Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/cbfda312-f222-4fd3-9886-f16327c490e6.roa
File: cbfda312-f222-4fd3-9886-f16327c490e6.roa (raw, json)
Hash identifier: V3M9ZBBzdFuA2hQTQbiLn/SRzdj2W+uLEZLuZbx2nGc=
Subject key identifier: D6:B6:BD:AD:D8:C2:05:7B:49:AD:B6:C9:99:0A:DD:78:AB:F4:0D:2F
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 5D5D8F075B938E73ADB04D50F4F69022191C7666
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/cbfda312-f222-4fd3-9886-f16327c490e6.roa
Signing time: Sat 05 Nov 2022 00:00:00 +0000
ROA not before: Sat 05 Nov 2022 00:00:00 +0000
ROA not after: Tue 08 Nov 2022 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5d:5d:8f:07:5b:93:8e:73:ad:b0:4d:50:f4:f6:90:22:19:1c:76:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Nov 5 00:00:00 2022 GMT
Not After : Nov 8 23:59:59 2022 GMT
Subject: serialNumber=e2e1bc14c5bb0f3a22fad575b5b65f631a2e2e5d9b0457d7e0f37acdef7c42c1, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:f2:9c:78:29:3c:e0:4b:4c:5f:f7:f1:b7:7a:
37:6a:63:88:18:28:2a:e5:b2:81:0f:9b:0c:d3:f1:
6d:65:b1:07:d8:b3:ea:dd:c9:17:73:1e:10:22:08:
9b:b0:e7:3a:e4:2d:9e:84:f9:54:c6:e9:d7:4b:3d:
97:5f:e3:00:ca:6c:e1:2d:04:e1:c8:5f:a5:fa:97:
85:47:92:71:ac:30:c6:18:89:3b:7f:dc:5e:92:99:
1e:d7:15:d3:36:89:0c:7e:d9:1f:c6:2c:ec:76:e2:
7d:75:22:74:09:ad:99:7e:10:78:5e:f0:a1:ee:65:
fe:da:ea:74:32:f1:9b:80:5a:f9:b2:6a:ed:72:47:
18:42:ce:e2:e8:28:d3:f7:0a:42:4a:78:32:eb:4a:
d7:4a:5b:3c:5b:12:1c:40:0f:75:02:02:d4:83:28:
fa:b2:42:43:f1:85:43:4b:7a:2b:9c:d5:99:79:61:
04:ba:ae:79:2f:0d:69:e5:a9:8c:50:dd:1d:14:e5:
e1:69:ae:61:2c:3f:02:4e:b8:f3:5a:0a:6f:26:12:
68:b6:db:c3:a7:cd:81:ca:7c:09:c1:b6:bb:f7:69:
6f:49:ec:06:74:69:1e:79:01:c9:04:8a:6a:ed:70:
7f:1c:b4:79:89:19:7a:db:50:7c:2c:13:fd:72:79:
4d:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:B6:BD:AD:D8:C2:05:7B:49:AD:B6:C9:99:0A:DD:78:AB:F4:0D:2F
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/cbfda312-f222-4fd3-9886-f16327c490e6.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
32:b1:5d:53:11:fe:50:cc:f6:4f:1a:ea:ea:1b:18:24:cd:0c:
f2:0a:4f:50:16:f8:4e:fd:87:31:d3:8e:52:8a:b5:e1:e1:57:
03:55:4b:4f:e1:d5:26:e4:76:34:37:35:c8:90:79:d8:da:ea:
30:38:8f:ab:ff:4f:9f:48:1a:7a:ee:1c:76:4c:19:98:9e:58:
08:77:59:2c:47:14:eb:33:f6:f3:37:6d:86:f3:1f:f3:6a:2e:
41:b4:84:52:d3:75:ed:6c:bf:81:82:08:45:70:8a:25:9c:e3:
8c:af:5f:ec:20:2e:a3:98:a7:6d:74:45:cf:38:12:bc:9d:04:
08:3d:44:15:28:77:ec:ad:bb:b6:8f:53:fa:aa:b1:b8:70:27:
97:06:f6:a5:7a:65:95:ce:d6:1c:c7:53:c2:3b:b5:a8:8e:65:
e1:a7:3f:8e:19:8d:f5:2a:b3:c4:ca:1a:fa:8f:1c:f4:ed:ab:
79:8f:9b:a3:2e:eb:e3:b1:70:d5:8a:0f:76:e5:d5:94:6e:c1:
ba:b9:64:fa:04:25:8f:7c:5d:b4:49:a2:17:63:52:a7:d0:6e:
5f:07:17:c3:0f:ff:74:dc:7c:c6:91:7c:8d:2b:15:71:91:36:
cd:f0:71:b4:8b:3f:7c:c8:6e:97:c8:c5:c8:e2:09:3c:0e:0e:
54:71:c6:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:51 2023 by rpki-client on console-ams.rpki-client.org