Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/6122474b-fe24-471e-9d5f-3d6646a15617.roa
File: 6122474b-fe24-471e-9d5f-3d6646a15617.roa (raw, json)
Hash identifier: Sex3vKKMsoJrAtGb66qe6044CFgWbmh5jRLmG+LLmtA=
Subject key identifier: 28:D5:D4:9B:77:7B:02:D1:4F:88:6F:E6:52:EE:EF:20:BC:E9:50:AB
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 17C0489856FE309BA717E5585E005F4EE7333BC6
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/6122474b-fe24-471e-9d5f-3d6646a15617.roa
Signing time: Sun 30 Oct 2022 00:00:00 +0000
ROA not before: Sun 30 Oct 2022 00:00:00 +0000
ROA not after: Wed 02 Nov 2022 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
17:c0:48:98:56:fe:30:9b:a7:17:e5:58:5e:00:5f:4e:e7:33:3b:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Oct 30 00:00:00 2022 GMT
Not After : Nov 2 23:59:59 2022 GMT
Subject: serialNumber=cceb05f79c2075d6b12991455bd60dc0e5fadbf9a63fc81e27f434c17298337f, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:1f:54:33:1a:e0:34:78:d5:6e:3d:84:f0:dc:
41:6e:38:c8:5e:48:ee:7a:c6:24:07:10:6d:62:b7:
aa:5a:ea:0e:43:0b:7b:dc:29:6a:9b:c5:a2:43:2a:
ec:7b:12:2a:0f:65:7c:a2:58:7b:76:e7:1e:72:3d:
ba:20:9e:56:d2:56:61:8b:55:a4:08:78:19:38:a4:
ce:3b:43:d9:05:0a:39:69:48:b5:13:af:19:f7:60:
2b:47:f1:49:08:45:ba:5b:7d:21:3e:86:07:47:63:
19:aa:8f:d8:2f:33:5b:db:64:e0:39:cd:f7:52:ef:
a5:a7:0c:e5:d3:ee:9b:d7:9f:3d:4b:14:e4:f5:0d:
39:5f:cd:66:c9:a3:24:76:ea:18:2a:94:b2:9e:d3:
69:0e:af:0c:41:f3:41:0e:da:cd:c0:66:75:b6:2c:
dc:60:5d:0a:70:93:55:10:0a:77:b5:02:ca:14:8b:
a2:55:62:30:af:55:35:76:ec:7d:7e:93:e1:51:3a:
47:07:9b:42:e8:c0:8a:17:d3:26:40:f2:75:a7:73:
85:79:dd:98:24:09:ba:df:8d:42:41:9d:9d:0a:e3:
c6:1a:f0:62:02:12:98:d8:f8:16:0b:14:d0:06:57:
ed:d6:c1:f4:80:6e:4c:2b:60:3c:5a:dd:65:c0:3f:
65:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:D5:D4:9B:77:7B:02:D1:4F:88:6F:E6:52:EE:EF:20:BC:E9:50:AB
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/6122474b-fe24-471e-9d5f-3d6646a15617.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
a6:3e:d6:ee:34:10:03:b2:f0:12:5a:f2:1c:c1:ce:ec:a0:f0:
ef:bc:49:cd:44:85:56:63:2c:fd:13:de:1a:e6:7f:13:3e:4a:
70:ce:e4:57:6b:65:04:9f:7b:ea:45:e9:48:79:ef:a0:34:a3:
0e:11:ad:45:b6:25:2b:6a:da:eb:95:e9:c0:17:06:a6:9a:62:
94:3a:9a:c1:c6:0e:03:47:f1:7a:62:2d:1c:67:f4:d0:5e:bd:
2a:c5:c9:a0:3f:6c:ba:a6:a7:11:cd:7e:65:58:2d:c3:1f:66:
f2:72:17:54:3f:0a:1b:a1:aa:93:25:82:31:ea:80:34:ed:b1:
b7:16:04:48:d4:62:a3:d4:8c:cc:ab:05:65:f0:e3:03:a0:0e:
7f:4f:8a:f7:6c:7f:c8:4c:7f:e1:44:e6:6c:9a:28:de:ea:e1:
0d:1c:46:2b:a4:72:ed:e2:96:1c:92:8c:9b:d9:b3:02:fd:85:
45:0d:bb:d3:f0:af:01:52:d3:4f:76:1d:26:e0:94:0c:2c:f7:
41:21:c6:93:72:12:a9:92:cb:3e:16:85:d9:05:fc:a9:46:ad:
88:77:50:bf:e7:05:9a:5a:3f:cc:52:d0:88:f8:6d:9d:6f:84:
e2:0e:08:96:c8:2c:81:c5:7f:21:ad:3a:ca:73:e5:d1:89:22:
fe:de:53:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:46 2023 by rpki-client on console-ams.rpki-client.org