Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/c0bee75f-7365-4193-9a3e-969b70106f95.roa
File: c0bee75f-7365-4193-9a3e-969b70106f95.roa (raw, json)
Hash identifier: PEjQstHlqd1rBiXAwDjfFs1qwcwuPrXYExmDkDKc52o=
Subject key identifier: BB:68:9D:8E:33:91:FD:4B:6C:A7:AD:EB:53:5D:F9:EB:07:4F:32:24
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 142D95D0D75DF8A7DB5D1C8FAF6BC9897C33D8B6
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/c0bee75f-7365-4193-9a3e-969b70106f95.roa
Signing time: Tue 07 Feb 2023 00:00:00 +0000
ROA not before: Tue 07 Feb 2023 00:00:00 +0000
ROA not after: Fri 10 Feb 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
14:2d:95:d0:d7:5d:f8:a7:db:5d:1c:8f:af:6b:c9:89:7c:33:d8:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Feb 7 00:00:00 2023 GMT
Not After : Feb 10 23:59:59 2023 GMT
Subject: serialNumber=98cdb87a19b40210334a22083a16ecc19bb37fc5bb348ca8ac8c12c0ac5ad614, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:c6:12:85:7a:70:46:cc:d2:2c:c8:0b:5d:de:
a1:c6:22:da:d6:84:36:46:60:0f:af:4c:b7:b3:1f:
64:4d:09:1f:d7:70:02:59:88:f7:e2:22:89:62:c0:
e8:ed:3f:24:c0:2f:0a:55:f3:b7:67:fa:08:de:a6:
33:5f:d2:9b:2e:2e:2d:83:23:a2:d3:cb:f1:99:1c:
a6:61:9e:7e:28:61:13:ae:a7:de:bf:91:07:4e:69:
87:11:e4:ef:bf:1c:02:7d:3f:ca:a6:22:72:fa:bf:
73:36:de:e2:23:5e:f3:c3:61:3f:24:22:b2:e5:8f:
f4:9d:55:8f:f7:80:66:77:c5:ba:ea:f0:bb:e6:bf:
43:b1:ae:f0:82:c6:2c:6c:57:35:7e:0e:dc:71:c9:
81:aa:41:76:b6:54:e5:86:ae:f4:52:5a:14:e2:54:
10:7d:75:29:fd:7a:9a:11:f2:a9:d6:65:9b:55:0b:
19:03:8b:c1:2e:97:6a:32:bf:89:e4:9d:9f:e2:c5:
50:af:48:7f:34:66:2e:fb:be:4b:b8:25:1b:02:65:
b8:ab:61:1c:0f:a2:e2:cb:03:26:e9:21:a1:1d:a4:
8f:75:23:a6:5c:75:95:15:84:6b:78:20:09:8a:a3:
9d:b3:e9:ab:de:c2:93:99:b9:ff:a1:d2:0b:6e:0b:
94:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:68:9D:8E:33:91:FD:4B:6C:A7:AD:EB:53:5D:F9:EB:07:4F:32:24
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/c0bee75f-7365-4193-9a3e-969b70106f95.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
26:9d:dc:b6:57:8f:7a:3d:7c:2e:12:d9:50:68:c0:4a:27:db:
c2:c9:4e:b7:38:5a:15:b0:95:bf:7a:cd:15:32:0e:8a:a8:e8:
c2:f6:63:82:5d:45:8b:8d:a0:97:c6:91:01:4d:c9:3b:85:ee:
34:b6:31:54:03:8a:33:77:8f:df:0a:6d:ef:d1:05:7d:df:2b:
5c:cf:6c:a9:2a:0e:55:5d:48:71:08:11:af:79:26:2e:a8:7a:
67:e5:e0:22:20:bb:16:f7:1a:db:1d:17:72:11:12:ba:e6:09:
73:65:e8:43:7a:b3:79:2f:75:c8:9a:29:22:09:01:03:5d:33:
d4:6a:02:af:e9:64:18:37:2d:ba:62:6c:22:18:9e:93:81:fb:
cb:59:78:af:73:3f:cd:00:69:0d:2f:76:0a:7f:a2:5b:51:e8:
24:2f:0b:4b:65:96:2e:a5:a6:0a:f5:55:21:a4:78:78:46:ee:
f7:8c:52:5e:d0:b7:1a:a3:b7:5d:c5:29:7f:a0:c9:99:75:55:
33:89:29:22:f1:87:46:a3:fd:b2:ab:cf:84:d3:39:d1:76:4e:
cf:98:ba:24:53:cc:88:a3:6e:dc:4f:2e:25:0d:3e:66:a9:e6:
4b:71:30:f3:b9:d0:08:c9:cf:32:f2:c7:be:90:22:cb:cc:0c:
50:7e:84:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:50 2023 by rpki-client on console-ams.rpki-client.org