Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/78302c27-34ba-43e5-abc8-9d7147d57ebd.roa
File: 78302c27-34ba-43e5-abc8-9d7147d57ebd.roa (raw, json)
Hash identifier: eA0okbQOUL8UEh0fGHdId3CcLv0AfhqYFyA5DKF76HQ=
Subject key identifier: 53:8E:9B:E6:4C:7C:24:D5:1F:09:FA:5E:E1:17:D3:41:59:85:9E:0A
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 3E022F8B3754C0E9164A5E1C2A54FAA8D18F6F79
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/78302c27-34ba-43e5-abc8-9d7147d57ebd.roa
Signing time: Sat 03 Sep 2022 00:00:00 +0000
ROA not before: Sat 03 Sep 2022 00:00:00 +0000
ROA not after: Tue 06 Sep 2022 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3e:02:2f:8b:37:54:c0:e9:16:4a:5e:1c:2a:54:fa:a8:d1:8f:6f:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Sep 3 00:00:00 2022 GMT
Not After : Sep 6 23:59:59 2022 GMT
Subject: serialNumber=b9411a71c9f9f460b6583133e878ae899f49f0d14502fa40335a84156dac82b1, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:8c:9e:d5:d0:0f:ec:8e:35:24:a4:92:0f:7f:
59:45:ef:a7:3e:32:3b:e1:02:68:3c:80:95:eb:f8:
a9:59:f9:8b:07:01:a3:b9:c6:dd:7a:5d:58:0c:46:
62:b5:6e:a3:e1:bc:a2:d3:56:5b:8e:4c:00:66:53:
56:1e:68:0c:25:4c:78:0e:17:e2:74:8d:69:d5:4a:
d6:1d:18:b5:87:0d:20:37:8d:e2:9d:19:58:30:92:
4c:2c:c1:6b:d9:43:ce:46:1c:f7:37:20:de:ca:9b:
28:05:f5:f6:9a:7d:d6:1b:1e:f5:0a:c8:49:04:6f:
57:8e:f0:e8:78:67:f1:b8:a1:7d:4c:27:63:52:64:
cf:f9:a8:a1:d6:19:6c:73:8e:3c:2d:8b:78:49:fd:
c1:ed:9d:b3:bf:80:55:a7:76:0a:09:6d:d5:49:97:
6d:a3:d2:5b:8d:05:8d:ea:15:5f:c0:15:85:ed:ed:
03:ea:1f:3e:b1:4f:43:43:9e:01:78:de:15:4e:8c:
02:bd:5a:7f:1e:98:b1:35:01:ad:8f:b0:ce:7e:ad:
5d:69:d0:3f:6f:62:b4:b2:14:18:ee:ab:4f:29:85:
3e:a7:73:91:ff:cd:74:e3:29:ef:b9:39:df:b5:59:
10:66:9f:b6:a8:e2:ae:7c:70:97:be:01:a3:33:00:
ec:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:8E:9B:E6:4C:7C:24:D5:1F:09:FA:5E:E1:17:D3:41:59:85:9E:0A
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/78302c27-34ba-43e5-abc8-9d7147d57ebd.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
40:65:fa:78:f1:fa:78:3d:9b:13:c0:ef:0d:0f:31:74:9c:d4:
15:bb:32:27:61:bd:4a:e8:cf:57:b8:8b:ab:1b:c9:89:2b:a5:
5d:87:06:7e:dc:b2:b1:b8:f3:95:3c:0d:89:f2:d0:f7:b5:42:
02:5d:fa:87:63:8b:fe:18:f0:a7:93:46:50:85:36:09:55:4d:
06:de:2a:66:91:50:58:0a:ab:3d:c3:02:8d:b3:fd:6e:c2:bb:
56:2e:74:72:ac:a9:9b:64:12:32:f1:4a:8e:57:15:03:8f:a6:
88:c0:3d:0d:59:5f:0d:0d:0f:77:44:e1:28:7e:08:c1:6a:d8:
5f:fa:7d:b0:bd:ff:d4:53:6f:1f:98:26:ef:0c:c9:23:81:fd:
6c:55:bb:9c:02:a7:28:0f:0e:4a:66:97:15:67:d8:22:cb:14:
91:28:a6:f0:66:40:9d:87:01:85:cf:57:a7:45:16:91:7a:ae:
f6:ee:01:e0:36:56:9c:6d:de:fb:55:25:cd:1e:85:f2:88:c6:
d2:db:44:e2:6b:78:1d:dc:38:03:c2:3f:46:7c:17:61:d4:44:
85:3c:83:f7:f1:ba:e5:f5:a7:92:3e:b3:0c:b4:6b:0d:c4:6f:
03:61:8e:8a:f8:03:fa:8c:91:18:2c:39:b2:29:f1:eb:b3:d1:
1c:71:20:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:47 2023 by rpki-client on console-ams.rpki-client.org