Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/3cedcaf5-aa49-4b89-8351-89839e4b2a63.roa
File: 3cedcaf5-aa49-4b89-8351-89839e4b2a63.roa (raw, json)
Hash identifier: is44H2mJr874yFn35aYHOjgQTGSz73tr6ffVoIs5gw0=
Subject key identifier: 7B:78:03:CF:C1:E9:D7:D8:76:D7:1C:49:B8:4B:DB:49:DC:7A:73:D1
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 1DF62C2725FF91127CC00D68E1DB05D76590247F
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/3cedcaf5-aa49-4b89-8351-89839e4b2a63.roa
Signing time: Thu 18 May 2023 00:00:00 +0000
ROA not before: Thu 18 May 2023 00:00:00 +0000
ROA not after: Sun 21 May 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1d:f6:2c:27:25:ff:91:12:7c:c0:0d:68:e1:db:05:d7:65:90:24:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: May 18 00:00:00 2023 GMT
Not After : May 21 23:59:59 2023 GMT
Subject: serialNumber=e167303e440bb84cfc61f767145ce9d2d44b881fdef4b2f1011c056a99d91d20, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:bc:9f:2e:98:a2:81:f2:72:66:ff:3c:f5:53:
b0:ca:65:ba:af:5c:9b:28:3e:fa:d5:34:63:05:ff:
09:5e:d3:40:18:98:7c:0c:23:04:51:23:3f:a5:2f:
7e:aa:73:3f:06:ab:87:29:8e:56:69:53:2d:36:0c:
3f:9c:2f:b9:8e:85:93:5f:5a:fa:9b:24:0e:39:57:
26:46:cc:01:c8:fe:2c:18:2e:b5:ae:97:9d:7e:61:
7e:66:48:1b:26:a7:17:4f:ae:a7:24:3d:29:f4:95:
52:6f:de:f8:03:0b:c9:2f:ea:0b:19:9d:ba:b2:97:
8e:a4:88:d1:a0:55:68:51:89:cc:3f:0c:ce:d0:a9:
fb:c1:8b:bc:90:44:6f:85:d3:11:4e:be:c2:5e:d8:
7b:16:03:e5:fe:39:2a:01:71:e5:7a:a2:70:79:6b:
67:b2:fc:12:08:74:de:af:ca:90:bb:57:c4:a9:05:
2c:c7:29:65:54:29:37:fc:b5:cf:61:57:b2:c8:74:
8b:fc:b0:31:39:f7:39:90:63:e5:1b:58:43:a4:f4:
a1:1f:fb:26:15:7e:33:b6:c2:8e:b2:39:e5:d1:eb:
de:b8:b0:07:7c:cc:0d:f7:c7:f2:13:9d:bd:84:17:
cd:fd:43:6a:6a:d9:be:a3:56:f8:16:20:5f:c6:df:
57:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:78:03:CF:C1:E9:D7:D8:76:D7:1C:49:B8:4B:DB:49:DC:7A:73:D1
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/3cedcaf5-aa49-4b89-8351-89839e4b2a63.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
88:dd:05:e9:20:66:f3:b7:c1:35:b2:64:f8:c0:24:df:4d:bb:
35:e3:23:fb:83:e3:c9:83:ad:f8:cd:fc:f7:1f:bc:1c:71:ea:
90:cc:c9:5d:a2:a9:42:c0:99:20:1a:4b:8b:8e:5d:84:0c:0b:
cc:3c:a5:78:db:7c:06:5c:2e:ac:4b:f4:10:17:c3:90:ad:42:
83:61:70:18:39:a6:2b:71:30:49:1f:9a:c5:98:70:77:06:49:
fe:64:61:fc:15:db:d7:84:d7:65:b2:f2:90:53:2d:93:48:e3:
d1:3b:e5:16:ea:3b:1c:78:0f:56:10:82:9e:c2:eb:d5:56:30:
5f:59:de:82:01:53:92:94:5c:77:72:0e:87:3a:b8:9e:79:41:
bb:b3:95:d3:dc:b5:5a:13:30:ad:92:84:0b:ea:72:68:c9:82:
4c:49:66:62:29:71:b1:61:ce:0c:23:11:5d:2e:8d:d8:7f:83:
3b:50:33:15:e1:8a:b7:98:d7:2d:30:43:79:c1:16:3b:c4:e7:
fd:de:5e:eb:dc:75:05:26:0e:ac:b6:eb:3a:97:ed:f3:2b:fa:
53:46:1d:8b:24:74:af:0e:6b:29:08:9c:bd:bf:39:8e:5f:44:
ec:09:97:1f:8e:05:24:e8:17:95:ee:cc:e9:30:d4:24:f1:b6:
43:1b:04:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:40 2023 by rpki-client on console-ams.rpki-client.org