Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/c36ae22d-a8ab-443b-937b-ea251afd713d.roa
File: c36ae22d-a8ab-443b-937b-ea251afd713d.roa (raw, json)
Hash identifier: jfatgTkGo+1cSm56Pqp38cCJ8kg3Au2M4gZesRc/0OE=
Subject key identifier: 33:CF:42:45:57:7C:EE:0B:BA:08:60:19:2B:B4:18:CA:0E:51:C4:A7
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 21820690685A3109F273E73F0ED8E1EE4A4AA1C6
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/c36ae22d-a8ab-443b-937b-ea251afd713d.roa
Signing time: Wed 19 Apr 2023 00:00:00 +0000
ROA not before: Wed 19 Apr 2023 00:00:00 +0000
ROA not after: Sat 22 Apr 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
21:82:06:90:68:5a:31:09:f2:73:e7:3f:0e:d8:e1:ee:4a:4a:a1:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Apr 19 00:00:00 2023 GMT
Not After : Apr 22 23:59:59 2023 GMT
Subject: serialNumber=419b7ba82c548260e2cd0295102057fb67b1754fee70b8d1a5386f43c3b9add3, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:8c:c3:9d:d9:59:07:08:e5:6f:35:4d:73:ad:
f7:01:9f:5a:cd:8a:0e:3d:a8:da:9b:9d:a8:0e:a4:
31:40:c2:0d:29:db:bb:1d:0c:da:91:21:c8:5e:0a:
f2:97:5f:e3:fd:01:e1:1e:2d:6d:15:6e:72:e9:26:
37:90:a3:fe:50:77:77:bc:00:42:d5:f5:c2:e7:44:
71:d7:15:3f:60:09:07:07:f0:50:5d:aa:84:75:e7:
bf:42:a0:31:89:b0:91:40:3c:fb:61:36:16:d9:82:
d2:51:67:aa:12:fc:39:0e:d0:aa:fe:44:08:2d:88:
e2:6f:57:86:1e:f0:30:5c:7a:b9:e3:50:6a:ae:03:
ae:4b:27:6b:d4:a4:49:3b:3c:89:86:97:bb:c8:8f:
9c:91:d3:0c:ad:19:38:17:89:40:4b:4c:b9:53:d8:
2a:b3:a8:ee:0f:a7:3b:b7:33:87:28:cc:4e:4c:fc:
85:cd:5d:1c:d5:39:9d:45:19:8f:0b:0e:59:ab:b3:
07:f5:18:2d:93:d5:85:4e:9f:ed:ee:aa:43:f8:77:
c5:2f:21:fa:50:c4:2c:ae:9c:54:10:27:88:af:3e:
b6:24:d0:4c:6a:c0:5d:96:30:a8:a6:b0:ce:d4:c4:
be:09:41:77:3e:18:79:e6:24:64:f0:83:ae:b6:96:
5f:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:CF:42:45:57:7C:EE:0B:BA:08:60:19:2B:B4:18:CA:0E:51:C4:A7
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/c36ae22d-a8ab-443b-937b-ea251afd713d.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
0c:18:c8:60:83:f5:f9:d3:5e:3c:e2:5b:0e:b5:ca:e8:a5:15:
c0:e2:7f:9b:f9:87:6d:ba:23:1c:5e:14:9f:e4:56:37:c8:7a:
a1:04:74:af:75:51:de:13:05:5f:e9:55:37:6d:a7:8b:06:7e:
3f:5e:07:1b:36:5e:a0:63:bd:d7:ff:6e:b3:21:7e:31:bf:da:
58:0c:44:bc:9d:0a:29:ca:2b:46:a8:3d:32:a8:62:39:e5:10:
05:8c:4c:4d:61:04:19:2c:37:62:f2:c7:b5:01:e1:6d:c5:15:
ff:74:b4:5f:31:82:15:70:d9:bd:7b:c3:8f:e8:81:18:c7:02:
37:d2:61:6c:bb:32:f5:02:4d:14:d0:e1:0e:fd:24:11:27:b2:
ed:92:fb:dc:85:72:37:f8:9c:4b:93:e2:73:e9:19:7d:4e:3a:
10:55:a2:24:50:19:50:d3:7f:cf:a9:6b:06:f0:18:6e:b8:b1:
cd:89:47:f9:c3:dc:5c:f3:63:a9:92:4f:26:33:c7:e5:c9:f6:
8b:72:26:e5:ea:71:29:f2:a6:f5:5b:53:c5:73:ea:3a:f3:79:
90:6d:0d:df:b2:a5:39:83:ec:b2:70:56:6d:89:48:9c:e8:34:
84:5b:ff:da:43:df:36:f3:3f:38:2c:8b:e3:47:7a:2a:93:d7:
3e:af:60:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:50 2023 by rpki-client on console-ams.rpki-client.org