Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/ca788c2c-82a5-4319-9d67-3e4013a56360.roa
File: ca788c2c-82a5-4319-9d67-3e4013a56360.roa (raw, json)
Hash identifier: 2mAN1jievbpW/eAWasZgqKX/wxCHTGfvo0ASi6iGZQ0=
Subject key identifier: 99:50:1F:65:D3:B1:F9:A6:11:BF:24:EA:43:ED:F7:F4:3E:A8:7A:3A
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 589001938640A3B97D599CB06EA7A89071F9CC94
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/ca788c2c-82a5-4319-9d67-3e4013a56360.roa
Signing time: Tue 09 May 2023 00:00:00 +0000
ROA not before: Tue 09 May 2023 00:00:00 +0000
ROA not after: Fri 12 May 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
58:90:01:93:86:40:a3:b9:7d:59:9c:b0:6e:a7:a8:90:71:f9:cc:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: May 9 00:00:00 2023 GMT
Not After : May 12 23:59:59 2023 GMT
Subject: serialNumber=989e2bbb90969f5eb42b0d986e469f0d881740fbf65ca4d0bf47127b27535f05, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:0f:fd:42:03:98:c3:dd:25:cb:bf:55:1a:07:
95:57:d9:72:8d:7a:7e:2c:92:92:25:ee:49:9c:3c:
0d:bd:87:46:eb:ee:63:6c:13:ca:f1:15:9d:18:7e:
9e:ec:14:c1:e6:f7:32:00:f3:c1:b8:9f:56:4a:a8:
19:f5:8b:8b:42:2e:77:86:63:12:49:78:50:62:23:
9d:7a:fc:f6:a5:a8:7a:91:05:64:61:45:f4:5d:44:
5e:bd:ff:0b:9e:52:69:8e:0b:99:89:ae:59:ac:b4:
5d:03:95:ce:ab:90:e1:ef:32:59:08:f8:52:7e:d9:
6c:15:d8:3b:7f:aa:b9:9e:90:c4:86:1f:98:34:6d:
a5:6e:a5:65:8a:ed:64:c2:2b:05:c8:9e:aa:55:a6:
91:45:f1:8d:20:33:a3:66:4c:ab:06:81:a3:f7:01:
5b:1f:22:1a:33:6d:ed:d6:c8:f0:07:24:7b:b2:d9:
29:e3:a2:2f:19:f3:4f:f0:76:5b:ab:41:19:c8:96:
21:4c:73:0e:0e:1e:63:52:01:5e:de:ba:43:1e:63:
d7:28:32:4e:f3:83:07:9a:7a:6d:34:01:18:30:90:
f3:8c:e4:88:c4:e5:68:ff:d2:4a:37:8c:e7:ca:f6:
e2:3c:4d:d8:66:6c:7f:47:2f:f3:9e:02:47:05:da:
29:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:50:1F:65:D3:B1:F9:A6:11:BF:24:EA:43:ED:F7:F4:3E:A8:7A:3A
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/ca788c2c-82a5-4319-9d67-3e4013a56360.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
a2:74:13:06:cb:4c:bc:28:c2:0d:26:93:51:78:45:ca:c0:cf:
ae:55:1a:e1:57:33:6f:3a:9e:38:02:cb:6c:09:f6:2c:f3:e0:
0c:ae:17:5a:44:5f:7c:a3:80:50:32:49:d1:43:0f:22:16:e8:
b8:86:55:db:8b:cb:f0:65:11:8b:42:c1:0d:22:ab:d0:86:fb:
49:2d:66:e7:9c:20:30:58:0a:92:67:8e:78:f9:11:40:fc:66:
93:c1:95:d0:aa:cf:32:80:30:37:37:e4:78:5f:d6:e0:12:67:
16:de:e5:30:c2:38:4f:c9:fc:2e:92:a2:2e:b3:8c:92:86:b3:
28:42:67:e1:19:19:72:6a:4a:c0:82:05:70:75:c9:36:ea:db:
c2:a4:a4:5c:dc:66:9b:bb:e4:ac:ad:d8:83:6a:60:af:b2:ec:
05:7e:bb:53:dd:5b:5a:65:ff:4c:47:ad:04:89:99:9c:80:6c:
ca:f5:35:11:46:c8:1d:6a:3c:6e:2e:7f:8a:eb:9c:72:c3:d6:
49:6c:e3:d2:39:c8:a0:53:53:ff:fd:ca:21:71:ec:1b:dd:d6:
82:b1:ad:67:a4:ab:e5:a4:19:6b:0d:ba:b6:1c:97:59:2d:a8:
68:70:2e:c5:a3:fd:37:ad:27:6b:cc:95:ab:12:72:88:57:55:
6d:ad:c1:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:51 2023 by rpki-client on console-ams.rpki-client.org