Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/14826949-557b-40f6-8f33-a2b8450172b1.roa
File: 14826949-557b-40f6-8f33-a2b8450172b1.roa (raw, json)
Hash identifier: XDIgCR4+bMPJ0txy+93V1H2wDVYyYpl9sgk/cXZNcKY=
Subject key identifier: 76:4F:B1:78:2D:30:89:E7:D7:0F:33:84:61:C1:8B:01:DF:90:52:AE
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 4F1DADA73152BF29C37A6DF7E4AEF3B253FA2B98
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/14826949-557b-40f6-8f33-a2b8450172b1.roa
Signing time: Fri 02 Dec 2022 00:00:00 +0000
ROA not before: Fri 02 Dec 2022 00:00:00 +0000
ROA not after: Mon 05 Dec 2022 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4f:1d:ad:a7:31:52:bf:29:c3:7a:6d:f7:e4:ae:f3:b2:53:fa:2b:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Dec 2 00:00:00 2022 GMT
Not After : Dec 5 23:59:59 2022 GMT
Subject: serialNumber=7152a193be8bac18af034bef6a93e737f9e932792c7fde1970ce748ca497c21b, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:71:95:1a:b2:b3:6c:bb:b1:a1:af:24:29:d9:
29:28:92:6b:c6:3e:25:fc:e1:90:16:64:4b:55:dc:
e3:dd:85:97:96:e4:25:ed:a2:56:95:d0:82:17:f2:
be:53:c1:20:a0:77:c7:72:e9:40:fd:28:2d:59:c9:
53:18:aa:20:f2:63:bd:44:f1:e0:50:eb:12:aa:c7:
79:86:68:cf:83:ff:73:e1:f3:9c:1a:7e:d5:92:c9:
e0:1d:72:f3:c6:92:8f:5d:18:9a:13:ac:1f:99:e2:
64:f4:c2:fb:86:cf:fd:79:f7:ba:26:5d:33:a4:8b:
ea:29:e7:58:8a:16:ce:33:fd:ad:c6:b3:61:38:f8:
15:31:46:00:1d:a6:43:32:51:2c:44:46:8b:79:6f:
28:9f:bd:f6:96:30:c8:ed:05:d5:7e:2f:72:23:9b:
f3:61:19:96:7e:6b:2d:bc:a1:52:4d:9a:87:58:18:
94:cf:7e:55:5c:e3:43:b5:1b:56:2b:bd:c1:17:69:
48:64:d2:a4:72:2d:d2:b9:f9:ef:2d:77:64:83:61:
b0:0c:ce:78:22:ae:fd:08:29:9d:fd:ad:6d:26:6a:
93:24:0d:ab:80:fd:51:02:6a:d6:0b:38:ea:13:be:
da:52:6d:42:b7:b2:a9:ff:bf:b3:31:bc:63:09:70:
25:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:4F:B1:78:2D:30:89:E7:D7:0F:33:84:61:C1:8B:01:DF:90:52:AE
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/14826949-557b-40f6-8f33-a2b8450172b1.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
ba:8e:4a:65:e0:3d:da:e1:b9:14:19:a1:d7:6e:db:50:7e:7b:
1e:51:99:39:c4:a1:05:4b:5f:dd:ed:9f:49:a6:f3:f1:50:37:
a4:ac:7e:1e:cb:d7:cf:ec:25:1a:d9:25:a5:08:40:e6:cb:ce:
27:f0:b2:de:63:7c:99:23:d9:14:4e:a4:2b:0a:e1:bc:36:72:
74:e7:10:a4:78:f8:29:49:09:74:d0:a5:47:b7:e9:78:db:f9:
1b:a9:df:9b:b3:77:dc:ca:95:3e:82:1b:9b:2e:50:9d:80:49:
2a:17:8b:8e:a7:91:a0:ee:12:f9:a5:dd:89:16:f5:a4:70:a3:
c2:35:1b:27:62:42:20:f2:9e:63:b4:a7:7e:63:05:82:61:91:
44:ee:cf:fc:a8:6d:f1:b4:d7:37:e2:a7:1f:b9:14:e1:11:56:
d6:13:2d:3e:b6:3e:8a:c3:a4:b1:48:96:bc:00:5a:fe:4c:94:
f2:43:24:c1:3e:5a:90:96:46:15:b2:b2:7f:9b:b6:b0:27:dc:
73:16:43:d7:75:21:5d:e9:a5:ca:fe:23:7f:c5:6a:70:db:3c:
bf:4d:3f:5c:12:50:6b:f0:23:18:0b:11:37:1e:ac:8d:29:18:
25:2a:a3:33:06:d5:f4:03:4a:ef:34:76:22:a7:fa:be:88:87:
87:a4:25:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:37 2023 by rpki-client on console-ams.rpki-client.org