Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/908d8024-7062-46b7-86f0-01abe6acbb23.roa
File: 908d8024-7062-46b7-86f0-01abe6acbb23.roa (raw, json)
Hash identifier: x5cRg3A0GTWJqi57raanq5LXcIJ8C4rANcp2/dS5tn0=
Subject key identifier: EF:46:E9:9B:B8:A5:08:42:D5:5C:F0:18:8C:96:DE:60:1E:73:3C:54
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 1571B2AE6BA81DD807843592F6B29AABCE6BB865
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/908d8024-7062-46b7-86f0-01abe6acbb23.roa
Signing time: Sun 27 Nov 2022 00:00:00 +0000
ROA not before: Sun 27 Nov 2022 00:00:00 +0000
ROA not after: Wed 30 Nov 2022 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
15:71:b2:ae:6b:a8:1d:d8:07:84:35:92:f6:b2:9a:ab:ce:6b:b8:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Nov 27 00:00:00 2022 GMT
Not After : Nov 30 23:59:59 2022 GMT
Subject: serialNumber=3cc7189149651acad2f1fcfa35ee5f57b2a2cfd67c602b5d93814d5e21cd51ac, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:0a:5c:07:7e:d7:d0:2e:95:a6:50:02:12:24:
d0:26:2c:4b:64:58:3e:bd:2e:e1:97:79:4f:86:e9:
ea:c5:a5:66:a3:ed:15:70:e1:1a:c9:5d:1a:8b:b6:
b6:fa:50:85:25:e0:9e:8d:57:d5:c8:5f:fb:49:74:
42:56:e4:de:71:e6:bf:0b:2f:7b:4c:31:7c:5b:49:
5a:7a:60:1b:b4:a2:df:4d:4a:a6:d7:07:cb:61:6a:
14:ef:a8:29:bd:76:a4:ec:3c:3d:ff:3d:4a:01:68:
7c:41:72:64:0b:04:ce:48:80:be:e7:78:c5:59:e4:
c9:af:12:e7:46:f6:33:62:a5:06:ee:c6:2d:b2:1e:
4e:fb:71:1b:c9:48:81:d8:93:a7:09:73:71:85:5f:
d1:00:00:f1:ce:be:c7:8d:f0:63:fa:27:b7:f7:7a:
67:47:e9:c8:84:8d:ff:18:39:3f:82:b3:95:af:4f:
96:1c:b5:a4:09:2e:ab:11:5b:57:2f:dd:74:a0:53:
86:c2:62:a1:81:dc:39:24:53:b5:b7:db:63:5a:97:
5d:37:e0:c5:b5:94:76:f7:c1:40:f3:79:8b:98:84:
53:79:aa:9a:15:6c:8f:6f:9f:11:ee:aa:22:02:63:
82:fc:49:14:63:78:08:07:f5:58:5c:23:55:ea:1d:
f2:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:46:E9:9B:B8:A5:08:42:D5:5C:F0:18:8C:96:DE:60:1E:73:3C:54
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/908d8024-7062-46b7-86f0-01abe6acbb23.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
5a:b9:8d:96:bd:38:ec:bc:e3:b7:e9:e3:29:77:b9:26:dd:f1:
88:bc:17:42:c5:34:7c:ef:44:f9:13:a7:5a:34:da:8a:2c:b2:
50:1e:d8:a6:1d:0c:1f:7f:4f:04:bd:b8:f2:97:43:45:6e:61:
e4:47:16:6f:e4:b1:d3:c2:89:e1:c0:f3:0a:c2:25:cb:a2:27:
d5:07:a2:13:23:6d:eb:2b:0b:dc:1c:99:54:ec:29:90:8c:e6:
81:91:ec:7c:1f:ca:75:9f:f7:c1:16:55:da:3d:35:fb:ae:de:
a8:ca:5c:93:95:a8:b9:97:69:59:9a:ee:28:e6:4d:e8:45:6c:
61:3a:ce:df:ac:19:ba:36:92:3b:39:36:69:91:61:f2:2e:73:
83:bc:a2:a1:6b:14:81:63:b9:20:64:2f:e3:cb:a4:30:09:28:
21:d9:11:f3:23:ce:d0:f7:c4:5c:5b:a7:09:3b:61:38:bc:11:
9c:60:1e:a3:31:17:83:c3:8d:85:8a:cd:fa:17:ba:76:90:7a:
b0:8f:af:6b:c4:11:15:0b:a7:37:7d:d4:2d:f4:55:01:c4:b6:
82:df:59:4b:3b:06:38:3d:f8:22:1c:07:2a:7c:88:78:0c:ef:
ae:e7:97:8a:6f:92:77:a8:c9:c5:ec:8c:a7:de:02:a5:d3:01:
b8:dd:b0:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:48 2023 by rpki-client on console-ams.rpki-client.org