Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/86b4385e-2031-4a72-a023-a6d5d87571c5.roa
File: 86b4385e-2031-4a72-a023-a6d5d87571c5.roa (raw, json)
Hash identifier: EYUdlyxXj2dYbQ5SGVAzIHaRxfOnLV33ByP5UNgaFzg=
Subject key identifier: A0:96:07:C1:C4:E4:8B:B4:22:91:9E:4F:F9:A5:52:CA:DB:48:22:8C
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 6DF8D0D2F97A13D6B624C5420F7ADF5F992FFF50
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/86b4385e-2031-4a72-a023-a6d5d87571c5.roa
Signing time: Mon 13 Mar 2023 00:00:00 +0000
ROA not before: Mon 13 Mar 2023 00:00:00 +0000
ROA not after: Thu 16 Mar 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6d:f8:d0:d2:f9:7a:13:d6:b6:24:c5:42:0f:7a:df:5f:99:2f:ff:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Mar 13 00:00:00 2023 GMT
Not After : Mar 16 23:59:59 2023 GMT
Subject: serialNumber=00a7b2171bc36e2e47cb563abb82acfe3a297202d384c7a8fc793aaafdda1833, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:41:19:0c:90:ff:b3:a2:1d:4e:32:92:77:5f:
39:7c:cb:a6:d2:7d:f8:94:78:8c:66:e0:91:5e:98:
8c:de:84:5c:77:6d:3b:9f:b9:02:a4:8f:c1:e9:30:
61:0d:61:0a:65:53:ae:df:48:b1:2c:bd:5d:56:02:
2d:da:e4:5e:2b:2f:e9:37:e9:bc:46:66:d3:2d:92:
3e:5b:a3:12:6a:7e:f0:20:37:06:8d:79:c6:66:30:
7e:2d:b2:e3:63:b6:fa:24:07:d8:8d:ed:ed:6b:5c:
69:5b:0d:6c:e3:a5:99:e9:69:40:30:d0:3a:74:31:
8a:81:31:ce:dc:af:6d:df:4f:5f:f2:60:74:df:74:
2f:9d:73:45:b1:aa:50:67:e1:d5:28:6d:5f:5f:e1:
90:0c:4c:b0:c2:6c:60:36:de:19:a9:99:cd:bc:76:
fc:1e:6b:dc:38:bf:58:32:66:1d:da:3a:f8:78:eb:
32:a7:23:22:19:bc:79:bb:71:ea:2f:71:db:7d:f5:
cf:8b:b1:09:85:a6:56:bb:0b:bf:20:48:8f:49:5e:
84:28:29:94:52:d2:7e:0f:c4:6d:29:50:6d:7d:cf:
37:85:24:c1:de:35:0f:e9:0a:7f:0c:e3:91:57:3e:
4f:5f:56:9a:12:e8:ab:28:7c:69:79:42:83:ed:6e:
cd:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:96:07:C1:C4:E4:8B:B4:22:91:9E:4F:F9:A5:52:CA:DB:48:22:8C
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/86b4385e-2031-4a72-a023-a6d5d87571c5.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
0f:fc:05:27:e7:87:eb:7e:de:da:b1:5f:ce:e8:0a:ca:df:65:
69:7e:ba:06:7f:0a:41:84:38:76:40:3e:dd:f7:4d:a0:5c:78:
4a:d7:eb:8a:2a:13:84:3e:38:45:58:43:1c:1b:61:ff:f1:0e:
2b:da:80:43:79:5f:9d:27:82:56:da:01:70:da:31:7a:1b:3f:
3f:ae:c5:7e:14:5c:d9:32:a3:cf:d0:3b:e1:f9:11:36:f5:0b:
00:57:32:0a:23:0e:aa:70:b1:62:4c:bf:9a:e8:4c:63:90:7f:
04:42:72:d9:4b:72:fb:60:7e:82:66:73:b2:8d:e0:21:8c:a3:
08:5b:99:99:79:00:f3:c8:b3:33:a1:61:82:3e:86:bf:61:8a:
1c:5d:8b:32:a9:36:c6:ae:e6:e3:15:36:6f:5a:d9:6b:ff:a4:
ec:89:14:9c:10:42:aa:cf:a7:54:43:17:cc:46:53:8c:e5:3d:
31:95:20:65:ef:cf:11:5e:d4:be:ec:7f:77:42:d1:a8:4c:56:
0a:ab:b8:23:7c:92:9e:b8:11:40:e9:0d:3f:4a:5d:41:0c:44:
8a:31:84:82:fc:49:fd:dd:fc:d2:b9:79:a8:a4:e2:25:dc:40:
c3:79:aa:c5:43:fc:45:42:4e:d6:87:de:18:e6:4e:02:f2:a4:
5e:c2:28:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:47 2023 by rpki-client on console-ams.rpki-client.org