Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/90f5a4a0-43cd-4e94-8ccf-421c098cf106.roa
File: 90f5a4a0-43cd-4e94-8ccf-421c098cf106.roa (raw, json)
Hash identifier: OdrXXAjN/k4ftZndvKetG3nzUrBSx9+vThbCyWdBIVE=
Subject key identifier: 65:72:BC:47:AD:2F:8D:4C:55:6C:A4:95:35:FF:3F:AD:20:99:0E:B1
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 2F986C1FDFAD827FF832A016B78F921FF4B983A5
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/90f5a4a0-43cd-4e94-8ccf-421c098cf106.roa
Signing time: Sat 29 Apr 2023 00:00:00 +0000
ROA not before: Sat 29 Apr 2023 00:00:00 +0000
ROA not after: Tue 02 May 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2f:98:6c:1f:df:ad:82:7f:f8:32:a0:16:b7:8f:92:1f:f4:b9:83:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Apr 29 00:00:00 2023 GMT
Not After : May 2 23:59:59 2023 GMT
Subject: serialNumber=8865e1c473e5d24f67ca4a4b6a5a62ad4805f568d12506074fb7dc73a0e9e241, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:e9:e3:80:84:c2:de:08:31:ea:f0:23:39:09:
d4:a7:46:c3:7e:24:ff:7c:17:78:76:0b:26:43:c5:
4f:f7:42:6e:eb:d1:86:70:27:a5:f7:55:6a:b7:ec:
27:f8:ac:df:6a:9b:68:d0:ab:ae:41:73:64:d4:12:
1a:b8:22:3b:97:cc:9d:e7:60:ac:13:6e:3a:58:8c:
ef:66:6c:9d:77:dd:28:b3:e5:72:98:64:5f:0f:e2:
1e:47:65:83:5f:9d:dc:05:32:7e:b6:0c:4b:82:ba:
b0:76:2a:de:76:d0:b7:5b:42:64:25:b4:09:92:35:
d4:93:2d:30:c4:3e:d2:9b:ef:43:62:17:5a:a9:e9:
b2:b0:6d:29:27:4a:28:f5:21:43:af:eb:d1:ca:0b:
a6:57:5d:e3:7e:4e:54:c5:0a:15:e3:bd:71:9a:95:
90:8f:24:e9:79:e9:a4:d2:42:47:d5:4f:36:15:f8:
9d:70:50:03:85:1b:31:ba:e4:ca:27:1f:bb:48:c1:
56:1f:34:7d:20:34:82:7d:ec:8b:c4:49:45:4d:6e:
3c:5b:fe:5b:cd:86:49:47:5a:a0:10:49:40:d8:48:
cb:0c:79:14:96:3f:96:d9:5e:76:df:7f:56:c3:63:
48:45:cc:07:c2:a1:40:7b:e9:c3:4e:f3:62:71:b8:
a2:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:72:BC:47:AD:2F:8D:4C:55:6C:A4:95:35:FF:3F:AD:20:99:0E:B1
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/90f5a4a0-43cd-4e94-8ccf-421c098cf106.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
09:40:dd:21:6e:bd:49:c5:72:84:28:17:44:00:c8:98:75:1c:
34:3f:e8:db:54:cb:e1:09:95:80:93:b0:59:9c:39:39:14:78:
4c:e2:3d:75:a5:9a:7e:f1:f4:58:18:25:62:ae:b8:da:3d:4f:
97:6e:f4:df:ac:02:49:f3:de:a9:e4:31:cd:8e:89:5a:35:a1:
89:77:07:00:66:50:45:36:70:dd:56:21:d4:db:80:75:1d:f8:
dc:3c:8e:ca:13:78:fd:48:18:02:be:89:aa:d6:7a:3f:0e:19:
53:50:ff:b7:68:43:41:bf:21:2d:75:55:8f:52:70:8e:cd:75:
42:4c:4b:ef:07:3f:82:b1:9b:93:c1:07:17:a6:54:f8:01:90:
04:d8:b5:a8:46:84:fd:5a:38:15:e6:e8:0e:b6:65:eb:8e:a1:
a9:a9:d1:44:d4:26:a6:00:18:9a:29:a3:0d:8a:80:0a:22:bb:
f5:2a:29:66:f8:1d:2f:69:3a:dc:c8:cc:86:94:fa:4e:cc:04:
53:f7:cf:6f:b4:10:e7:d6:53:8d:f8:f3:ed:e7:e0:62:57:ae:
dc:91:61:1e:7f:3f:30:70:26:b2:de:7e:b6:e4:0d:79:9b:6e:
13:1b:6b:05:a1:3e:5c:e0:87:08:60:cf:cf:0e:59:73:17:e5:
0e:10:a6:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:48 2023 by rpki-client on console-ams.rpki-client.org