Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/b2cafdb0-8b2b-4028-b477-ec088ef11c38.roa
File: b2cafdb0-8b2b-4028-b477-ec088ef11c38.roa (raw, json)
Hash identifier: 0t8yhOURKp5VX7KG02CGR3x9TJOyukwu2BStzTHNOwE=
Subject key identifier: D3:15:A5:01:C6:08:09:36:DB:F5:73:F4:74:8B:3E:DA:DF:49:4E:9D
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 4309B1521D06DDE871513ECCCD7C29E99FEF9E9D
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/b2cafdb0-8b2b-4028-b477-ec088ef11c38.roa
Signing time: Thu 30 Mar 2023 00:00:00 +0000
ROA not before: Thu 30 Mar 2023 00:00:00 +0000
ROA not after: Sun 02 Apr 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
43:09:b1:52:1d:06:dd:e8:71:51:3e:cc:cd:7c:29:e9:9f:ef:9e:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Mar 30 00:00:00 2023 GMT
Not After : Apr 2 23:59:59 2023 GMT
Subject: serialNumber=fc23d425643ef3e7a991736d66e724ebb597eefd5311de0b7d1cb5009fa276a4, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:ba:d8:c0:6f:3e:54:76:37:f9:b8:12:5c:3d:
4b:65:21:46:c7:29:19:0a:9f:35:26:99:a4:d9:c0:
7f:4d:4d:6a:03:dd:25:da:9b:a4:37:3a:14:b8:9f:
85:d0:40:76:9b:9f:9f:a0:9c:e8:c0:32:93:82:53:
cc:f7:bd:2d:e9:4a:4e:b5:f7:43:9a:ba:c4:89:cc:
6e:2e:68:ef:3b:97:a5:9d:f2:0f:df:72:48:9f:17:
5a:bd:a7:31:5a:fb:50:ee:ac:e0:e4:f4:7e:d1:10:
14:2d:94:5a:d9:ba:03:a6:85:67:9d:d7:7c:22:13:
11:28:69:84:c9:a0:5e:69:e3:37:82:a9:2b:5e:fd:
3d:34:68:f3:d3:5d:ed:bb:da:87:39:e6:0f:8f:f8:
c5:52:c0:4c:85:7b:1d:28:be:ae:6f:fb:62:c8:5b:
00:5f:e5:6d:cb:28:19:b7:71:3a:03:c4:66:5b:37:
0f:a8:8b:15:80:50:ab:8d:ee:ff:c3:f6:d0:4a:1a:
16:58:ac:df:81:30:13:28:25:10:2d:c7:27:00:90:
25:95:fb:08:1c:6f:71:6c:d2:ea:df:af:34:c7:15:
a6:a9:e8:04:09:5e:07:f0:64:e4:a6:d7:54:ac:99:
c2:cf:33:51:c1:2b:49:41:46:5b:d0:3d:19:ef:2f:
37:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:15:A5:01:C6:08:09:36:DB:F5:73:F4:74:8B:3E:DA:DF:49:4E:9D
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/b2cafdb0-8b2b-4028-b477-ec088ef11c38.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
09:1d:82:91:7d:54:64:3f:6f:ba:de:03:ec:60:69:6d:73:da:
22:3e:d9:44:fb:ce:c8:01:1e:3a:a7:71:1a:79:9c:2a:bb:fc:
1b:55:41:9b:3d:ac:8a:78:fe:9c:8b:5d:12:3b:e5:55:62:a2:
07:7e:c1:99:b9:a9:2f:f8:c7:65:ea:f0:9c:de:29:4c:c7:b5:
d6:ea:86:58:14:81:b7:d4:01:0d:14:25:bd:97:7a:b1:54:7d:
39:5c:25:b5:71:46:6e:41:6e:ef:0f:2a:6b:19:d6:61:a9:af:
7e:28:69:96:7c:30:da:15:be:ea:bd:43:af:32:4c:40:27:21:
82:2b:c6:f4:1c:0c:bd:88:cf:e7:1c:a9:63:14:e1:48:12:94:
7f:77:96:72:55:52:42:26:0e:b3:19:26:5d:f5:29:f0:40:a0:
a9:60:d3:a5:56:1a:72:aa:50:f7:65:c7:27:ea:f9:ab:a4:fa:
a7:f8:74:1f:8e:9f:98:86:02:f6:00:4d:ba:f2:18:5e:c1:e4:
2c:0f:0a:55:c7:8f:db:18:d1:22:3c:de:32:c2:ad:b4:ed:34:
56:14:54:b2:08:7a:ba:9c:32:9b:c8:34:81:83:1b:ae:af:d3:
a5:a9:e3:bb:d5:72:6f:55:b3:6d:94:5b:d8:23:37:18:2b:d4:
76:a4:c7:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:49 2023 by rpki-client on console-ams.rpki-client.org