Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/291d8bb7-f50e-4a84-81e7-c7f348a4c5ff.roa
File: 291d8bb7-f50e-4a84-81e7-c7f348a4c5ff.roa (raw, json)
Hash identifier: MCTn6tR6RA3M47aKsG07IvPG2a+UdhnWgi53okSp+88=
Subject key identifier: 71:E2:DA:C2:1F:4E:46:74:A3:6A:E6:C6:7D:FF:A5:30:27:06:73:AB
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 48BA3705D29E28D6E3599CB867F02792EAA8B706
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/291d8bb7-f50e-4a84-81e7-c7f348a4c5ff.roa
Signing time: Wed 01 Mar 2023 00:00:00 +0000
ROA not before: Wed 01 Mar 2023 00:00:00 +0000
ROA not after: Sat 04 Mar 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
48:ba:37:05:d2:9e:28:d6:e3:59:9c:b8:67:f0:27:92:ea:a8:b7:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Mar 1 00:00:00 2023 GMT
Not After : Mar 4 23:59:59 2023 GMT
Subject: serialNumber=316f0a9c30c15ec589615f63976b5bcbe83246f0fe27c9f090baf169723e12c4, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:50:e2:c2:dc:d7:08:31:3c:1f:0f:25:3e:1b:
bc:0a:e2:05:2a:9d:21:87:72:d3:4c:e9:ee:0c:bf:
30:97:36:eb:d8:f0:8f:b4:e3:92:40:5e:76:00:7d:
c1:94:e0:b2:ad:b5:77:1b:d7:0b:dc:a1:4e:63:5f:
a8:78:99:07:a3:45:63:6a:be:73:48:82:a3:94:96:
02:f0:a5:22:eb:46:92:0f:88:fd:d6:5b:46:51:92:
0a:7e:0a:53:7d:1e:88:59:8d:f6:a3:78:fc:d7:ce:
00:be:1c:c8:42:2d:23:37:e5:1d:d3:22:82:61:b8:
68:88:21:b8:c4:76:6c:4b:65:94:f7:4f:53:20:6f:
db:62:2f:34:b0:25:39:6a:7e:ab:1c:4e:29:ba:70:
a3:00:38:ee:fd:a5:52:a8:43:23:46:64:55:81:fa:
e2:10:fe:52:d2:5f:ae:0a:97:13:84:a6:03:1c:17:
8f:68:d6:3f:52:6d:c4:9e:96:45:7b:7e:c9:7f:cf:
36:00:14:97:b0:aa:d8:4b:5a:4d:f4:5f:ce:68:3c:
07:7a:98:9c:6a:df:e6:24:46:4a:1c:f3:e4:9a:ad:
c9:73:2f:cd:da:df:66:d6:b5:d5:2c:58:c9:9e:1c:
9c:a6:75:c6:c1:4c:0b:6b:5f:a2:08:e7:33:a1:68:
de:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:E2:DA:C2:1F:4E:46:74:A3:6A:E6:C6:7D:FF:A5:30:27:06:73:AB
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/291d8bb7-f50e-4a84-81e7-c7f348a4c5ff.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
5f:23:56:c3:6e:e8:2b:58:4b:17:a3:ac:a7:39:d3:ed:99:f8:
26:b0:ef:fc:81:46:52:6e:78:1e:6c:10:13:31:42:18:92:37:
33:c7:94:ba:4b:29:58:1d:a5:a4:e9:84:25:8a:33:8b:b0:23:
67:fb:e4:b5:b1:82:a0:1d:95:21:ce:ef:0d:f4:86:b8:4b:13:
7e:4e:e7:10:8f:86:46:28:e1:ea:f2:9c:2f:8b:cf:de:59:b4:
05:86:b2:5c:0d:1e:ed:7f:85:3f:e4:7f:f8:5a:81:e2:23:a8:
27:e2:db:85:d8:9a:1e:bd:55:d0:db:7f:ee:83:62:97:ef:0c:
db:f0:2e:38:c2:65:df:54:29:18:3b:be:dd:90:d1:59:1d:24:
e2:49:a3:24:34:4c:d1:d9:2e:5c:13:53:9a:7b:d4:6d:f3:64:
4e:cc:8e:fe:c8:a6:ab:67:03:26:b0:56:94:76:ee:85:a3:e8:
15:c3:ba:34:6e:23:3f:5b:0e:d7:c8:90:03:d7:c8:9a:81:b8:
a7:e4:b5:77:f4:b5:fa:bc:0d:34:a4:34:78:cd:c4:35:41:9e:
f8:82:2b:fe:a2:b2:31:ba:d6:4e:43:5e:c2:09:69:61:7a:49:
af:a6:b2:b1:53:72:2c:4d:cf:00:8e:32:1c:72:ab:ea:37:9a:
f3:15:0e:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:39 2023 by rpki-client on console-ams.rpki-client.org