Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/b3f312c0-c60d-4141-9ca1-2d92a258b503.roa
File: b3f312c0-c60d-4141-9ca1-2d92a258b503.roa (raw, json)
Hash identifier: C43NLUPD1AQ5gO6Z7i1LfPEruQukciQYV9PmZk2w8WY=
Subject key identifier: DF:20:CA:73:3B:7C:B1:80:03:0F:F8:B1:EA:4F:C0:98:94:64:12:40
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 38716F94A07BC489C1A04561E41410381995EC65
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/b3f312c0-c60d-4141-9ca1-2d92a258b503.roa
Signing time: Fri 22 Jul 2022 00:00:00 +0000
ROA not before: Fri 22 Jul 2022 00:00:00 +0000
ROA not after: Mon 25 Jul 2022 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
38:71:6f:94:a0:7b:c4:89:c1:a0:45:61:e4:14:10:38:19:95:ec:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Jul 22 00:00:00 2022 GMT
Not After : Jul 25 23:59:59 2022 GMT
Subject: serialNumber=763d51c5beee37cead27529698ec5656a6313fcde65df966077f236fcf1f77d0, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:bc:4a:c5:56:23:84:72:07:89:b2:73:ff:b9:
32:11:b6:44:02:fb:d1:f3:40:ca:49:eb:cf:7c:fa:
0c:a3:5a:b4:4c:f4:2b:18:98:e4:e4:df:d2:67:f4:
f9:82:ff:4a:83:d5:eb:66:e5:a4:ac:9c:e6:a4:61:
90:54:71:dd:f3:46:6a:3b:cb:73:a2:40:90:ef:a3:
ff:ee:b4:fa:ce:18:e5:4d:28:4c:04:e7:c6:9d:87:
13:cd:56:62:09:81:73:e6:c4:2e:08:33:9f:e8:39:
d5:e1:dc:95:59:0e:6a:e6:be:bf:59:98:d6:04:8d:
d5:41:8b:7b:77:fc:33:d3:77:16:e9:55:d2:02:8c:
ae:df:3d:40:e4:6e:2c:03:34:ed:76:a5:c8:7a:de:
5b:69:fc:01:79:9a:c1:02:37:70:63:47:d2:57:70:
78:16:c9:61:55:4f:fa:29:6e:36:9e:56:31:d3:50:
6c:b6:f9:70:34:df:33:83:5a:5d:02:fe:c6:66:fb:
19:33:42:92:fb:74:f1:fe:d6:c8:8d:9c:4e:13:51:
8a:85:e5:63:ca:02:0f:60:06:18:24:75:33:cf:a9:
25:aa:90:38:07:e2:cb:dc:ae:9c:14:ce:e8:6b:b0:
3a:28:7a:ea:a3:7b:f5:e3:2e:d0:7d:21:71:15:ec:
e4:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:20:CA:73:3B:7C:B1:80:03:0F:F8:B1:EA:4F:C0:98:94:64:12:40
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/b3f312c0-c60d-4141-9ca1-2d92a258b503.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
4b:0a:73:ff:09:47:a7:e6:22:fb:85:85:e4:66:b2:16:72:b6:
d1:ed:03:84:e2:84:f4:cc:b8:d6:42:75:dc:fd:73:cc:3d:31:
7c:86:e0:17:d4:86:fa:6e:ee:b6:21:5f:c6:c3:6b:e3:20:9e:
74:c8:d9:91:6d:9b:4b:d3:89:db:2c:b2:0b:05:23:f9:56:3d:
df:2a:e4:42:13:ac:6b:9b:b0:d4:0e:e2:3f:25:5b:80:b6:52:
07:8d:2a:86:03:25:e2:5d:04:f2:f0:e7:c9:e4:f7:f2:90:b9:
50:86:62:24:45:f1:ba:31:bf:2b:c2:55:de:34:c8:7a:fd:8e:
bf:3b:a7:b5:e1:af:1b:38:2e:7b:e5:6d:74:e3:71:d9:d1:87:
8a:89:90:ad:bb:ca:bc:9d:2f:2a:e5:d6:2d:02:80:62:a2:d1:
9a:1a:c5:1a:1c:6b:b5:f0:59:45:6b:08:51:d3:20:2e:0f:51:
10:f0:d4:f2:b1:20:6c:e9:04:d8:43:9d:4c:37:92:cc:fb:aa:
bd:8b:49:25:30:03:e4:0e:bb:31:5f:03:cf:de:68:81:96:71:
ee:b7:74:c9:e7:dd:a2:e5:a1:e3:3b:69:2c:5e:8b:5a:b3:da:
e5:75:1e:6c:13:01:58:a5:04:f7:ef:92:ed:74:f6:9a:c5:9e:
2c:23:9d:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:49 2023 by rpki-client on console-ams.rpki-client.org