Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/f0f12aa4-3b55-47ad-af0b-80faf033b236.roa
File: f0f12aa4-3b55-47ad-af0b-80faf033b236.roa (raw, json)
Hash identifier: 0euwNjgkO8WXpzJbo2hb1d3w9jkWmOQA4A5Qgvc3jRw=
Subject key identifier: 3A:47:33:90:E8:4E:F8:2B:B2:D8:BB:B5:5E:26:DA:30:24:4F:31:42
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 3241440B2639E0F39EFC2997A9DEE901D3558FB9
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/f0f12aa4-3b55-47ad-af0b-80faf033b236.roa
Signing time: Sun 24 Jul 2022 00:00:00 +0000
ROA not before: Sun 24 Jul 2022 00:00:00 +0000
ROA not after: Wed 27 Jul 2022 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
32:41:44:0b:26:39:e0:f3:9e:fc:29:97:a9:de:e9:01:d3:55:8f:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Jul 24 00:00:00 2022 GMT
Not After : Jul 27 23:59:59 2022 GMT
Subject: serialNumber=795b07c0c71049c2d07e9cdc82818fc23e01356633ccf425a345b83c62ca3138, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:db:05:fa:87:03:71:71:63:13:dc:bd:e6:6a:
b8:e5:3d:a7:58:d5:f1:bc:ae:33:70:c3:fd:0c:b8:
6d:39:e9:8e:54:40:37:a7:2a:cf:7f:f7:cb:c0:b8:
f4:56:00:89:98:9d:c8:5b:dc:86:a9:92:33:9f:a7:
f6:d4:32:ef:48:3e:35:1d:bc:75:23:b0:7c:39:46:
62:ac:fd:06:f5:c2:f1:b2:37:ae:da:3e:6b:14:f0:
af:55:06:fe:26:cf:2b:d4:4c:79:0a:14:64:30:1e:
37:c1:d1:81:cd:41:ed:84:c1:22:ab:a7:20:0c:b4:
97:58:ec:65:d8:4c:a8:80:75:48:d0:16:d0:93:16:
d7:97:e4:86:e7:04:f8:fc:7d:d3:99:15:a5:fa:a4:
2a:e0:c4:bb:16:a1:8d:11:23:65:fa:b3:97:c6:c0:
c2:25:69:f7:3a:94:06:8a:be:c5:87:11:3f:30:3f:
38:a4:0e:18:0f:11:b8:56:9b:a2:8c:ff:6e:75:b9:
db:08:aa:d2:82:d3:8f:fd:b5:0a:43:2e:90:d2:ec:
78:f8:ee:49:32:15:b5:7b:6e:59:4f:7f:bd:50:30:
a3:63:ae:d1:df:4b:0e:c6:6c:ce:43:07:f0:12:3f:
8d:ed:ed:3f:1c:1d:19:fb:84:10:a2:74:77:95:bb:
42:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:47:33:90:E8:4E:F8:2B:B2:D8:BB:B5:5E:26:DA:30:24:4F:31:42
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/f0f12aa4-3b55-47ad-af0b-80faf033b236.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
b3:fb:9f:da:53:8c:39:e6:fc:aa:9a:e2:88:5e:47:7b:6d:1b:
a0:09:d7:51:78:04:26:ce:b2:d0:b3:be:a4:6f:b4:ac:ba:b0:
05:87:d9:1b:3e:2a:df:6b:ea:62:20:46:75:ef:f8:6c:e9:6c:
f8:26:35:e2:61:cb:e7:5c:30:87:57:af:25:ec:a2:eb:c3:24:
a8:80:03:0c:b5:c6:39:7d:13:49:d3:07:79:e8:72:60:b0:01:
d5:36:fa:68:c3:59:8d:a5:5d:b1:02:5d:ec:88:7f:8b:c8:ac:
ac:fd:5b:03:60:94:6c:c8:02:8e:f2:a4:73:73:a2:10:88:b6:
70:0b:60:39:c9:1e:fe:d3:7b:cd:5c:d9:7c:9a:cc:94:c2:c0:
e7:99:0a:fd:1b:63:d2:18:5b:50:92:84:5c:eb:a0:f2:05:14:
83:d9:f7:53:a0:63:7c:fd:25:0d:ed:f0:e8:48:b2:4d:82:31:
4c:fc:aa:89:3e:87:93:03:54:93:51:8e:38:2d:50:d7:98:69:
06:4f:bc:4b:35:1a:16:bd:1f:07:18:6e:eb:d9:f8:98:f1:96:
f0:38:08:61:3f:46:d3:99:1a:23:d9:02:13:cc:af:3d:a0:c1:
73:6a:74:8a:d4:af:38:3c:be:48:44:b9:bd:39:82:31:ef:1b:
eb:be:1d:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:53 2023 by rpki-client on console-ams.rpki-client.org