48da-ba64-604c6adedc7f.roa
File: 1218260b-ddc2-48da-ba64-604c6adedc7f.roa (raw, json)
Hash identifier: 6vPWGehCY3NFZB4ZGOiMKycKV0OQJvawwBrPXjB/PGk=
Subject key identifier: 95:4D:7B:10:7E:97:72:2C:DA:E4:D1:E7:90:8F:F2:09:F9:26:E0:C1
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 56F245C93A89691F0AC10B4C61B68ECD32890D5C
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/1218260b-ddc2-48da-ba64-604c6adedc7f.roa
Signing time: Sun 03 Jul 2022 00:00:00 +0000
ROA not before: Sun 03 Jul 2022 00:00:00 +0000
ROA not after: Wed 06 Jul 2022 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
56:f2:45:c9:3a:89:69:1f:0a:c1:0b:4c:61:b6:8e:cd:32:89:0d:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Jul 3 00:00:00 2022 GMT
Not After : Jul 6 23:59:59 2022 GMT
Subject: serialNumber=eed9e0e9511ef5160a42c83173901b0972497a12414854e18fec90752a69ae6a, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:6f:b5:e2:1a:98:13:c4:cf:2b:98:ee:2f:f9:
da:98:fa:e9:ec:ce:17:d3:8d:37:5b:9b:da:19:fa:
3f:a9:d2:36:a7:f5:f1:cf:5f:1b:2c:a7:11:87:a1:
dd:31:c6:0e:6c:7f:9c:cd:72:9e:1d:7e:26:97:cf:
9d:0c:2b:32:6b:1f:be:6a:79:28:01:19:c2:6f:56:
a7:f2:3c:d0:4e:e2:6a:fc:87:bf:36:0f:c1:95:ab:
95:59:93:84:bd:d8:a9:93:18:d3:a9:7c:d9:56:60:
84:7b:9b:9e:e6:ea:81:a3:b7:c4:cf:f1:ae:12:5c:
c9:b8:09:09:ec:eb:fa:6b:ee:75:77:ea:1c:bb:15:
50:29:35:46:fd:5c:b5:4c:8a:01:86:dd:72:3d:af:
59:a7:8b:5e:63:42:55:50:88:10:04:09:25:35:3d:
4e:6d:27:a1:25:ec:17:4a:4a:4e:b2:48:31:2a:ed:
da:69:65:3f:33:ad:1f:64:8d:43:ac:83:68:f2:b7:
22:a3:8e:09:80:a8:42:51:b7:3c:2b:7e:76:2a:c5:
29:19:a5:6b:4c:ae:c9:eb:85:be:e7:f5:73:46:23:
23:f7:15:c2:05:5c:25:78:96:11:1d:cc:2c:b1:0a:
1e:70:18:b1:5f:4b:19:b1:4a:a4:9d:ca:a5:ff:09:
72:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:4D:7B:10:7E:97:72:2C:DA:E4:D1:E7:90:8F:F2:09:F9:26:E0:C1
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/1218260b-ddc2-48da-ba64-604c6adedc7f.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
61:e7:c7:cd:71:fc:c4:9a:b8:6c:0d:4c:51:bd:c0:e3:2f:ce:
64:1c:db:25:a4:98:ab:fb:1d:83:e8:a7:37:3b:ee:7b:e3:a6:
6b:53:a4:bc:c9:ec:56:80:b3:a1:a3:6f:0c:45:27:a2:ea:c8:
f3:81:cd:33:15:47:6e:50:a8:eb:ff:28:45:d1:7e:db:a0:7b:
18:f8:e6:75:f8:d8:d0:d0:e4:f6:d4:dd:b9:38:1d:c7:3a:f8:
be:5f:1a:95:96:59:80:84:f5:86:7a:8b:0d:64:a2:b9:69:7f:
d1:c3:28:f1:eb:13:b4:49:fe:73:35:05:19:e1:b1:5a:cb:c1:
4a:b7:7d:fc:55:be:eb:2c:97:c4:05:f1:61:a6:2b:47:37:0a:
0b:e1:4b:6f:39:a3:7b:57:c0:24:01:08:a8:94:33:0d:a9:97:
cf:08:65:ee:bb:95:7b:79:54:e3:5d:c4:bb:4d:ad:5d:83:90:
6f:01:cb:2a:37:e8:ae:5b:d4:9c:6d:e7:38:db:74:81:5d:4c:
e8:0f:74:77:e8:19:15:4b:b0:55:6e:5f:48:90:3d:2c:b7:4a:
ea:58:9e:58:21:8d:20:38:d0:cb:6c:56:19:1a:d7:8e:02:77:
3e:59:b6:0c:eb:91:82:74:60:dd:02:6c:b5:24:85:87:2c:d2:
3e:c7:73:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:37 2023 by rpki-client on console-ams.rpki-client.org