Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/cec07512-4423-4867-98ea-4f0fdc99a759.roa
File: cec07512-4423-4867-98ea-4f0fdc99a759.roa (raw, json)
Hash identifier: GXjeaK73Fs4JqxW7rU1FDUfO7+7N/YX+y4WfU/ZZ+VE=
Subject key identifier: A6:5C:C0:9D:5B:FD:F4:28:8B:FD:48:BC:B4:74:99:0A:4E:64:94:4D
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 3D6316A5AC40EBECFC94CFDAAAAF3C30C1390589
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/cec07512-4423-4867-98ea-4f0fdc99a759.roa
Signing time: Tue 04 Apr 2023 00:00:00 +0000
ROA not before: Tue 04 Apr 2023 00:00:00 +0000
ROA not after: Fri 07 Apr 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3d:63:16:a5:ac:40:eb:ec:fc:94:cf:da:aa:af:3c:30:c1:39:05:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Apr 4 00:00:00 2023 GMT
Not After : Apr 7 23:59:59 2023 GMT
Subject: serialNumber=434a9f3ddb512b9c8a5b2a9aea1fdef29cf07c5de67ef90ad9db8b165f258c9f, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:57:82:3d:45:69:a1:74:ff:9c:50:34:2c:e2:
1b:2d:e8:d9:8f:03:d9:d1:17:2e:19:e6:c5:56:87:
14:e9:76:b7:5c:90:1e:37:65:2a:86:90:a3:60:a8:
b1:0e:a1:fa:bf:1e:dc:e7:55:95:96:3a:0f:a9:1c:
34:05:72:4f:f7:18:d4:4f:db:d5:ae:7a:63:16:8f:
62:84:59:25:22:33:fc:50:d8:d4:f4:51:41:5c:99:
9d:93:7a:d6:82:f6:27:73:85:7b:f1:c8:7a:66:b4:
9e:d0:eb:0d:c0:e8:24:fc:f6:ab:0b:65:9b:70:1a:
e1:de:e9:b2:0a:88:15:33:a3:be:c0:10:85:c2:cb:
ee:9b:82:90:6b:6c:75:1b:0b:ce:dd:05:ab:7e:b0:
92:5b:9f:6c:d9:61:eb:1c:89:d9:04:61:68:b5:b3:
1f:56:b7:0d:25:66:ea:e7:20:e3:82:6e:02:ea:af:
ca:4d:e7:67:04:f5:56:ad:75:42:5a:9b:54:cb:b4:
80:ca:35:11:79:96:ab:3f:2d:ab:38:e8:b5:32:61:
cb:ee:9a:5e:0b:6a:ee:37:f3:56:09:ee:2b:81:0b:
4b:ae:a8:02:44:78:4e:bf:86:03:e0:bf:b7:7b:39:
7f:23:8d:85:58:9e:6d:f4:f0:7c:7c:af:13:d6:a6:
b6:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:5C:C0:9D:5B:FD:F4:28:8B:FD:48:BC:B4:74:99:0A:4E:64:94:4D
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/cec07512-4423-4867-98ea-4f0fdc99a759.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
0d:8e:25:77:c9:a1:c1:fc:5b:08:f7:eb:a0:3e:4b:2c:ec:2f:
04:c6:4c:25:95:37:6e:88:d1:e6:b4:fb:22:87:8a:47:f3:8e:
32:97:da:2d:63:d4:2d:72:a4:02:5b:28:02:15:12:97:3b:f7:
af:5c:74:e3:9b:fd:f3:d7:f6:24:22:5f:6e:f3:5d:55:75:d4:
9f:ec:e9:4c:e2:4f:82:4b:a7:82:43:51:98:7d:fa:36:61:b7:
7e:28:01:e7:fd:d1:fd:f1:e1:a7:62:e8:10:8b:f5:d4:d1:0a:
bd:d5:97:9b:e1:83:60:cc:a5:7d:44:22:d3:f5:1f:e8:02:5b:
38:43:27:d4:77:34:6c:8e:70:32:22:da:19:82:44:ee:42:93:
cb:81:b1:63:a6:5e:ef:83:d1:a2:f5:36:b6:fe:0c:0f:bd:07:
f2:1c:bf:1f:a9:b0:1f:b8:26:50:89:6c:0d:19:22:3b:60:08:
c2:ca:35:7c:15:0b:08:ea:e2:7e:98:c2:ba:74:b7:7f:12:81:
d0:52:62:3b:22:e9:81:0e:5e:80:a5:3a:1b:9f:be:db:f5:fc:
4d:27:37:47:3c:9e:04:48:f9:12:e5:53:02:41:97:6b:86:1f:
07:c3:80:43:a9:81:66:8f:c7:7e:16:f0:de:c0:87:d1:fd:7a:
5d:6d:1c:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:51 2023 by rpki-client on console-ams.rpki-client.org