Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/6177dcf4-741b-4a95-8091-590b1680ea4b.roa
File: 6177dcf4-741b-4a95-8091-590b1680ea4b.roa (raw, json)
Hash identifier: 6u3OMQ2OMRJ72x2VLbWIkClP+JdA/139zGai31ZSYLs=
Subject key identifier: 94:6B:19:90:2C:98:E4:47:B3:27:C9:EA:7F:E3:13:DA:CE:84:DB:B4
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 74303CBCF6C2BBC54AC4A438F3D0DDB6DA1C2854
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/6177dcf4-741b-4a95-8091-590b1680ea4b.roa
Signing time: Thu 02 Mar 2023 00:00:00 +0000
ROA not before: Thu 02 Mar 2023 00:00:00 +0000
ROA not after: Sun 05 Mar 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
74:30:3c:bc:f6:c2:bb:c5:4a:c4:a4:38:f3:d0:dd:b6:da:1c:28:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Mar 2 00:00:00 2023 GMT
Not After : Mar 5 23:59:59 2023 GMT
Subject: serialNumber=3c8cc4403adbf57438772cd46a537d9e000795e4d1a10ddfd1f3fac4e6db7c11, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:43:31:2f:d9:93:bc:88:d2:96:21:8d:c5:2f:
ba:45:1f:26:d5:84:42:cd:07:51:cb:4f:bb:34:e2:
cc:40:44:b7:a8:1a:7d:19:d7:3d:59:3a:f9:08:34:
89:6d:8e:73:87:bd:36:10:56:5e:ee:f0:7d:14:6d:
f7:7e:bd:64:0c:29:31:67:b5:10:e8:31:16:39:cf:
27:bd:5b:ec:ae:7b:cc:d5:7b:11:39:fc:e2:4f:3a:
d5:df:29:cc:73:67:d0:48:b9:fd:da:e0:f1:01:19:
7a:a1:e0:6a:37:68:fe:1a:ed:0b:0c:73:61:b6:91:
ba:09:ff:84:b1:74:48:58:ac:a3:08:ec:c1:ec:45:
9c:e8:56:1e:ba:3c:80:9c:09:58:c0:6d:79:26:af:
67:0a:ba:bd:4f:b2:c2:b1:12:0b:ec:c9:05:57:a5:
6d:07:75:49:b7:de:ad:c2:f1:82:32:ba:f2:7c:59:
e9:77:40:b7:54:8b:ec:64:56:35:bb:01:cb:2d:31:
d2:09:b3:15:06:64:3b:ab:83:64:ef:80:9d:64:d6:
19:37:88:49:70:bc:ff:d3:e1:f1:fb:c0:cb:8a:d3:
5b:6b:48:a7:d9:33:3a:28:50:91:ce:05:20:f6:64:
b0:09:d2:8b:d3:a8:65:40:bb:60:5c:bf:45:10:35:
be:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:6B:19:90:2C:98:E4:47:B3:27:C9:EA:7F:E3:13:DA:CE:84:DB:B4
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/6177dcf4-741b-4a95-8091-590b1680ea4b.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
07:04:6f:4a:3f:63:44:6b:5f:d5:bb:f9:ce:1b:c1:29:c9:6e:
ad:e5:1b:cc:61:38:b5:51:74:e4:9c:38:b9:59:42:6b:77:fc:
3b:3a:45:36:15:b8:1b:79:5f:1c:6b:24:6b:0f:17:2b:ba:41:
e3:ef:33:85:1a:a4:78:54:c5:27:23:da:60:64:26:1d:a3:fb:
b2:0f:94:e5:83:01:8c:be:c5:7f:45:68:88:65:52:85:68:95:
4d:37:79:b5:19:40:f9:3b:22:59:d6:80:fe:f8:c3:4a:18:ed:
83:2c:92:2e:72:09:f4:24:5a:4d:48:e0:88:8c:f9:1e:a6:1c:
43:c0:29:42:b2:b2:13:9e:d9:b4:98:2e:fb:6f:9a:91:82:4b:
31:5b:15:dd:4f:f5:1c:2f:9a:97:69:44:3b:67:91:63:02:bd:
05:e1:0b:11:f8:f7:f8:55:61:00:d6:ee:9d:92:d4:d2:26:87:
53:22:62:20:c1:c9:73:b4:e8:94:78:f2:b8:ff:18:3b:47:8b:
19:cf:a7:de:ad:21:31:ff:3b:dc:ad:f7:c9:00:46:58:da:e9:
7c:21:64:ff:9a:3c:e8:49:20:56:21:15:5a:06:b8:cb:b5:1f:
85:e0:81:13:e8:d8:08:17:c1:5c:1c:4c:f9:6b:97:50:0e:b3:
df:85:ec:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:46 2023 by rpki-client on console-ams.rpki-client.org