Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/7a01b164-1679-4eff-a830-fd488ac04281.roa
File: 7a01b164-1679-4eff-a830-fd488ac04281.roa (raw, json)
Hash identifier: uu8BvuGs+118DhsU2UcuyEUTKBqldCt1feq+lNYUoo0=
Subject key identifier: 47:1D:A6:E7:A9:55:0E:BC:89:00:48:1A:8C:EA:D0:F0:A5:FD:C6:C9
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 02AB9E8987B99C412EB61B15959F81BF0F194DD3
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/7a01b164-1679-4eff-a830-fd488ac04281.roa
Signing time: Thu 09 Mar 2023 00:00:00 +0000
ROA not before: Thu 09 Mar 2023 00:00:00 +0000
ROA not after: Sun 12 Mar 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
02:ab:9e:89:87:b9:9c:41:2e:b6:1b:15:95:9f:81:bf:0f:19:4d:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Mar 9 00:00:00 2023 GMT
Not After : Mar 12 23:59:59 2023 GMT
Subject: serialNumber=54dab76ca1aad4a7a0cc2af366d5e2754ac142a7c3011263a6135753f3f63809, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:53:f0:74:bf:59:30:64:06:16:37:00:14:33:
23:59:1c:e3:4d:dc:e0:95:97:41:c2:93:d3:9c:b2:
54:32:c1:58:d6:bb:94:a8:98:96:58:af:81:7f:ad:
86:a5:cf:2e:f1:b7:79:57:f0:77:c4:1e:e9:9a:88:
02:e0:6f:e7:c8:88:91:ae:2e:3a:61:ff:7a:de:35:
b3:be:b5:40:65:2f:0b:67:c6:e7:83:58:95:44:c0:
89:1e:bf:ce:bf:69:f4:fe:84:53:5b:07:ce:29:97:
63:c2:cd:08:d9:5c:ed:c5:fb:97:69:4e:0d:15:0d:
22:20:62:14:d2:c7:92:83:07:d1:41:11:31:3d:4f:
42:d6:17:fb:65:84:cb:35:63:cf:15:13:9f:0a:1c:
16:ac:8b:31:fa:aa:08:a0:2a:e9:db:c1:32:5c:d5:
d8:69:5d:b3:ec:11:4f:dd:64:78:86:00:6d:bc:f2:
6d:54:5b:a6:0e:77:06:cb:ee:02:e5:ce:5f:2f:5c:
e9:24:62:4a:3f:ff:48:70:73:d9:ea:7c:b6:ae:1d:
db:56:7e:a2:24:72:6f:49:59:33:53:e8:2a:53:7e:
e6:d3:be:d8:0f:6c:76:41:cd:ca:4e:30:8d:0d:84:
4e:bc:9c:4f:35:d1:a4:3e:1b:59:4c:31:bc:4c:25:
da:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:1D:A6:E7:A9:55:0E:BC:89:00:48:1A:8C:EA:D0:F0:A5:FD:C6:C9
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/7a01b164-1679-4eff-a830-fd488ac04281.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
48:f4:82:8c:ee:d4:02:3e:fd:21:b3:b5:a1:3d:ca:1d:89:df:
93:ce:ba:8c:d6:b6:ee:8b:1b:a6:17:93:39:e4:9a:7c:e8:9b:
21:83:77:f8:ec:48:ec:8e:d6:5c:1c:64:16:f0:82:1a:02:e9:
47:16:fa:61:8e:88:f7:6b:46:b3:ae:5e:0e:df:be:f5:73:81:
f9:33:a0:4d:10:18:54:08:5f:44:13:fc:ab:9e:28:53:82:14:
c7:64:43:c6:7f:b5:de:ba:fc:f9:0d:53:cf:fe:76:9d:04:d1:
10:8c:a1:d9:b8:ea:76:7b:d5:0e:d5:e6:a4:3a:e3:ff:c7:86:
54:05:9d:4e:d3:5d:df:48:61:2d:a1:41:33:e5:3d:4d:62:8f:
50:56:f7:ac:5b:f1:2c:4b:f3:5a:18:5e:2d:2f:57:8d:e1:df:
3b:92:4b:e5:d1:d2:e4:e2:46:8d:19:75:de:02:af:4b:e0:ba:
5d:82:22:9e:3a:1c:6c:26:5f:2a:26:63:9d:c0:6a:76:c1:87:
24:09:25:ee:c7:62:02:00:1f:e1:9f:fb:31:66:ae:e1:5f:85:
67:4c:e0:54:af:21:a7:f6:09:26:7b:94:cd:96:ad:64:09:98:
b4:3d:23:86:b9:9a:3b:64:1a:78:4b:16:b7:75:32:de:2c:3f:
87:d7:91:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:47 2023 by rpki-client on console-ams.rpki-client.org