Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/6dc488a1-b23e-42e0-bc5e-efa45b85e10a.roa
File: 6dc488a1-b23e-42e0-bc5e-efa45b85e10a.roa (raw, json)
Hash identifier: DwMJUSig5jnQdhqKCqY38zLwq1TfgJj9YmFyOy5FIbY=
Subject key identifier: 30:F3:BC:3E:E1:28:FC:CD:78:83:33:D9:43:1D:CB:4A:26:54:83:98
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 66C06CA85D59CFF10F8B7901C212DBF818AF05ED
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/6dc488a1-b23e-42e0-bc5e-efa45b85e10a.roa
Signing time: Thu 30 Mar 2023 00:00:00 +0000
ROA not before: Thu 30 Mar 2023 00:00:00 +0000
ROA not after: Sun 02 Apr 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
66:c0:6c:a8:5d:59:cf:f1:0f:8b:79:01:c2:12:db:f8:18:af:05:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Mar 30 00:00:00 2023 GMT
Not After : Apr 2 23:59:59 2023 GMT
Subject: serialNumber=efec0cdcecdd18a983eb09678bb69ad6c252a924dc62cc0e33658e7c00614ff1, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:42:9d:f5:72:04:62:63:75:12:69:c6:ea:af:
94:cd:d5:86:a6:2f:41:cf:9d:29:9a:34:0b:23:99:
72:72:1e:ce:c0:88:cb:7d:67:75:26:e1:84:c8:0b:
86:98:b0:50:9b:70:74:5e:43:8b:64:6d:ad:d2:5a:
14:4a:32:fa:c9:fb:1b:43:26:6c:65:43:00:c1:f8:
91:88:98:5e:7d:13:b8:83:67:a0:15:7f:ed:fd:a0:
b3:ee:f5:3e:92:13:fc:f1:fc:ae:a1:74:36:8e:5b:
52:fd:7f:9f:8d:5a:14:f7:44:61:39:78:47:d8:8c:
d7:b5:bd:9d:69:12:2e:ac:d5:24:d4:b5:4c:45:be:
47:9a:6d:a1:db:8a:22:4d:ee:5f:2f:f5:08:4a:74:
f6:ab:cc:b9:f6:d0:74:f5:1b:4c:69:ba:eb:73:de:
bf:9f:69:da:e3:2b:29:b4:94:b2:07:71:fd:3a:c4:
bd:10:fe:95:1d:35:df:21:4a:d4:13:88:c1:86:e1:
42:eb:db:56:64:57:be:0b:9b:67:26:f1:f3:d7:62:
a9:ca:86:a6:ba:3c:2b:bf:f9:6a:be:0e:6e:d9:49:
d4:3a:ea:b6:26:08:a0:52:3b:ec:25:f5:c6:f2:01:
9d:a9:fe:88:cf:6c:23:3c:24:9d:cb:49:f1:cb:60:
3d:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:F3:BC:3E:E1:28:FC:CD:78:83:33:D9:43:1D:CB:4A:26:54:83:98
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/6dc488a1-b23e-42e0-bc5e-efa45b85e10a.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
20:71:b9:c3:2b:2f:c8:aa:b8:22:2b:c9:dc:1a:d6:36:dc:46:
e6:f2:3a:8d:35:e3:07:bf:ba:07:d1:0b:97:c4:c5:91:95:e9:
f6:55:99:ab:a9:b0:b8:eb:f2:fc:4a:d7:fe:87:b2:7b:27:6b:
c9:e2:43:75:ed:9d:89:45:5f:29:b1:ba:31:22:16:41:dc:e0:
56:c4:06:cb:37:9e:08:83:f7:d5:49:30:1f:f9:e8:cc:fe:49:
c6:f1:23:5c:e5:f0:94:63:cf:be:c1:d6:2a:fe:c2:fd:6c:f4:
15:a2:37:ca:16:53:38:22:a5:f1:3a:27:7e:91:27:ce:25:20:
9d:4f:06:19:b1:47:4b:4d:e1:b9:7b:da:7f:0c:45:f8:b9:d7:
60:5e:07:99:dc:1c:7a:d0:b8:ff:3d:69:2f:38:a4:84:de:a6:
28:3a:07:1f:1a:e6:13:ab:24:d7:0c:48:e2:3e:29:64:67:fd:
3d:2d:06:22:18:ba:67:d3:f8:bf:cc:d8:82:ce:a7:a0:6f:55:
c2:a4:85:7d:e8:ee:73:4f:08:ec:2b:b1:07:91:64:1b:a6:48:
f5:7e:e7:41:06:3f:44:36:b6:2b:73:e5:59:2f:43:53:1c:26:
95:83:9a:90:13:e0:ef:b8:e0:2f:ab:f9:88:cc:c9:0a:ee:75:
fc:9f:79:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:46 2023 by rpki-client on console-ams.rpki-client.org