Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/55e9962b-f102-4ff9-8391-49a6bcd0bd17.roa
File: 55e9962b-f102-4ff9-8391-49a6bcd0bd17.roa (raw, json)
Hash identifier: p16RtGRJT+2k1tLtC03Ej5UDgL3zwluVyMXsDX372sA=
Subject key identifier: BD:CD:59:B5:29:BC:FA:BD:50:DA:9D:B6:88:00:49:E5:50:CB:CA:B7
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 57ACE5ABB4ACC068D00D3A66A95AF08092242029
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/55e9962b-f102-4ff9-8391-49a6bcd0bd17.roa
Signing time: Fri 23 Sep 2022 00:00:00 +0000
ROA not before: Fri 23 Sep 2022 00:00:00 +0000
ROA not after: Mon 26 Sep 2022 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
57:ac:e5:ab:b4:ac:c0:68:d0:0d:3a:66:a9:5a:f0:80:92:24:20:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Sep 23 00:00:00 2022 GMT
Not After : Sep 26 23:59:59 2022 GMT
Subject: serialNumber=952b1be572cefa2b21a1f9ac07c5d6d069e7a95319f8e9527e34dfac68eafc07, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:9a:2a:28:bd:83:70:8d:d4:27:f4:20:cb:a9:
ff:6e:de:d8:c9:7e:b3:e4:05:ef:58:04:f5:e3:5a:
15:b2:5d:97:f4:22:e4:c7:5c:7c:25:d0:ab:df:bc:
c5:d2:3b:21:56:ca:67:72:40:23:c9:4d:6c:5f:30:
e6:83:7c:65:4e:e8:99:2f:ba:69:20:c8:41:f5:41:
08:65:1b:4b:d6:c7:bd:9a:79:77:92:2f:11:e9:59:
59:eb:70:16:a0:ae:f3:62:48:c1:ce:c4:c4:bb:c3:
76:4f:56:79:0e:a0:70:71:35:4c:93:d8:66:c0:bc:
5e:d1:d8:92:c4:4d:e9:58:b1:e1:04:0c:6c:49:9d:
7c:af:40:59:90:92:ed:89:58:b9:ea:c7:02:b3:75:
3c:fa:c9:31:c0:65:7a:7b:39:bd:99:a5:04:f6:51:
fe:c6:d1:ef:fc:34:b2:ae:2b:ce:55:d5:64:aa:42:
30:c2:44:e0:87:0d:1e:b6:43:5f:49:67:e0:20:3c:
33:88:ff:ab:1a:c8:2c:de:36:6f:be:dd:ca:35:4c:
9b:10:50:07:d7:f9:13:9e:01:b5:ed:f8:88:db:5f:
99:03:62:0b:ed:e7:d7:39:8d:4a:47:0c:c0:2e:8f:
51:42:c6:42:bc:46:7f:7c:af:2c:45:84:63:fb:06:
39:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:CD:59:B5:29:BC:FA:BD:50:DA:9D:B6:88:00:49:E5:50:CB:CA:B7
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/55e9962b-f102-4ff9-8391-49a6bcd0bd17.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
7d:45:eb:13:48:22:da:14:ae:9e:22:8c:bf:4f:dc:c2:61:fc:
24:01:ea:58:60:e8:01:a7:d3:22:3d:9c:70:4f:a2:3a:fb:c7:
27:64:55:5c:2e:84:04:b9:1f:cc:bc:fa:78:c6:b8:9b:d4:88:
20:e2:ae:cf:e6:44:ef:e6:8f:6d:a2:c4:8a:a9:c6:6e:a6:d1:
5d:b1:8a:e2:18:c0:c0:54:39:02:a8:dd:13:d7:19:08:48:bd:
91:b1:87:56:03:e1:e7:ca:9e:e4:2b:37:c8:8b:19:b7:59:9f:
d4:4e:5d:dc:2e:e9:59:0e:58:59:9c:ce:22:5c:e1:0f:e9:2b:
09:a5:db:d9:2a:cd:cf:0f:24:f4:3c:02:40:b9:e6:34:b0:6e:
a4:28:07:84:5a:36:e3:8d:ca:a6:10:c5:40:1b:f4:15:2a:e9:
37:a0:e0:64:30:0b:b4:31:1a:da:a6:ab:c1:cc:94:8c:d1:a7:
e4:aa:19:92:14:af:59:75:f0:f2:14:55:ca:e5:9d:b1:3c:33:
72:c7:e3:76:52:83:e7:b0:c1:63:b4:1e:ee:54:de:62:92:51:
37:60:38:b4:7d:01:ec:4a:30:c9:cd:1a:ab:1c:fd:a5:f2:3f:
83:b9:f1:d9:24:5d:f2:33:6f:e3:2c:b9:3b:ba:4a:69:d5:86:
4d:65:68:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:42 2023 by rpki-client on console-ams.rpki-client.org