Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/a35c4a31-c0dd-4133-95fb-0f5549d4998e.roa
File: a35c4a31-c0dd-4133-95fb-0f5549d4998e.roa (raw, json)
Hash identifier: g8ewld6P67K4mY9ZetaM4Hzp4tzQLqq4vRi88Yk+rGk=
Subject key identifier: AF:F2:DA:E3:7B:0A:C1:D4:7F:9F:9C:B4:08:D2:FF:5D:99:81:9A:4C
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 160084AD6C4D1B4E4B2E6E8AD4A6AE19F0C01941
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/a35c4a31-c0dd-4133-95fb-0f5549d4998e.roa
Signing time: Mon 31 Oct 2022 00:00:00 +0000
ROA not before: Mon 31 Oct 2022 00:00:00 +0000
ROA not after: Thu 03 Nov 2022 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
16:00:84:ad:6c:4d:1b:4e:4b:2e:6e:8a:d4:a6:ae:19:f0:c0:19:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Oct 31 00:00:00 2022 GMT
Not After : Nov 3 23:59:59 2022 GMT
Subject: serialNumber=704db555f90fb05e8c2d7d811c93b9716e0022cbdfeb54570b0c538dd0d7fb39, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:b1:d6:7c:5a:c6:34:10:fa:67:0f:82:43:4f:
a9:3a:18:0d:ca:fc:89:3d:16:fb:92:64:70:61:b8:
7e:3f:29:4b:e3:41:bb:fd:68:be:5c:df:f5:1a:30:
88:0a:37:cc:dd:6c:b3:ef:e6:25:77:a3:6e:ab:ec:
fb:9b:ee:35:7a:2e:28:38:73:14:b3:2f:bd:4f:f9:
7b:56:49:94:a5:11:df:89:fb:e6:22:4d:5f:c9:ae:
64:9b:60:23:e8:63:cc:53:76:53:48:ce:c4:1d:6a:
3f:84:16:1a:7b:a3:c0:f3:aa:51:28:04:36:ec:57:
12:dd:83:79:5a:ba:2f:a1:b6:1f:be:b5:9d:97:ea:
ca:00:9d:3a:58:55:4f:3e:fb:ab:a3:8d:ae:8b:5b:
b7:a4:be:fe:d0:c3:8a:c7:63:fa:ac:06:61:13:ac:
52:bb:29:a8:c9:a4:10:b3:35:1d:31:12:64:7c:de:
69:0f:2f:50:75:b6:e3:88:94:51:b5:2c:4e:9f:fd:
ed:78:e2:44:08:12:89:94:17:ae:13:26:0b:31:51:
3b:1a:c3:e9:de:8a:0b:0a:12:08:ef:b9:bd:33:80:
65:96:bc:bf:6f:9b:86:7d:4e:14:16:1c:e0:db:4c:
cc:8a:fc:24:88:54:30:34:a5:e4:28:56:2f:45:5b:
57:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:F2:DA:E3:7B:0A:C1:D4:7F:9F:9C:B4:08:D2:FF:5D:99:81:9A:4C
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/a35c4a31-c0dd-4133-95fb-0f5549d4998e.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
b2:87:72:7b:68:fa:fc:8b:ba:87:a3:f2:e3:b2:b0:3a:b9:12:
ad:74:71:a7:62:cb:27:f6:7a:4e:17:86:ee:a6:19:d4:53:a4:
0d:8e:49:9c:f3:1b:1b:0f:d9:00:52:35:f2:00:70:1a:84:4a:
f7:f4:7b:23:08:fb:0e:15:1d:e1:8b:85:b4:d6:7b:e0:47:44:
ba:76:b6:b3:10:ff:dc:21:3c:37:8f:91:12:0b:53:aa:4f:0a:
7e:72:ef:a4:04:ef:9a:cf:fa:c2:d0:0d:6c:ca:e1:95:99:61:
d5:42:de:df:d3:f4:d8:5c:d7:a5:9f:b4:08:da:a2:5d:18:38:
8b:78:13:85:4a:71:fb:88:9b:0c:34:3c:b7:99:c4:cd:21:d4:
fa:c0:03:f0:39:80:0e:5d:ec:15:7d:a9:e8:c7:b6:0a:ca:df:
e0:f0:ac:da:51:d4:90:31:a3:8d:2d:90:e2:a4:0c:e0:85:80:
6a:93:ef:73:45:cc:df:63:b7:47:04:54:2e:41:ae:a1:77:46:
ad:ce:49:2e:21:da:ab:4c:ef:cf:06:f4:70:ce:15:64:a4:dd:
3c:b0:49:f4:de:e0:e4:41:4b:71:38:e4:3f:5d:77:98:bb:fb:
3e:a7:2c:8a:1e:e1:b2:37:f5:57:7e:b3:53:2e:bc:f9:58:75:
04:81:34:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:49 2023 by rpki-client on console-ams.rpki-client.org