Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/6f6d8a7f-361f-4942-9589-117cd20ba0fd.roa
File: 6f6d8a7f-361f-4942-9589-117cd20ba0fd.roa (raw, json)
Hash identifier: ZQB0RscIuYlfuphnec8JQU1wPsb+jNZgAfD7qS2qeXQ=
Subject key identifier: F7:97:95:0D:DE:9B:65:FA:BA:4C:2E:2B:4B:65:2A:4C:E8:29:AA:73
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 75CDAC5C41EA2B6A4C3A14A5620B5071E2279BEA
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/6f6d8a7f-361f-4942-9589-117cd20ba0fd.roa
Signing time: Wed 21 Dec 2022 00:00:00 +0000
ROA not before: Wed 21 Dec 2022 00:00:00 +0000
ROA not after: Sat 24 Dec 2022 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
75:cd:ac:5c:41:ea:2b:6a:4c:3a:14:a5:62:0b:50:71:e2:27:9b:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Dec 21 00:00:00 2022 GMT
Not After : Dec 24 23:59:59 2022 GMT
Subject: serialNumber=28fdacf909c8a35f70e0b1a06400c3916280d2c1a30d5b2ad646edaf9d3daa58, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:4d:08:e3:42:38:8b:70:1b:d2:44:ff:2c:94:
1c:98:8e:d7:2a:a2:97:a0:28:7d:b0:e2:68:01:70:
b5:0b:47:8e:74:7f:2f:b8:32:7e:22:ce:4f:2b:de:
ec:4c:31:c6:aa:bc:f2:93:39:5c:16:de:ac:08:b5:
29:ca:52:49:38:aa:b7:8e:48:2a:36:8f:e2:59:2c:
52:ab:c0:57:3c:2c:63:68:7c:b3:cb:b4:d6:f4:72:
a6:da:93:2c:d9:49:f6:03:96:48:9e:d2:a9:e9:1e:
13:ec:1d:6a:34:5a:ad:f2:dc:5f:78:a2:9d:7d:58:
08:09:3a:d8:49:d1:1a:19:13:f9:0e:8d:ac:1a:e6:
1e:9b:de:a5:ea:b8:52:17:ba:99:d9:9b:77:cd:30:
1e:7e:44:56:0e:44:cf:e0:7f:d6:54:92:8a:7c:fa:
03:8b:f3:ea:f0:a9:29:50:8a:0f:14:7a:ea:5a:8e:
7e:32:e4:85:d5:a0:15:7a:03:f7:5a:6d:a9:b9:d2:
ee:cf:26:4c:93:d4:a5:69:ff:58:45:95:71:d0:5e:
08:4c:4f:d0:9c:9c:9c:f6:bf:27:84:99:a4:7c:5f:
a7:a1:7b:97:aa:bf:fe:71:a8:59:f6:78:c5:2b:e4:
4f:b4:8f:44:a0:b8:dc:d6:ca:82:d4:7c:28:40:95:
0d:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:97:95:0D:DE:9B:65:FA:BA:4C:2E:2B:4B:65:2A:4C:E8:29:AA:73
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/6f6d8a7f-361f-4942-9589-117cd20ba0fd.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
69:d4:eb:14:e0:69:02:1e:3a:4a:1d:b6:4a:d2:78:2b:59:b4:
1c:e8:19:f6:4b:68:78:92:41:69:c0:80:fe:d6:b4:1c:78:75:
28:63:11:69:a5:07:ab:bb:18:16:f7:80:a6:95:87:53:ea:8c:
5f:cc:90:dc:83:ff:60:23:c4:29:1c:bf:ae:a6:17:cb:5a:72:
93:c4:9b:27:a0:8f:d7:10:f0:53:59:65:4f:76:4d:94:83:4f:
09:2c:ec:ef:28:51:a8:c7:e2:01:80:e6:73:ae:0b:57:1d:c9:
69:f3:15:74:0e:7a:5c:7f:8b:42:08:b6:96:a2:2e:9f:6f:00:
a8:61:3e:3a:60:1a:04:73:51:68:ae:cb:df:55:02:33:df:f1:
30:5d:3c:b0:ae:bc:72:8c:0d:1d:df:78:ab:ce:c2:a5:3a:c3:
b1:80:50:c3:d9:7a:20:02:78:38:e0:37:dd:9f:b5:4c:c1:ad:
05:83:0f:4a:cd:e2:10:a0:82:b5:5c:1b:a1:2b:09:5b:80:91:
56:28:03:f6:bc:84:69:c8:03:7c:ea:46:22:ff:14:40:e4:26:
d8:50:e8:f6:3d:e8:3f:92:7a:ca:b7:a5:43:56:7b:31:21:08:
50:af:29:a8:a7:c6:03:cc:7d:11:f7:22:4e:e9:70:96:f8:64:
e5:b4:53:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:46 2023 by rpki-client on console-ams.rpki-client.org