Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/a16628c9-ffde-4b4b-8f05-f1a04658be43.roa
File: a16628c9-ffde-4b4b-8f05-f1a04658be43.roa (raw, json)
Hash identifier: DDE2cx/GrMBENkCSHlAIf3C1ophpb6kAMLvZ+7hxcoE=
Subject key identifier: AD:06:1E:F4:5D:B1:FD:D3:78:E6:DC:09:E4:49:27:53:B1:66:89:2D
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 4E2872CA3DD72FBBCC69624C9E474E774D7D9F5F
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/a16628c9-ffde-4b4b-8f05-f1a04658be43.roa
Signing time: Mon 08 Aug 2022 00:00:00 +0000
ROA not before: Mon 08 Aug 2022 00:00:00 +0000
ROA not after: Thu 11 Aug 2022 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4e:28:72:ca:3d:d7:2f:bb:cc:69:62:4c:9e:47:4e:77:4d:7d:9f:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Aug 8 00:00:00 2022 GMT
Not After : Aug 11 23:59:59 2022 GMT
Subject: serialNumber=fbd9ac18aee3ecf021215368c3c17e966a1b89ab4079ea3efa4b7cdcf7af84c9, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:8b:17:f9:44:c6:67:e3:43:c5:86:13:68:32:
fb:e6:7d:2a:65:96:04:26:a6:63:6e:e8:c4:4e:9d:
b9:ee:4c:1d:d4:bb:de:21:12:98:e8:15:de:fa:51:
3f:e6:fe:fe:83:cd:e2:e5:73:b4:d6:c1:8f:a6:06:
85:90:92:0c:6d:43:b9:57:cc:89:ee:c0:23:ab:6b:
56:a9:96:c3:f2:00:e1:17:20:84:ee:12:14:30:af:
fb:60:c1:dc:e9:f1:6d:81:e8:65:63:34:e6:b9:da:
60:07:64:ef:f1:32:6a:df:5c:50:b2:86:38:f2:34:
4b:10:dd:c8:3d:b0:9e:ca:14:f4:82:89:3d:5a:72:
ef:7f:3f:0d:58:87:bf:be:a8:d5:78:fe:c0:90:68:
b0:60:70:bb:cf:24:0d:a9:81:40:96:51:d4:3c:59:
59:49:d8:a6:57:f3:5d:f7:21:4c:0e:59:df:2a:23:
c1:25:33:3c:fa:85:a5:80:f2:b7:88:c5:0e:ae:7d:
2f:18:96:40:22:1d:e8:e7:41:45:2d:d5:1b:cb:28:
fd:05:c2:e8:6b:36:e5:4d:67:72:a9:ab:27:1d:b0:
69:bc:57:88:2e:0e:ef:79:85:7f:c1:e9:7a:95:d9:
de:30:92:c9:f8:61:a6:8b:c5:78:1b:7f:d2:76:62:
7f:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:06:1E:F4:5D:B1:FD:D3:78:E6:DC:09:E4:49:27:53:B1:66:89:2D
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/a16628c9-ffde-4b4b-8f05-f1a04658be43.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
b2:7c:22:83:ff:38:9f:63:94:aa:cc:ad:34:97:1b:80:13:ae:
45:3e:29:f9:60:dd:6a:be:31:4d:7a:27:af:d0:d9:60:4f:f6:
73:f7:14:ed:04:3b:54:e1:3b:74:df:e9:36:e6:96:20:3f:b5:
8a:a6:0f:02:a8:a1:36:f5:34:cf:8e:b8:5a:41:36:df:06:f7:
54:98:f3:8f:70:18:d6:8b:9d:ab:1a:c2:40:58:0e:83:54:96:
b1:14:59:c0:26:d9:ee:54:ed:7d:c8:09:87:e7:4c:2a:2f:e4:
8b:c7:62:bb:b6:32:3a:64:be:41:8a:f2:9f:a7:80:59:6b:b3:
08:03:de:77:b4:db:fc:9d:66:5e:e4:1c:ca:bf:53:1a:5c:4d:
50:46:5a:fc:11:fc:01:12:fa:b2:9d:eb:22:3e:6e:3d:16:4b:
d3:ff:db:6a:3a:80:e7:d6:ad:dd:1b:6b:67:0f:42:4a:53:f9:
75:a0:fc:d0:38:6b:26:2a:1e:a0:32:a8:61:4e:5e:de:ea:90:
e6:69:1c:b1:3b:9a:b7:7b:b7:ba:d0:ed:e8:26:29:db:2d:cf:
1f:b6:78:6e:2c:69:16:20:ab:23:6b:61:9d:9d:e2:cd:5c:2e:
b4:15:e9:c4:8e:a8:ca:f3:15:46:8b:3a:1a:ff:ab:7a:27:b4:
90:9a:4e:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:49 2023 by rpki-client on console-ams.rpki-client.org