Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/23896a1c-5f89-4985-a075-96cc5c1e1905.roa
File: 23896a1c-5f89-4985-a075-96cc5c1e1905.roa (raw, json)
Hash identifier: AxoNubjeoC2IEFbvU9hyy99TtLnBbyefrcIr7kwUFdM=
Subject key identifier: 8E:2A:49:56:BC:62:9A:61:0E:58:CA:22:1D:3E:D6:E7:62:51:CE:70
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 0F69B755F57A50BED593DD9D7687C6838B914A9A
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/23896a1c-5f89-4985-a075-96cc5c1e1905.roa
Signing time: Sat 03 Dec 2022 00:00:00 +0000
ROA not before: Sat 03 Dec 2022 00:00:00 +0000
ROA not after: Tue 06 Dec 2022 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0f:69:b7:55:f5:7a:50:be:d5:93:dd:9d:76:87:c6:83:8b:91:4a:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Dec 3 00:00:00 2022 GMT
Not After : Dec 6 23:59:59 2022 GMT
Subject: serialNumber=0f6a3bfe43673f04807afca30d6342db66307d59b9de389034cded61db14f989, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:67:a5:c8:f9:99:2a:8b:89:69:33:b4:f9:02:
11:3f:2f:44:94:63:56:25:fa:f6:2d:c9:80:4a:86:
53:69:e2:cf:f4:4f:c1:eb:f8:a2:01:35:27:6e:a6:
3c:e7:b8:33:7e:ba:02:db:2f:19:69:a7:b2:2c:0d:
f2:65:76:05:7a:d2:84:5b:26:0d:5e:fb:cf:1b:28:
7c:8b:3a:fc:51:7a:cd:cb:12:cf:3c:09:2e:84:be:
45:1d:1d:85:40:98:22:d2:d5:21:b1:2d:22:5d:fc:
e5:45:45:6a:07:3d:33:10:1b:53:27:56:2b:92:1c:
0b:ba:36:a0:6a:67:e4:0c:6f:bf:e3:3a:b0:4d:8b:
20:46:cb:bc:74:1e:83:e2:4a:80:1a:f7:7f:47:1d:
48:f6:b1:ca:e3:3f:43:f1:9d:64:2c:b3:74:ab:69:
05:1b:89:31:6b:9a:dd:ed:8d:03:a3:26:90:06:ce:
c6:5d:67:78:03:70:f3:5e:82:cf:d0:f4:c0:55:26:
1f:90:7a:0c:48:b4:a7:8b:ec:a2:36:39:c2:7b:05:
ec:7d:71:53:a7:e4:ef:f9:9a:8e:88:23:ac:cc:45:
8a:e2:bb:81:c8:a6:a0:a8:10:e1:3f:36:25:57:cd:
6c:48:c0:ed:05:e9:6c:29:39:78:dd:e6:69:03:49:
70:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:2A:49:56:BC:62:9A:61:0E:58:CA:22:1D:3E:D6:E7:62:51:CE:70
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/23896a1c-5f89-4985-a075-96cc5c1e1905.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
80:35:23:04:55:99:3d:a1:c8:d5:fc:df:e3:7b:53:b5:4f:20:
8b:24:de:af:3a:10:8a:d7:60:3e:da:af:8d:9c:e6:5d:d7:12:
7f:b7:63:c3:2f:20:82:53:38:0a:f3:f0:32:0c:b3:4c:2f:63:
fd:b5:ac:48:31:f9:90:a3:95:1c:98:0d:38:79:74:b9:5a:a4:
d1:9d:40:70:29:47:a9:2d:c4:55:68:d4:21:01:e0:ff:01:89:
04:0c:f4:8c:d8:ea:06:25:7d:d5:0e:79:9b:c3:f6:a6:c5:01:
ed:71:8a:07:dc:ab:67:55:d0:59:b9:01:1f:77:b4:91:4a:bc:
16:47:85:bb:55:81:5c:db:47:f3:47:a4:88:2d:33:28:06:57:
a7:cd:be:08:cf:5b:e4:22:a9:a9:47:62:e8:61:8d:2a:aa:95:
84:95:62:4a:e2:89:9c:3a:2c:d3:7b:02:6c:d5:59:7d:d5:69:
65:8f:44:b6:80:94:23:5c:64:ae:6c:e0:28:6e:ba:2d:78:d0:
56:52:09:ca:be:a3:cb:d9:92:4c:30:cd:01:f7:12:13:5a:0d:
bf:a9:98:cd:c0:b4:d9:31:b8:a8:7c:81:68:35:22:b0:92:7f:
7b:7e:27:75:c5:f8:14:de:f9:e7:21:ee:cf:ed:f8:f0:7f:c2:
d1:4b:4d:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:39 2023 by rpki-client on console-ams.rpki-client.org