Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/b88635cb-83e9-48d3-80bf-56b3bfe2b389.roa
File: b88635cb-83e9-48d3-80bf-56b3bfe2b389.roa (raw, json)
Hash identifier: Cd4LTmsd9+qoIpb94Nd7UMb3QjM3BgJttFW4eBEd/TM=
Subject key identifier: 70:2C:D1:57:E6:A8:C5:7B:8D:0A:9C:EB:94:33:9D:E1:01:D0:CC:48
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 7F5899711FEF25ADFF91B01A583591CE426D2F04
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/b88635cb-83e9-48d3-80bf-56b3bfe2b389.roa
Signing time: Mon 10 Apr 2023 00:00:00 +0000
ROA not before: Mon 10 Apr 2023 00:00:00 +0000
ROA not after: Thu 13 Apr 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7f:58:99:71:1f:ef:25:ad:ff:91:b0:1a:58:35:91:ce:42:6d:2f:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Apr 10 00:00:00 2023 GMT
Not After : Apr 13 23:59:59 2023 GMT
Subject: serialNumber=3ba01c669da11f5b84ee32a786a3fa50c231a432861ae092df6a9cc2bc8c3bd8, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:df:92:1a:26:8f:86:5c:9a:c7:2f:41:09:2f:
df:59:e5:b2:5b:80:eb:5c:40:f1:a3:05:c5:02:ad:
dc:ed:ef:33:40:f2:0f:56:4f:e4:bb:52:50:09:39:
c7:0d:79:10:db:7c:b0:07:77:b6:06:65:b6:f2:e9:
ad:ed:79:4d:93:86:9d:1e:02:66:ad:2a:0a:7a:d8:
e8:70:26:61:dd:90:a8:5c:ed:9a:9c:ba:1d:71:19:
1f:44:90:3e:16:39:ea:75:34:88:f3:a7:e7:24:2b:
af:2e:51:96:84:34:c3:2d:a9:81:b1:93:60:a0:34:
4d:6a:a9:42:99:3a:27:d7:3a:cf:b0:84:23:c9:eb:
cd:23:42:c4:37:da:21:19:43:e1:e3:84:20:d9:8c:
a0:bd:12:ac:78:2d:68:d1:83:5c:d5:ca:ea:df:62:
d9:bd:b0:dc:5a:f6:d6:d3:4c:9d:e4:90:5b:6e:64:
5c:a4:c8:63:d6:8b:b6:65:00:2b:b4:29:ef:26:8e:
c4:6d:5d:f0:a3:4a:f6:87:7c:81:87:4c:28:8e:71:
6d:54:71:27:40:e5:65:8e:9e:64:1c:41:db:e1:8a:
16:b4:23:8a:de:53:7f:61:10:2a:9c:ec:bb:61:0c:
88:7c:6d:52:71:69:f1:a9:36:0f:9c:7d:3a:e7:94:
fe:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:2C:D1:57:E6:A8:C5:7B:8D:0A:9C:EB:94:33:9D:E1:01:D0:CC:48
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/b88635cb-83e9-48d3-80bf-56b3bfe2b389.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
8d:64:94:2d:db:92:bd:5a:f3:cd:a9:74:06:d9:58:da:8a:de:
53:92:32:5f:db:ec:26:76:20:88:c2:61:0d:23:68:2f:bf:e3:
99:03:50:df:00:16:ca:a5:b7:d8:5d:50:65:f6:3c:ee:90:00:
f5:8e:5e:45:c5:f2:2f:c3:3e:37:7e:bf:cb:b5:40:59:fe:e0:
eb:e1:bf:70:cc:8a:37:81:99:71:d8:ff:94:f2:a9:08:c3:1f:
df:f9:38:11:dd:df:9b:c4:fb:c0:34:90:84:dd:35:00:4f:82:
26:90:db:87:31:b7:30:75:fc:bb:01:70:ce:1c:ef:32:bc:d5:
3b:1d:cd:45:28:26:8c:aa:7e:e2:d4:29:fe:6f:39:0b:30:5a:
92:86:aa:23:92:77:57:af:e7:00:42:c8:1c:7f:95:50:f0:fc:
93:c3:87:16:75:6a:35:b5:5e:15:37:b3:32:f3:a8:9e:49:a9:
4d:00:1e:a7:6b:7a:7f:91:58:31:43:dc:57:6d:b7:03:58:c8:
8b:21:aa:26:47:84:36:63:eb:2b:e2:c6:18:14:c1:ab:96:48:
25:7d:02:31:35:2e:36:f4:8a:31:83:f9:7f:30:53:4d:43:63:
63:da:36:ca:5d:ad:89:cc:bf:6f:a8:36:ad:0f:27:f9:c6:64:
fe:37:3a:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:50 2023 by rpki-client on console-ams.rpki-client.org