Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/9f1e0175-6fd8-4d72-9bc1-2ac5cc83e32a.roa
File: 9f1e0175-6fd8-4d72-9bc1-2ac5cc83e32a.roa (raw, json)
Hash identifier: jhBPcJwIHmKwRWKdncB5qFXn+7CJQPn58NqW0BG2Hp0=
Subject key identifier: F9:B4:18:1B:58:B0:05:01:27:AD:5E:1E:5A:8A:20:3A:AD:42:89:99
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 423CDE374DD0C353743836957FEA05A1A648136F
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/9f1e0175-6fd8-4d72-9bc1-2ac5cc83e32a.roa
Signing time: Sun 21 May 2023 00:00:00 +0000
ROA not before: Sun 21 May 2023 00:00:00 +0000
ROA not after: Wed 24 May 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
42:3c:de:37:4d:d0:c3:53:74:38:36:95:7f:ea:05:a1:a6:48:13:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: May 21 00:00:00 2023 GMT
Not After : May 24 23:59:59 2023 GMT
Subject: serialNumber=163200c37343d3e7c3d54109bbe6f9a27a90a49f692ce67242dac0c333b295e1, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:6a:de:65:3e:f0:53:91:18:5d:42:88:bc:e9:
5d:50:08:54:67:ed:af:ba:1a:f0:36:3c:31:6b:4e:
20:fa:f2:7a:1c:e8:7e:03:23:ee:57:76:72:48:db:
87:f6:e8:e8:7d:c4:96:4b:77:b3:8d:df:6b:cd:c8:
65:10:78:00:ab:bf:7e:6e:0f:74:c8:02:cb:a8:1a:
de:29:e1:e4:4c:46:99:cf:dd:04:10:bf:eb:9a:4f:
96:cc:0a:95:63:14:84:ae:13:0b:50:d4:03:76:49:
22:be:ff:6a:79:78:04:0b:fc:7e:8d:0f:fc:14:5f:
e1:49:9a:02:06:92:3f:3e:20:f9:97:39:a6:75:84:
4b:36:eb:6b:3a:74:02:f0:7e:54:98:bc:6a:80:a1:
ab:0c:b7:c1:04:d5:1b:0b:73:dd:8b:e4:7a:7a:ca:
c3:7f:56:b7:87:89:b4:a3:5a:34:7b:cd:73:d0:83:
68:fd:8d:8d:58:28:b1:3a:25:82:b6:fd:77:be:d3:
43:1d:1a:81:02:a2:df:aa:b4:9d:fe:78:69:6b:98:
6e:e7:b0:98:af:36:7c:17:46:38:5b:a6:bf:ac:76:
9f:89:07:08:8d:dd:25:94:79:b6:22:58:e5:e3:3b:
4d:61:4b:c2:ff:4b:80:20:cd:ed:fd:61:9e:5d:7c:
15:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:B4:18:1B:58:B0:05:01:27:AD:5E:1E:5A:8A:20:3A:AD:42:89:99
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/9f1e0175-6fd8-4d72-9bc1-2ac5cc83e32a.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
9d:3f:08:a4:9a:c1:54:dc:7e:f8:24:0a:56:7a:1d:98:43:a7:
5d:2a:7a:f5:69:fe:b1:5d:d2:7e:e0:81:6c:04:8d:f4:f3:63:
01:f6:59:f0:4d:48:84:3f:d2:8d:fc:09:7b:b6:77:14:6e:3d:
01:92:f2:d1:15:9c:63:5c:a7:af:5b:10:d9:e4:f8:a3:e4:99:
85:b5:cb:29:7c:b6:72:2b:dc:4c:83:55:1c:4c:8b:54:66:87:
cc:24:97:8a:a6:47:03:22:7c:a4:a7:b1:da:65:0a:ed:c1:73:
9c:c4:6a:99:6b:d5:63:8f:59:0d:1d:03:ad:70:d3:bf:ef:92:
be:3e:a6:fe:7f:2c:d6:1b:8b:d2:c1:4e:9e:b1:38:ec:b7:f3:
df:bf:c2:31:dd:3c:e6:65:f3:34:c8:07:df:65:b8:da:04:48:
3f:d3:1f:61:0e:58:8e:43:af:64:94:25:93:b7:ea:f9:0d:0c:
18:d7:f9:cd:05:d8:35:25:06:99:45:b0:22:c4:31:00:8a:0b:
54:69:71:82:39:9e:55:30:f4:12:6d:3c:d8:60:8f:78:4d:93:
27:cc:34:e7:27:66:4b:f7:fb:7c:0e:f2:9b:f6:f8:9a:51:fd:
cb:38:3c:21:69:96:cf:94:21:05:2d:bd:5f:5b:0d:9a:ba:12:
5a:f0:1b:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:48 2023 by rpki-client on console-ams.rpki-client.org