Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/3b6ab10e-061f-4436-a14b-7d3fa66fb97a.roa
File: 3b6ab10e-061f-4436-a14b-7d3fa66fb97a.roa (raw, json)
Hash identifier: 1VikiL0G8z8SlqEFQPy+PZSY/8OhuI3yvzhUKmgNZiQ=
Subject key identifier: 53:B6:83:94:1B:18:84:90:D0:C2:59:94:A3:B5:98:29:73:7A:E9:01
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 410F5347285C7603433892150466D526AC4B00BA
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/3b6ab10e-061f-4436-a14b-7d3fa66fb97a.roa
Signing time: Wed 31 May 2023 00:00:00 +0000
ROA not before: Wed 31 May 2023 00:00:00 +0000
ROA not after: Sat 03 Jun 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
41:0f:53:47:28:5c:76:03:43:38:92:15:04:66:d5:26:ac:4b:00:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: May 31 00:00:00 2023 GMT
Not After : Jun 3 23:59:59 2023 GMT
Subject: serialNumber=22681f936db34bbc86a1829c2064088f58baaefb7f6eafd3ad40a5410ce98c3c, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:73:f5:8c:79:db:d5:1f:01:f1:dc:d9:a6:7b:
02:fb:69:f7:06:19:56:26:bd:c7:f7:0d:61:1e:d8:
56:55:36:74:60:37:e1:e2:d8:84:54:f1:ad:89:f6:
5e:1c:9b:c3:d6:0f:48:f9:92:e4:31:cf:60:4f:bc:
b0:0b:51:8c:99:3b:12:8c:33:ce:07:85:94:20:e3:
99:dd:c2:dd:ac:e7:49:c6:c9:32:94:32:d5:8d:5f:
62:7b:7b:ea:b7:de:f5:3e:b1:7f:c8:5b:87:12:41:
a4:e2:e4:49:5b:28:df:7d:8d:46:4d:de:b8:24:07:
47:9e:a8:a7:68:03:d4:d4:16:5b:0a:53:3a:0b:c0:
27:19:a9:79:6c:c3:d2:62:75:c2:57:1c:97:86:f1:
02:c2:e5:d0:d2:24:d9:21:71:36:c3:00:b3:22:55:
b4:9b:ee:85:69:5d:43:ce:e3:68:90:96:e8:b8:6e:
92:ac:4d:98:e3:eb:18:ee:1f:b2:21:5a:db:a2:3a:
bd:3f:91:cf:03:55:46:40:cb:9d:9c:36:46:a3:d5:
0d:ee:80:ba:ae:87:5a:9a:b3:9d:6b:f9:92:6d:54:
51:6b:e2:9a:4e:f7:f1:3a:ca:1d:b9:5c:07:f1:bf:
1d:10:d9:e8:98:e7:4d:04:7a:e7:98:68:20:ae:52:
28:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:B6:83:94:1B:18:84:90:D0:C2:59:94:A3:B5:98:29:73:7A:E9:01
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/3b6ab10e-061f-4436-a14b-7d3fa66fb97a.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
51:11:9e:46:67:cd:f3:f4:86:4b:5d:73:4f:06:ba:0b:27:ef:
80:42:31:32:f0:2a:d5:96:39:fd:6e:b5:33:bd:0b:aa:f4:36:
ca:3d:b8:f4:35:17:aa:ec:9a:04:fe:d1:b0:d0:a0:74:29:b7:
c3:de:69:e7:b0:6f:5c:52:6f:b0:d8:d4:3f:46:7f:c5:2a:29:
2e:08:21:48:7f:a7:d6:4d:c8:00:c5:f6:15:45:f5:97:af:e1:
f8:5f:29:d8:2e:c3:bf:9b:5c:53:79:8b:c3:f8:5a:22:ac:4f:
b3:37:c1:7d:9c:36:13:9a:37:11:8d:79:0d:3d:02:0d:c2:3a:
88:3b:93:fb:89:e3:4e:1e:a3:b2:1b:4b:bc:43:a1:db:c3:40:
5a:55:25:d8:7a:27:28:75:6f:f9:81:8f:8a:70:8d:da:41:c9:
48:f6:ce:bb:37:1b:d6:e8:ec:6a:0c:a5:1a:4a:8a:6f:0a:60:
13:4e:72:80:b4:6f:ae:16:ca:0b:76:11:db:47:39:c3:e8:a9:
f6:61:b4:1b:f7:d6:4e:fc:98:ee:f9:57:87:15:60:f6:8a:c2:
70:19:98:c8:d0:07:4f:3a:23:fa:e4:43:db:1a:95:40:06:a1:
3a:ce:3d:be:6e:1d:81:0a:34:ca:6a:78:99:d1:d3:c4:cc:d8:
42:95:2d:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:40 2023 by rpki-client on console-ams.rpki-client.org