Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/94b1345f-9979-4a4e-99aa-a7e56e0f6e7a.roa
File: 94b1345f-9979-4a4e-99aa-a7e56e0f6e7a.roa (raw, json)
Hash identifier: MH6qITFFQQRSoS07Vo+2JlCyfmkoxDHfPKAyBNgrokc=
Subject key identifier: 05:17:F8:34:DD:80:1B:94:4C:C6:25:D2:D4:B1:8B:AB:9D:47:B2:9E
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 5723F8D6F716AE83793EA97E9180D12AC0378049
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/94b1345f-9979-4a4e-99aa-a7e56e0f6e7a.roa
Signing time: Thu 30 Mar 2023 00:00:00 +0000
ROA not before: Thu 30 Mar 2023 00:00:00 +0000
ROA not after: Sun 02 Apr 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
57:23:f8:d6:f7:16:ae:83:79:3e:a9:7e:91:80:d1:2a:c0:37:80:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Mar 30 00:00:00 2023 GMT
Not After : Apr 2 23:59:59 2023 GMT
Subject: serialNumber=7672d835903001eadc208489bc8f4c35ae9da4133561e2d57023dca2a4ce070f, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:c1:3f:45:a8:dc:8b:85:02:60:22:87:30:af:
cc:70:37:d8:ce:97:f2:4c:15:12:33:a2:6f:46:9b:
3b:78:5f:93:97:3c:69:0a:fb:bb:d4:7f:83:a3:b8:
ee:a6:5f:b4:7f:1c:8e:55:42:b6:b5:63:83:1f:e9:
7a:e9:f4:8c:75:00:12:35:55:21:c6:a2:19:48:5a:
26:f3:3a:c3:1c:2f:85:f4:18:16:3d:27:c8:dc:5d:
08:58:fd:62:a7:5e:c0:83:2f:c0:02:0c:8a:d9:78:
36:37:db:22:2e:10:e4:55:f8:77:ce:2d:4b:2a:16:
fc:53:08:e1:29:3a:25:8f:af:cd:bb:8f:e7:9b:9b:
5e:a9:97:43:51:41:f6:49:54:ec:1a:e8:62:fd:39:
cb:16:31:73:52:24:2f:11:69:14:2a:f4:94:69:e2:
26:83:15:ba:cb:b4:0d:79:b0:0c:6c:c1:f1:75:f3:
8d:15:bc:52:4f:a3:ac:5d:4e:01:b1:21:1a:44:ca:
9c:37:0c:b8:3f:0b:24:96:b1:67:13:d7:05:a9:58:
a9:26:23:41:e8:4a:1b:0d:5d:23:60:e9:0e:98:ba:
b3:4c:f5:61:d1:c5:3b:55:68:91:db:d2:a8:79:56:
9a:4f:4b:fd:54:b1:65:6f:fd:f0:26:53:6a:58:c3:
a5:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:17:F8:34:DD:80:1B:94:4C:C6:25:D2:D4:B1:8B:AB:9D:47:B2:9E
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/94b1345f-9979-4a4e-99aa-a7e56e0f6e7a.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
1c:d7:35:58:ff:2b:8c:46:df:93:7d:e3:35:b2:83:81:b5:f7:
dc:22:9a:67:dd:24:33:84:15:53:70:a3:99:94:25:78:cd:87:
8f:6c:c3:99:67:89:af:b8:fb:b5:dd:42:6c:9a:27:f6:74:36:
2f:0b:9a:d6:6a:76:03:8a:27:11:7c:57:5e:0b:2c:94:0e:9f:
1c:a4:4c:6e:28:cd:fc:cb:32:11:84:ac:c4:97:ca:5f:cc:e8:
04:90:d0:ee:ee:96:34:34:46:dd:e1:e5:c1:4f:47:b2:17:14:
24:1f:00:73:1c:4c:2c:45:64:02:d4:76:4d:d0:36:cc:ba:85:
bc:0e:62:43:18:79:3d:23:e4:47:08:b9:4d:c7:16:5e:7f:1d:
25:09:df:4e:61:df:e6:f8:88:3d:bf:97:48:10:ed:d7:06:cb:
3d:32:c1:a5:86:12:cc:bc:1a:5a:e0:43:95:f2:83:cd:20:bf:
44:d2:70:23:e0:27:f0:82:34:d4:a5:2e:df:22:f0:e6:f7:4f:
5b:b0:d7:92:5b:47:fa:4b:bf:e4:5d:7f:d9:15:6b:9a:7e:fb:
b9:c4:ca:69:ce:70:e3:cb:14:4b:6d:df:75:50:34:2c:59:9e:
1c:5d:5d:b5:8c:4a:31:e3:75:e6:74:ec:11:9c:6f:be:1d:22:
19:7c:f9:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:48 2023 by rpki-client on console-ams.rpki-client.org