Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/601a0952-597b-4105-9654-487c8647974c.roa
File: 601a0952-597b-4105-9654-487c8647974c.roa (raw, json)
Hash identifier: fY2TePPLvMBs66snKDxbM/Hy4E84woan6nQRucH9p7U=
Subject key identifier: 97:EE:08:E6:21:1A:E6:B3:86:D0:57:A1:94:69:E7:98:F3:00:E2:77
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 35FC3524CC95E9ABB949A369ACBD127D4A9DACA7
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/601a0952-597b-4105-9654-487c8647974c.roa
Signing time: Sun 07 Aug 2022 00:00:00 +0000
ROA not before: Sun 07 Aug 2022 00:00:00 +0000
ROA not after: Wed 10 Aug 2022 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
35:fc:35:24:cc:95:e9:ab:b9:49:a3:69:ac:bd:12:7d:4a:9d:ac:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Aug 7 00:00:00 2022 GMT
Not After : Aug 10 23:59:59 2022 GMT
Subject: serialNumber=dde586e398771b6f0044f6f087776e4fdcc87f6633b7f4eb8e4fc3602c24d178, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:b1:6b:12:b9:7d:b9:0a:26:89:24:03:3a:ed:
31:79:f0:3b:e8:de:a1:ea:11:5f:f6:21:5a:d6:63:
54:1f:df:d7:df:42:e8:ad:2a:e9:a3:a4:a7:4b:a6:
76:51:20:06:6c:c7:d3:b4:05:ed:5e:78:fd:7d:9f:
e3:3d:2a:0d:23:0b:59:9b:8b:3b:95:01:49:c3:3a:
00:c7:73:dc:fe:c8:98:88:ad:4c:46:44:dc:58:1b:
4a:61:55:73:37:ef:90:73:20:f2:58:e0:56:9a:2f:
c2:9a:3f:e8:bd:bb:04:cf:d9:a7:23:69:71:40:b5:
1f:15:b6:2b:11:d3:3b:76:7e:ef:00:93:1c:74:28:
29:3a:ba:07:dc:3b:15:81:c2:cd:d8:a6:3a:8d:3f:
ef:9e:35:e8:4f:73:d9:76:01:06:8f:aa:33:cd:3e:
5e:67:da:c5:f4:10:2e:58:b0:54:30:a2:8f:6d:a8:
a4:e6:9e:7a:bc:63:74:ec:b5:d7:11:d8:31:a0:ab:
1a:1f:87:bf:e6:d1:a3:49:1f:33:02:7b:b6:d7:11:
4b:29:f6:89:bb:2b:04:03:72:4c:aa:45:74:75:4c:
7a:02:52:62:e7:35:cd:b0:bd:56:fd:bf:2f:70:ac:
4f:f0:8c:d0:4e:29:73:32:e4:bb:44:2c:8e:03:e3:
7c:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:EE:08:E6:21:1A:E6:B3:86:D0:57:A1:94:69:E7:98:F3:00:E2:77
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/601a0952-597b-4105-9654-487c8647974c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
4f:14:26:88:a4:0d:e3:2e:99:5e:40:a1:49:00:6a:7b:bc:46:
70:cb:93:ed:ef:9f:bf:19:0c:54:19:e1:92:4b:d7:0f:e7:1c:
72:f9:41:19:5b:e6:31:3c:15:14:c0:bc:52:41:cf:02:37:57:
32:17:35:89:10:02:eb:c4:27:46:78:1a:96:32:60:e5:43:37:
fa:05:5c:29:72:8c:f4:7b:de:85:f1:77:f0:10:d3:31:d5:ee:
02:23:29:8f:9a:fe:f2:e1:e1:68:8a:61:8f:8c:44:3e:71:54:
89:20:a6:3c:25:32:0e:4d:4a:f5:e9:ba:85:78:ec:42:fb:c1:
07:6f:47:0d:e1:34:93:04:b0:00:79:bf:e2:f2:3c:ed:ae:23:
ea:1c:48:e4:ef:e5:23:c6:0d:4a:9b:c9:a7:0f:c7:da:c3:98:
fe:6c:cd:55:8c:7f:50:34:29:69:eb:4b:04:9f:6c:79:8f:6c:
97:ce:f9:20:15:4c:57:59:a9:aa:85:51:74:12:db:f5:36:67:
ab:14:09:6b:d6:e5:83:02:b8:0c:b4:7c:6a:f3:ca:12:63:a7:
b5:80:ae:43:36:f7:91:3e:ce:09:a8:c9:41:1e:d9:f9:70:c3:
78:ab:b8:16:0e:61:44:20:46:6c:0d:fc:2a:69:95:18:16:41:
66:10:48:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:46 2023 by rpki-client on console-ams.rpki-client.org