Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/a9b488be-453e-42e2-8b9e-aad289ef984a.roa
File: a9b488be-453e-42e2-8b9e-aad289ef984a.roa (raw, json)
Hash identifier: zpDQXA/rtLUIXrz8grmPN9FjCrLwuitBTmuiuxg53y4=
Subject key identifier: DB:26:C8:58:DE:7E:CF:E1:16:A0:86:60:2E:72:F7:16:F8:9F:92:37
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 6DE9F3CE13BAFBEAF14D91BAF42C3CB70BAA143A
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/a9b488be-453e-42e2-8b9e-aad289ef984a.roa
Signing time: Mon 05 Dec 2022 00:00:00 +0000
ROA not before: Mon 05 Dec 2022 00:00:00 +0000
ROA not after: Thu 08 Dec 2022 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6d:e9:f3:ce:13:ba:fb:ea:f1:4d:91:ba:f4:2c:3c:b7:0b:aa:14:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Dec 5 00:00:00 2022 GMT
Not After : Dec 8 23:59:59 2022 GMT
Subject: serialNumber=e7438a378c4404f1805647eb3c4ad28354b6f3ae895ab269e6666b462dc8183b, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:3a:a3:b5:37:c4:20:b5:8f:a3:76:9c:0f:c3:
7c:fd:a7:b7:a9:81:e7:5f:37:45:06:74:0c:ee:20:
47:f6:7b:86:65:a2:85:ff:8e:fe:96:8a:9b:78:b9:
34:79:7a:ec:cd:17:95:63:d4:23:62:a7:6d:c5:a4:
77:be:6a:88:8a:eb:0f:a3:21:dd:92:c9:d0:56:f5:
ee:90:71:b1:d3:9a:67:44:99:1c:d3:63:e2:5c:e2:
c5:53:ae:b6:e7:2c:aa:ba:f4:b1:f2:23:54:39:37:
3d:9a:d7:c1:9d:9c:9e:30:03:25:52:ab:b3:68:51:
b8:69:97:14:89:ce:7a:4a:9c:a7:95:b4:74:67:b3:
ae:e9:5c:52:85:63:fc:a8:cd:5d:c9:69:8e:e4:50:
30:d5:fd:34:ab:7d:d6:dd:8b:76:88:c4:34:2d:bb:
81:db:26:63:9c:35:41:80:26:4c:52:d4:b1:82:9b:
04:8f:0a:d6:0a:1e:f6:bb:95:9b:94:24:b7:37:0b:
0a:5c:94:ac:48:60:66:1b:0f:a8:0e:62:fb:69:9f:
0c:90:52:74:dd:c4:b8:79:b3:f9:6d:46:eb:c6:6e:
40:1b:54:6e:07:e4:17:44:67:d6:d8:ab:d3:f7:cd:
4c:ad:9e:eb:1c:f3:e7:b8:f9:13:d1:c8:de:71:0d:
d4:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:26:C8:58:DE:7E:CF:E1:16:A0:86:60:2E:72:F7:16:F8:9F:92:37
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/a9b488be-453e-42e2-8b9e-aad289ef984a.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
45:69:86:fc:7b:9d:6a:7c:92:61:94:d2:db:33:58:c2:90:c1:
59:9b:82:51:d4:bb:8f:f7:6e:83:3f:ae:ec:d4:4e:14:91:84:
37:5b:34:fa:05:95:65:f0:91:0b:aa:ed:2f:2f:d5:ca:91:c5:
64:f8:ef:95:ab:6a:43:c9:b2:07:eb:01:6b:d2:98:35:7e:55:
42:75:74:e2:7a:2f:53:7d:e9:a1:94:68:15:4f:44:54:cc:05:
1d:4c:01:69:30:04:cc:e6:d4:db:0c:f5:52:c1:74:87:a0:ef:
a9:50:97:6d:08:87:5d:e1:39:db:84:60:68:a2:21:63:c9:21:
e5:c3:cd:44:f4:fe:c6:8f:e4:8e:eb:7d:1c:d5:75:20:c2:aa:
22:c7:6e:1d:42:9a:95:5b:b2:8a:c1:7a:40:9d:f4:68:05:90:
22:65:74:6d:61:9d:4c:65:8f:a9:5e:fd:a6:bd:84:94:a3:b5:
72:e2:93:fc:94:0e:43:6e:35:34:fa:32:f0:6b:03:38:9d:b3:
42:0a:2e:f6:6d:2c:1e:98:4b:f1:0a:7a:24:3d:35:47:c1:5e:
8d:8b:3b:17:6e:a8:58:06:62:61:3c:8a:cf:87:cb:d2:53:4c:
a1:30:63:72:b2:9e:bc:8d:ab:14:58:47:05:cc:7b:e0:69:7e:
a0:24:39:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:49 2023 by rpki-client on console-ams.rpki-client.org