Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/e20d6148-d0c2-4f6b-ac0c-34854c162aef.roa
File: e20d6148-d0c2-4f6b-ac0c-34854c162aef.roa (raw, json)
Hash identifier: lX4wYY3rf1286ApiXbd4uk6MAL5yvZBmu7X7TdyVWfw=
Subject key identifier: 3F:D3:ED:7A:02:D9:BF:77:72:5F:90:F8:57:F5:CB:66:11:20:46:48
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 05534D553A33403EAF760EBA818076B1E751915F
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/e20d6148-d0c2-4f6b-ac0c-34854c162aef.roa
Signing time: Sun 09 Apr 2023 00:00:00 +0000
ROA not before: Sun 09 Apr 2023 00:00:00 +0000
ROA not after: Wed 12 Apr 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
05:53:4d:55:3a:33:40:3e:af:76:0e:ba:81:80:76:b1:e7:51:91:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Apr 9 00:00:00 2023 GMT
Not After : Apr 12 23:59:59 2023 GMT
Subject: serialNumber=a542b1f9a29c2244c99f9b80810aea94679b6b445952a0f573ec18a3a9ed1ec2, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f4:4e:a3:e7:bf:af:a7:41:fc:10:49:f2:88:ef:
94:4c:cb:b8:f7:4c:89:fe:af:6e:b4:a1:47:b0:d1:
c8:74:52:37:7b:29:35:53:bb:c1:28:3e:ea:db:60:
2b:cf:9b:0f:bd:b2:21:f3:dd:d6:a1:89:a0:f3:e0:
34:b7:06:63:c4:18:1b:97:3e:a7:db:55:b9:c6:c2:
70:d2:3a:32:a9:87:29:a4:4f:23:db:53:4f:eb:98:
b5:fe:b3:fb:20:92:fe:be:a6:de:a5:ec:d8:af:21:
63:10:6d:82:38:3f:98:4b:45:d6:eb:60:9f:00:99:
29:e6:0f:ad:13:60:2d:e2:fc:47:58:84:6b:c6:4b:
05:35:84:e1:e9:42:21:7d:67:1f:1b:c5:7c:ef:f6:
bd:45:59:aa:80:e8:90:46:e5:41:53:de:b6:2b:7d:
e2:49:28:82:3f:56:28:5d:a6:27:d3:eb:b0:2f:85:
7a:ea:ed:92:d6:1d:a7:9c:56:64:dc:ef:bc:7c:c4:
cb:2c:ce:67:a6:26:d7:3f:07:78:20:29:ea:74:15:
42:1d:40:ff:a0:39:db:94:dc:20:20:9e:45:eb:5f:
21:1b:49:85:dc:2c:8c:33:9f:d1:ea:d8:ac:c5:7f:
38:0e:6a:ce:ba:4d:6c:72:08:3d:06:d5:e9:f0:bd:
cb:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:D3:ED:7A:02:D9:BF:77:72:5F:90:F8:57:F5:CB:66:11:20:46:48
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/e20d6148-d0c2-4f6b-ac0c-34854c162aef.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
69:91:58:7e:3c:d3:96:bc:f4:6f:30:7c:0c:48:6b:98:c6:e6:
0a:39:f0:e9:93:7b:bd:14:21:a4:42:11:e7:27:53:e3:db:6b:
f7:58:2a:f8:cd:20:da:84:ab:9b:ec:cf:41:ac:eb:38:1c:77:
62:d9:b3:9c:ee:b8:48:62:17:cb:ba:5c:9d:a1:03:eb:dd:58:
f2:eb:a2:22:7c:38:a2:28:38:f2:81:dd:5b:a5:d3:91:66:18:
a1:24:97:ee:9b:d7:0f:06:fd:3d:29:5c:c7:73:1b:2f:55:55:
78:65:e4:b6:5f:70:7b:9c:d7:b3:70:b8:77:48:2b:80:ac:95:
82:b5:ea:1c:91:a1:e1:3d:93:00:9b:09:ca:45:df:af:f3:a3:
01:fc:be:de:1f:b4:e6:d0:3b:6c:8b:bb:43:32:47:79:d2:c1:
52:06:29:9d:07:90:49:06:3c:7c:41:f7:bd:2c:af:87:b4:23:
77:ec:f3:4a:3d:e6:cd:16:6c:7f:b3:f0:2b:5c:01:d2:97:ad:
6e:23:af:6c:96:60:e2:85:01:10:1b:cf:2e:b9:19:d9:0f:73:
63:eb:9b:3d:2e:66:43:cf:58:a5:46:62:ab:37:f1:4f:e5:54:
33:6d:75:85:9c:5e:6c:42:22:05:13:86:3f:56:f1:6e:b1:d6:
44:fe:65:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:52 2023 by rpki-client on console-ams.rpki-client.org