Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/ea770fb0-0f56-4549-9344-0c522aae687b.roa
File: ea770fb0-0f56-4549-9344-0c522aae687b.roa (raw, json)
Hash identifier: 0Emd/7XlXSBmj/z+XWayTydS3uKoXYrs62DaDSYjTjo=
Subject key identifier: AB:8A:CA:89:60:CF:6C:64:8E:02:BA:24:9F:BC:AF:77:4D:BB:39:B7
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 3BE946173824DC63A374AE0AF7FF3FE324EE78E1
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/ea770fb0-0f56-4549-9344-0c522aae687b.roa
Signing time: Wed 03 Aug 2022 00:00:00 +0000
ROA not before: Wed 03 Aug 2022 00:00:00 +0000
ROA not after: Sat 06 Aug 2022 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3b:e9:46:17:38:24:dc:63:a3:74:ae:0a:f7:ff:3f:e3:24:ee:78:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Aug 3 00:00:00 2022 GMT
Not After : Aug 6 23:59:59 2022 GMT
Subject: serialNumber=fc9fb12505256e757ff0985ba9335ee0badbb00d273a16cbfda93aedc03f8d30, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:c1:8d:d3:4c:0a:a3:bf:15:88:f8:fb:5f:2b:
8e:74:0a:e2:cd:dc:70:12:0b:45:49:a0:a6:5a:1e:
ad:ac:93:6f:96:71:a2:56:36:2b:23:54:07:72:ba:
5d:9f:04:16:ef:02:0f:01:fe:0a:06:25:e2:ea:63:
94:1f:d9:4b:77:54:3d:35:b3:bf:1d:5e:ed:a4:ec:
f6:a7:79:9d:6f:a2:69:37:45:d3:3c:e0:83:5d:ce:
3a:7f:e4:a9:fb:39:bc:0d:0a:57:df:6d:93:99:97:
03:69:94:e1:b6:ad:50:99:ca:a5:fb:26:77:d3:90:
1b:8c:bb:84:5a:30:07:f9:11:c0:0d:fc:65:a1:73:
55:a2:02:bf:59:f8:8e:66:70:cc:bc:ea:80:e7:5c:
0b:54:92:b2:ad:44:ec:17:af:79:df:b1:c1:47:e9:
5a:f0:28:8d:75:18:7a:99:83:f2:f9:ec:01:62:0d:
40:1a:c2:ed:bc:9a:39:ca:15:e4:98:ac:4a:d9:39:
60:d5:c9:09:a0:ad:60:bf:3f:39:10:f8:26:81:66:
1c:e4:0b:28:a4:a5:85:2f:ef:7e:77:47:77:6d:7f:
f9:a0:3b:26:4e:71:80:2d:18:f0:60:fc:80:43:e5:
34:1c:f8:ed:dd:8b:f8:25:e8:5b:1f:b4:6b:1c:24:
50:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:8A:CA:89:60:CF:6C:64:8E:02:BA:24:9F:BC:AF:77:4D:BB:39:B7
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/ea770fb0-0f56-4549-9344-0c522aae687b.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
37:d1:55:16:9b:aa:96:c1:16:5a:4a:35:6c:60:b2:ad:42:de:
5a:e1:75:57:22:43:c7:13:da:6e:7e:a4:9a:da:90:fa:36:74:
33:65:60:ed:9c:04:32:62:10:97:bb:bb:b0:7d:cb:ec:2f:47:
0f:f3:a9:9b:d0:dc:29:1b:ca:08:b5:3b:95:bc:03:8e:48:07:
61:9e:3c:3b:72:23:9c:84:6d:30:5b:08:0a:30:a8:a9:ac:dd:
3e:75:a1:1d:bb:a5:ad:8b:b2:85:c0:aa:77:87:e8:a5:5e:93:
22:40:37:c0:65:50:0e:63:b0:5f:b0:84:95:6b:e1:cc:bf:e7:
09:25:d4:4e:bb:f5:47:63:51:84:95:73:8e:ba:d0:bb:10:76:
0b:1c:69:a9:7e:98:da:c0:68:71:be:2d:c9:96:1a:55:d9:98:
b5:32:1d:b9:47:e8:0e:87:14:49:a3:ba:82:9d:d2:8a:1e:a0:
05:02:df:c0:16:87:35:19:db:23:3b:13:16:ec:60:1e:e5:8c:
6c:43:13:21:b3:8c:08:2f:8d:34:5a:e2:19:43:a3:3e:03:c8:
27:58:70:fc:a3:9e:7d:13:52:4e:09:46:10:11:d3:5b:7c:95:
46:a1:f1:b4:42:02:0a:8b:db:98:93:61:6b:ab:27:19:15:20:
5f:68:3f:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:52 2023 by rpki-client on console-ams.rpki-client.org