Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/9f217bbe-a6c1-4d16-acc1-325d9bd28284.roa
File: 9f217bbe-a6c1-4d16-acc1-325d9bd28284.roa (raw, json)
Hash identifier: oPihqb5uI9HQZAj63peVTwhrMwVfevuloyClHGMfLuE=
Subject key identifier: 47:6B:B9:31:A0:5C:4A:BE:32:BA:93:5F:EA:7F:13:98:10:7E:55:41
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 792B709E9D951FA5966F1698067C305FFA10EB7A
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/9f217bbe-a6c1-4d16-acc1-325d9bd28284.roa
Signing time: Wed 14 Dec 2022 00:00:00 +0000
ROA not before: Wed 14 Dec 2022 00:00:00 +0000
ROA not after: Sat 17 Dec 2022 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
79:2b:70:9e:9d:95:1f:a5:96:6f:16:98:06:7c:30:5f:fa:10:eb:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Dec 14 00:00:00 2022 GMT
Not After : Dec 17 23:59:59 2022 GMT
Subject: serialNumber=e0d9e6becd0ef51318ca8e99d6a046db0a78b4c1a1cb2cd2e268ae599bd6b845, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f9:d3:cb:84:20:1e:7b:e2:16:fe:ed:9d:ad:34:
15:dd:ab:f9:cc:4e:e3:23:3a:46:22:09:9a:22:b8:
e9:1a:31:f9:f6:9f:f1:6f:59:06:b3:06:66:51:78:
d5:70:2f:d4:98:ca:27:1d:79:da:e7:57:28:f2:f0:
64:f7:d2:0b:42:59:2d:f6:af:32:9a:ce:9f:40:0b:
19:36:17:41:99:b3:dd:e9:55:b2:73:03:5a:52:da:
a2:a9:39:e4:e5:7e:91:10:b8:44:5b:88:29:cd:e7:
dc:85:41:30:db:e7:0c:6c:65:0f:e3:10:5d:f5:2e:
1f:a0:56:7a:95:39:ff:7e:0a:7d:cf:d4:1a:da:eb:
47:e9:78:fb:c6:b4:0d:30:6c:d8:c6:60:c5:42:5d:
ac:20:1a:42:84:ad:ff:a1:47:70:46:36:e6:82:41:
77:ec:b7:95:f7:b7:eb:84:7c:83:8c:ff:1f:2e:3d:
5c:96:48:97:08:f0:a4:93:1d:05:4a:8a:26:00:72:
80:94:fe:0e:67:b4:b9:4d:1f:6b:39:71:dd:fd:b9:
d3:5b:82:bb:de:01:68:03:91:12:83:d0:c0:39:2e:
f0:57:32:84:b9:e7:98:25:00:e3:45:65:fe:a0:8a:
6c:01:81:1e:02:72:31:d9:81:cf:6b:a9:ee:3b:19:
43:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:6B:B9:31:A0:5C:4A:BE:32:BA:93:5F:EA:7F:13:98:10:7E:55:41
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/9f217bbe-a6c1-4d16-acc1-325d9bd28284.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
4b:2c:df:c0:ca:11:64:90:7e:f3:a4:5c:7d:70:d8:af:f1:af:
c8:b8:bd:3c:b4:53:a3:7e:ad:6b:6c:13:bc:64:2d:a5:6b:d5:
5e:6f:a6:33:2e:c2:cc:50:59:be:10:8e:51:33:26:44:ce:d7:
dc:b3:50:27:86:17:e1:d5:ea:63:b5:52:8c:3d:69:a5:23:93:
6f:54:46:7b:ff:da:c3:25:31:f6:2f:39:1f:46:e0:15:66:a8:
1f:f3:7f:8c:cf:b9:1a:5a:34:22:d6:b3:70:14:1a:62:4f:eb:
4e:b8:8a:1f:35:8a:6d:42:50:e8:5f:c0:d1:39:8c:b3:f8:84:
d3:dc:65:7d:95:71:61:17:51:43:62:07:b3:00:ce:71:cc:ff:
02:b2:12:78:e1:64:01:c7:c8:f3:fa:97:8b:c2:ee:43:0a:43:
1f:99:74:33:44:9d:03:e2:c8:30:23:31:1d:57:38:d5:33:f1:
01:8c:e5:61:df:46:d2:22:cc:72:66:2d:1f:dd:91:91:ed:6c:
1d:17:e6:5a:85:36:cd:a9:ee:14:19:a9:4b:13:0f:cd:fc:c9:
d1:06:63:2e:a8:da:cb:f3:3f:69:80:35:b4:35:37:68:01:9f:
fb:61:cf:e1:d0:d5:b6:24:ff:79:4f:4c:09:14:1f:25:28:53:
67:2a:f0:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:48 2023 by rpki-client on console-ams.rpki-client.org