Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/c7a0f7be-0c67-4b4d-8180-d1a2a715ec99.roa
File: c7a0f7be-0c67-4b4d-8180-d1a2a715ec99.roa (raw, json)
Hash identifier: o92FmjYiTte1XKpCcNbjHSkzQp3WdirH5EdDK5kqWVI=
Subject key identifier: 2F:F5:C4:67:DC:90:E2:79:FE:7E:5C:B9:96:DE:0E:09:64:08:BB:66
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 771176955B2F2E321DFDE249B861D81A788CF620
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/c7a0f7be-0c67-4b4d-8180-d1a2a715ec99.roa
Signing time: Tue 06 Dec 2022 00:00:00 +0000
ROA not before: Tue 06 Dec 2022 00:00:00 +0000
ROA not after: Fri 09 Dec 2022 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
77:11:76:95:5b:2f:2e:32:1d:fd:e2:49:b8:61:d8:1a:78:8c:f6:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Dec 6 00:00:00 2022 GMT
Not After : Dec 9 23:59:59 2022 GMT
Subject: serialNumber=b720ac6d945d503f479ba551d22af9253cbf15162f1da7c37c36ea26a3eec0e0, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:af:cd:0b:99:65:aa:a0:ba:96:e9:a9:12:72:
43:34:ee:f6:41:3f:83:ba:b2:a1:4e:03:fe:84:42:
00:4a:59:50:8b:e7:30:81:8e:8d:64:8f:b4:1b:aa:
ab:6b:76:65:59:1c:0d:ab:a9:81:dc:03:e5:f1:c1:
dd:80:49:63:c5:c3:d2:f3:1d:39:7d:1d:90:42:55:
07:f9:c9:be:18:e2:dd:fd:d1:54:c9:b7:b2:f0:7e:
21:eb:12:0a:91:e0:c6:d7:4d:8c:c8:61:08:f7:da:
77:37:2d:7f:a2:a3:61:bd:f7:f5:0c:7f:b1:e4:20:
ce:9a:9f:3f:5e:69:ca:77:15:bd:3e:d4:c8:af:55:
c9:fc:1e:1e:27:70:8c:9a:ea:3c:dc:2a:af:5a:d8:
35:27:11:d8:52:68:b3:10:45:ae:93:44:45:63:3c:
7c:c5:eb:41:4d:67:ed:e0:7c:11:cf:09:91:94:4d:
7a:2f:f3:e5:47:83:89:d3:fa:6c:37:d4:54:06:9e:
54:53:bb:7a:dc:f0:3e:eb:40:65:a8:89:1d:33:7e:
3d:07:67:82:f3:6f:b5:e7:a0:3d:23:2a:64:62:57:
02:a3:36:ac:5c:0e:0d:5f:e6:c1:ce:2d:3d:38:a2:
a7:47:8f:de:0c:01:41:36:95:fa:dd:0e:a7:b9:d7:
81:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:F5:C4:67:DC:90:E2:79:FE:7E:5C:B9:96:DE:0E:09:64:08:BB:66
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/c7a0f7be-0c67-4b4d-8180-d1a2a715ec99.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
6d:52:11:58:50:0c:5f:14:99:f5:57:73:cc:34:a4:70:23:6e:
20:8f:11:52:50:88:fa:40:b5:41:51:65:44:59:ba:66:8f:6d:
af:4e:ad:c3:0d:80:fc:8c:3a:0e:ce:fa:ce:21:f2:c5:53:63:
6a:f7:9d:98:e4:20:80:88:58:88:de:ef:80:c1:79:e5:7a:46:
1f:67:27:92:68:de:a3:83:2b:e1:59:c0:8e:9d:f7:09:6a:1b:
08:40:42:8e:6e:b1:d3:73:3a:aa:03:0a:36:2c:20:02:14:1e:
1c:53:3c:4e:af:11:d0:d0:ae:24:23:72:9e:2a:85:3e:b9:d6:
18:e6:1f:a7:f5:d7:e6:d3:7f:62:b8:50:bf:d1:98:47:54:09:
57:4c:8b:4e:37:8a:64:d2:93:e5:65:55:16:bb:d9:ac:8e:e7:
5e:ad:dc:1e:41:c6:22:40:19:59:2c:ac:f8:bb:cd:86:57:f3:
4e:8b:df:f1:71:b4:d4:24:10:a7:0f:77:73:53:cf:d1:5f:04:
65:6c:d0:a3:38:31:15:75:f3:92:3d:7f:e5:80:87:35:89:b2:
84:52:14:23:eb:91:1e:bc:da:0b:2d:3b:89:cd:93:1e:5b:9d:
b8:a4:81:0a:45:cd:8e:b3:f1:98:2c:ff:e5:2a:f6:6e:f4:2f:
29:ca:ef:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:51 2023 by rpki-client on console-ams.rpki-client.org