Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/a7b730c9-2a92-4ff0-9551-fa5f56b50c1c.roa
File: a7b730c9-2a92-4ff0-9551-fa5f56b50c1c.roa (raw, json)
Hash identifier: X9aPpbAxbtljorf7LldlrcNVo5vwX/DXLWFclbgUFA0=
Subject key identifier: 6E:67:47:49:FB:5B:A7:EB:CB:99:A2:FB:63:84:0B:C6:98:58:05:0C
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 1E67358D44D49CA881C4776078BB027BDADB9EF3
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/a7b730c9-2a92-4ff0-9551-fa5f56b50c1c.roa
Signing time: Sun 18 Dec 2022 00:00:00 +0000
ROA not before: Sun 18 Dec 2022 00:00:00 +0000
ROA not after: Wed 21 Dec 2022 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1e:67:35:8d:44:d4:9c:a8:81:c4:77:60:78:bb:02:7b:da:db:9e:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Dec 18 00:00:00 2022 GMT
Not After : Dec 21 23:59:59 2022 GMT
Subject: serialNumber=d23850808de5dfde7f202b5dc7b5899a9186a72355fbe3890c57913f3c847bf2, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:f2:9d:73:bb:f2:7d:db:7d:ac:00:0e:db:73:
a8:e1:b3:52:9a:46:d3:4f:9e:04:2f:78:7c:d8:fd:
6e:6c:a0:93:8b:09:83:f5:32:5c:a5:af:89:79:c7:
e2:0d:9c:21:2e:82:ff:23:11:34:60:a9:b1:78:bc:
5c:55:57:21:da:29:d5:94:cd:be:3e:a4:d5:3b:7d:
1f:6e:a7:88:0c:c6:ea:db:08:df:88:55:e9:58:53:
0a:28:5a:7e:32:68:3d:5c:6f:bc:a3:8c:c5:20:9f:
58:ce:92:2f:31:39:27:2b:f4:22:d2:af:f0:a3:4d:
09:4d:b7:21:4e:a2:6e:56:d9:6e:9d:ea:ac:06:3f:
9f:b2:fd:6f:3a:a0:f9:8f:6d:ab:35:fe:1d:a7:a5:
18:8a:69:b1:ad:09:83:f8:3a:fc:e2:78:fc:e8:17:
47:74:d4:23:35:6d:00:25:5e:4f:ce:c2:f3:04:6d:
78:d3:e9:1e:e4:2c:cd:c1:81:b9:80:60:30:9c:a2:
dd:3c:21:d9:a9:c0:95:a1:60:fb:52:44:82:e5:c0:
e6:fa:d0:c8:b2:be:7c:e1:72:a7:dc:18:74:8d:01:
b4:b7:05:43:16:7e:19:b3:6a:45:73:fd:0f:30:90:
91:a9:86:50:15:31:5d:20:d2:a7:99:88:4b:b6:1b:
71:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:67:47:49:FB:5B:A7:EB:CB:99:A2:FB:63:84:0B:C6:98:58:05:0C
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/a7b730c9-2a92-4ff0-9551-fa5f56b50c1c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
5d:de:b2:84:5a:1b:3a:ea:56:e0:ff:fe:d9:85:e9:a9:fb:d7:
e0:42:c0:e6:20:6c:44:ca:06:fc:80:39:8a:49:fc:70:c1:12:
7f:e7:cc:ae:71:80:a4:6d:4b:01:0a:dc:9c:30:52:aa:59:9c:
14:7e:a6:ca:41:91:29:c3:c1:8b:b1:98:8c:89:1b:e5:39:fe:
be:3c:f9:49:eb:ff:5c:d0:fe:3e:ae:0c:34:c5:11:f5:cf:43:
59:4d:e5:84:a1:7c:ed:11:56:2b:cc:b1:2f:fd:b4:99:71:22:
bc:d6:72:bf:fb:14:19:fc:e3:2f:d9:4b:a3:6e:a3:f2:c9:9d:
3c:b6:cb:6e:6a:19:09:41:88:bf:46:b6:f9:b2:7e:ea:35:f6:
09:6c:17:eb:45:6f:35:a0:2b:a8:76:09:55:89:8f:d3:f2:c2:
2d:2b:2a:39:92:31:57:1b:64:ea:fc:28:ad:7b:af:3c:ef:74:
0f:19:70:8a:6c:8e:5e:27:7a:47:c0:96:ee:bd:aa:59:7f:c5:
97:e1:68:03:f0:d1:98:c1:f6:b2:eb:28:9e:6d:c7:4b:86:83:
3e:bc:e4:96:80:9c:9e:d4:9a:07:af:7b:fa:c1:e3:02:cf:b9:
30:c9:c8:31:f7:56:b2:3c:b0:23:79:94:71:21:26:c0:6f:11:
13:4b:79:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:49 2023 by rpki-client on console-ams.rpki-client.org