Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/338b79a1-566b-46eb-907f-d0ecfcb05505.roa
File: 338b79a1-566b-46eb-907f-d0ecfcb05505.roa (raw, json)
Hash identifier: MpmdKxydmm5BPmL591f3NzRuKGHYYdw1dIcD/fBuEyE=
Subject key identifier: E6:5D:7F:46:4A:1B:B4:98:50:24:CA:57:5D:5A:D7:FD:94:98:2C:71
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 2EEC86B0CF951129B2791C41E2F335E7121127B1
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/338b79a1-566b-46eb-907f-d0ecfcb05505.roa
Signing time: Thu 02 Mar 2023 00:00:00 +0000
ROA not before: Thu 02 Mar 2023 00:00:00 +0000
ROA not after: Sun 05 Mar 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2e:ec:86:b0:cf:95:11:29:b2:79:1c:41:e2:f3:35:e7:12:11:27:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Mar 2 00:00:00 2023 GMT
Not After : Mar 5 23:59:59 2023 GMT
Subject: serialNumber=7f790aadbfdc847413d751a41f9b23d5ac581375b45820ad6be63bf4ee8756be, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:b2:df:cb:e8:d4:0b:1b:7c:d6:35:c3:7c:0f:
b0:b1:2b:cf:7d:ba:61:69:2c:cf:5c:a3:01:27:03:
cf:9a:62:49:47:37:dd:9f:c4:f0:8e:26:08:94:72:
5e:92:31:a9:e5:51:86:6a:4b:37:b3:72:bf:bd:38:
10:c8:c4:53:59:56:9b:41:38:4a:11:23:93:0b:a5:
79:6a:5d:6b:13:ea:a5:50:79:ee:aa:3e:75:37:43:
d6:0b:dc:85:f6:df:13:8a:3d:55:6b:6c:00:a6:fb:
62:88:8c:7e:2c:70:1b:fc:44:ee:f2:f9:a7:2b:3a:
90:90:6b:a3:30:66:0f:05:05:df:e9:cd:76:06:9b:
df:18:97:de:4f:9c:cd:f0:49:fc:26:e6:eb:34:94:
99:f3:b8:79:44:b4:0d:e9:1b:6e:17:e8:24:ee:27:
7e:17:02:56:5c:75:d7:4d:30:ba:a1:a2:50:da:6d:
7c:c2:d3:98:cf:fc:bb:0e:8f:44:f1:aa:c9:54:96:
3a:ef:fa:62:3d:3d:bd:7e:c6:4b:28:8b:31:e9:95:
33:4d:e3:91:5b:cc:be:db:a4:30:05:45:b1:53:7d:
ed:93:cd:62:b2:73:ab:5a:a6:10:1f:28:b6:cd:b4:
eb:13:7f:b6:86:7b:ce:df:1e:a9:b2:c4:58:a1:c3:
1e:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:5D:7F:46:4A:1B:B4:98:50:24:CA:57:5D:5A:D7:FD:94:98:2C:71
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/338b79a1-566b-46eb-907f-d0ecfcb05505.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
4a:41:58:50:bd:45:9c:71:84:c4:3a:f9:0b:bb:05:92:a9:4b:
bb:1b:2f:5e:af:f4:25:cd:96:45:3b:f7:a9:60:39:c3:8e:99:
47:28:f7:72:30:88:e9:40:fb:21:18:6c:10:ef:eb:c3:a3:1e:
e8:de:40:b7:1a:58:0f:73:8a:15:a5:18:e6:31:b2:a2:75:85:
94:dd:c4:0a:ca:2c:dd:f8:6f:7b:99:e6:d3:ec:26:be:ea:4c:
46:47:34:f8:35:19:31:6e:ca:a8:b6:12:cf:6d:d0:ca:28:56:
24:18:33:cf:4f:89:4a:20:ad:94:b4:4d:fb:e4:55:d9:45:45:
cc:6a:1c:72:89:ce:df:10:c1:d1:31:9a:d7:29:31:3e:62:81:
20:bd:f8:37:62:1d:d5:30:38:45:f6:d7:ac:2c:9a:7a:58:46:
a2:53:56:50:ce:7c:51:c7:2d:a9:47:b5:b2:cb:ef:20:1d:de:
d1:58:6d:60:05:98:5a:cc:6c:7b:16:27:3d:a5:c7:52:a6:77:
a4:9b:b4:3d:29:2d:ed:f0:13:7f:e7:90:59:a8:b7:e1:ed:10:
b2:74:1d:27:43:f8:00:87:58:f8:c6:41:21:16:48:e7:18:8d:
0c:88:f3:1c:e1:e1:d5:f8:a1:a3:12:fb:12:7b:e7:9b:f0:e4:
33:9a:e3:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:40 2023 by rpki-client on console-ams.rpki-client.org