Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/af55c22f-259b-4819-bb39-737dc44c10fe.roa
File: af55c22f-259b-4819-bb39-737dc44c10fe.roa (raw, json)
Hash identifier: SOwTXc7lJqRFoHCaUAN0gIJogsK1wWDboGc9KBO6C9g=
Subject key identifier: 49:B0:FB:26:3F:C5:3A:0F:01:63:5A:33:EF:7B:23:DB:2E:60:CE:66
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 3BC2FC09CDDF0B0305A6A5142E30261B3CF9720E
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/af55c22f-259b-4819-bb39-737dc44c10fe.roa
Signing time: Thu 26 Jan 2023 00:00:00 +0000
ROA not before: Thu 26 Jan 2023 00:00:00 +0000
ROA not after: Sun 29 Jan 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3b:c2:fc:09:cd:df:0b:03:05:a6:a5:14:2e:30:26:1b:3c:f9:72:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Jan 26 00:00:00 2023 GMT
Not After : Jan 29 23:59:59 2023 GMT
Subject: serialNumber=c798da4b4bf844a8c79c46db5b9cfa7a664ab34fd26b18e9ff38b4a23959dc2e, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:64:40:fd:0a:a7:04:ed:05:3d:4f:ef:40:3a:
90:c0:d3:7b:58:b8:a9:2a:34:a7:21:55:87:a2:99:
36:50:8e:5d:42:f9:33:0f:5b:2f:97:07:20:80:a9:
75:4f:0b:b5:02:71:fe:50:aa:38:d7:db:18:25:4f:
e1:aa:a5:f8:e7:1b:24:07:a5:ae:bd:15:c7:5f:37:
e2:aa:0b:69:8c:5a:c6:cc:a2:d2:97:81:7d:56:2b:
e2:72:59:8c:89:01:15:2f:ef:d3:33:85:17:d1:da:
c1:fd:74:4a:a1:56:0f:47:32:4e:04:79:ef:18:2b:
93:93:89:98:39:1c:19:d9:5f:2a:fe:96:ff:a7:e4:
e0:9b:4a:60:1e:c0:af:22:5b:91:30:cf:f6:22:49:
8e:8f:9f:70:d1:6d:2e:ad:88:36:fb:6f:1f:eb:5e:
2d:f6:83:42:20:65:4a:67:be:36:e5:b4:e8:db:5b:
70:b6:f1:2c:ca:f1:c2:0f:9f:09:63:b9:3d:48:28:
4a:e3:eb:bb:dc:b7:7d:c8:aa:49:96:71:6f:3b:d0:
cc:78:78:ef:12:91:4d:cc:ef:95:b0:26:e1:96:99:
af:20:ec:e9:ec:ac:5d:47:96:41:5b:85:de:fa:d0:
44:c7:77:09:b6:60:c1:88:31:bb:79:02:da:34:b2:
d7:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:B0:FB:26:3F:C5:3A:0F:01:63:5A:33:EF:7B:23:DB:2E:60:CE:66
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/af55c22f-259b-4819-bb39-737dc44c10fe.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
8f:f5:f8:d7:2e:fc:37:6b:e0:dc:2f:ef:8f:24:3d:5c:16:a3:
0d:dc:04:22:c3:f8:a4:e4:5c:c9:23:37:c4:68:f4:5d:da:58:
ee:cd:a2:0d:b8:df:51:67:ca:c2:b0:ad:47:a3:39:8a:1d:63:
f8:91:5e:cb:31:87:bc:93:13:c8:d2:27:04:5b:15:3f:b0:5d:
51:da:ce:68:3c:e8:54:2c:cb:4b:35:fb:45:a1:7c:1d:35:f0:
37:62:6c:a9:c0:0c:c0:de:2f:23:54:d7:bd:92:d0:3d:b3:11:
b9:f1:0c:9f:97:0d:35:87:70:df:fe:c2:ce:43:89:d2:35:b2:
0a:82:08:9f:2c:92:37:4f:a1:b6:76:59:49:00:70:6e:4f:78:
4d:53:e6:ed:1b:2c:b7:76:35:22:b4:98:0b:b3:31:ca:35:18:
f3:9a:0a:57:14:37:12:b0:48:9a:22:a2:1e:e5:a6:a4:03:1d:
f1:6e:15:8f:57:c0:5e:67:db:9d:0d:4a:5b:03:aa:d5:4b:02:
e0:09:ce:b5:93:91:31:93:14:7b:7e:0d:55:00:cd:7e:db:32:
4d:4a:3b:94:9f:be:6c:c0:84:f9:cd:a2:3b:d4:41:33:c2:a2:
ae:98:32:25:8d:a2:47:01:93:d6:9c:a8:f2:b1:a4:7b:ca:04:
aa:ea:87:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:49 2023 by rpki-client on console-ams.rpki-client.org