Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4b59457f-5b61-40fd-b674-2a39b6676bd5.roa
File: 4b59457f-5b61-40fd-b674-2a39b6676bd5.roa (raw, json)
Hash identifier: D2ZwpEBabnvqhOOtsU4PeiZ2JPHJjpStUaY/TGwuZEE=
Subject key identifier: 01:E9:18:C9:63:39:67:2E:B7:9B:07:BD:40:43:C3:E6:0A:A3:3E:DA
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 1F6D126FDE2F2876CE4DA9A7E81A136882B24FA5
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4b59457f-5b61-40fd-b674-2a39b6676bd5.roa
Signing time: Wed 10 Aug 2022 00:00:00 +0000
ROA not before: Wed 10 Aug 2022 00:00:00 +0000
ROA not after: Sat 13 Aug 2022 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1f:6d:12:6f:de:2f:28:76:ce:4d:a9:a7:e8:1a:13:68:82:b2:4f:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Aug 10 00:00:00 2022 GMT
Not After : Aug 13 23:59:59 2022 GMT
Subject: serialNumber=cee3daca1e03180799ae01c154d0e8889cb4b05d71efd2d3549b2af666290c9e, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:44:0c:2e:24:8d:f7:02:09:27:45:38:9e:53:
2e:a3:12:f2:67:09:b7:68:03:ae:68:9c:ef:18:7f:
7e:e4:fe:ea:3f:54:95:a4:ba:8c:8e:57:0e:df:d1:
49:02:47:a1:a1:fe:20:f7:46:0d:30:4f:27:2b:2b:
65:f9:1f:d0:3f:22:13:34:3e:fa:f9:f2:16:44:51:
74:0c:b4:d0:7b:00:86:ad:59:c0:68:7f:de:17:83:
4c:59:08:10:c7:be:58:c6:ac:ed:63:03:e3:c5:7d:
92:50:97:ef:a0:7d:fd:6a:21:8e:7a:a5:81:c4:2e:
ab:76:10:70:e5:dd:01:89:63:90:73:95:d3:b3:71:
b4:11:f1:5f:fa:83:d2:ef:c5:5b:3a:e2:83:0d:e5:
b6:69:32:70:98:fa:23:c4:1e:b0:0d:63:95:e8:40:
80:3d:25:6b:ca:a5:56:0a:54:e7:8e:da:6d:5e:c1:
d3:c8:85:28:5b:b2:5d:96:c8:24:cd:32:e5:ed:fd:
d1:56:0c:6e:32:3f:2f:38:91:38:1c:1c:55:ac:61:
6b:8e:28:c6:44:3f:43:79:8f:20:a6:88:65:e8:1f:
91:73:12:46:ad:24:75:c3:b5:3c:5b:63:b0:b9:db:
d6:75:e0:7c:6b:22:3f:a4:8f:5e:32:63:f9:92:e1:
53:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:E9:18:C9:63:39:67:2E:B7:9B:07:BD:40:43:C3:E6:0A:A3:3E:DA
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4b59457f-5b61-40fd-b674-2a39b6676bd5.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
84:5f:4c:3f:eb:a8:bc:bd:45:69:71:5c:2c:65:df:93:20:d5:
4a:a3:41:fa:22:4c:e6:5f:56:ac:bf:d4:81:00:5b:19:32:83:
fb:b9:20:6c:ca:9a:a1:0b:9d:2e:7a:41:09:41:19:9f:e6:d5:
3d:c5:d2:01:e1:04:e2:b6:ca:21:a0:56:06:51:59:80:ed:b4:
00:b2:fa:d4:97:7d:31:8b:6d:2e:90:ef:86:de:11:24:4d:12:
70:1d:25:77:bb:ed:f7:80:fc:01:7f:71:17:a6:21:9f:eb:96:
53:a1:95:2d:05:93:6d:fe:19:fe:98:46:b1:8c:d3:85:8a:19:
7d:77:00:f9:5b:70:4c:4d:91:d6:38:4e:8a:b5:e4:40:15:4f:
dd:ba:96:fe:0b:a3:de:f2:79:90:1d:0c:db:82:29:3f:be:4f:
bf:01:a9:e8:25:43:6d:e5:41:85:1a:d7:89:a8:88:f9:18:ca:
51:e7:45:a2:b5:6f:4d:04:9a:e1:a8:ac:d7:ea:84:80:d0:79:
6a:3f:71:39:05:3f:c5:d2:51:40:d9:b6:de:e3:e5:c4:dc:9f:
0b:d9:85:98:78:09:68:38:38:29:1d:eb:ff:0c:a8:1e:4e:36:
03:c5:24:e8:34:8f:2a:ca:31:4c:61:ed:6a:89:66:f5:b2:4b:
39:56:87:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:41 2023 by rpki-client on console-ams.rpki-client.org