Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/00fd10bf-2099-477c-b996-c02eb1faec65.roa
File: 00fd10bf-2099-477c-b996-c02eb1faec65.roa (raw, json)
Hash identifier: sDr29pfvC7lD/fLGiCwQo+ThB1/q5FKL/u5qjbHsLlM=
Subject key identifier: 9F:DE:A6:0B:DE:EF:3A:33:F4:81:E9:91:C8:BA:24:FD:A2:94:0E:C6
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 29B42A7CB4A46AED7C8F62A1AD9C492FB5C54BCF
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/00fd10bf-2099-477c-b996-c02eb1faec65.roa
Signing time: Tue 11 Apr 2023 00:00:00 +0000
ROA not before: Tue 11 Apr 2023 00:00:00 +0000
ROA not after: Fri 14 Apr 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
29:b4:2a:7c:b4:a4:6a:ed:7c:8f:62:a1:ad:9c:49:2f:b5:c5:4b:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Apr 11 00:00:00 2023 GMT
Not After : Apr 14 23:59:59 2023 GMT
Subject: serialNumber=69cefcd2e9c8b8542f7116a333647c64ca543fcc052535c9c8800a4a7b9fcdcb, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:2f:51:f7:47:26:ef:bf:81:74:3e:86:72:1b:
14:a5:fa:7e:09:c6:a9:a5:fe:0c:d6:11:c2:c7:61:
e0:ed:be:bc:44:d1:47:ef:98:e1:05:54:b0:8e:63:
9b:ef:a4:e6:fc:d8:5a:81:0c:43:da:4c:d1:39:84:
57:a6:26:7f:d3:10:67:f9:e6:7d:a4:eb:c5:15:58:
24:6c:75:cd:d9:0f:11:56:89:d2:ce:52:d1:aa:ff:
49:54:5a:cb:6b:e3:05:3a:b1:e5:c5:40:af:27:81:
51:ed:5e:f5:42:c5:44:d3:14:f4:82:6c:ac:c1:7c:
c8:57:5c:28:a7:f6:4d:fe:a7:f4:2a:06:6b:e1:af:
61:3f:1b:4c:52:81:bf:f8:15:ae:2f:f1:9c:03:24:
ad:38:cf:43:67:27:2d:bb:4e:f6:e9:3f:fc:0e:1d:
dc:03:c5:dd:8f:c9:73:7f:cf:5f:dd:80:61:79:43:
15:cb:5b:90:b4:39:ce:0c:40:21:36:e2:66:a1:c0:
d8:42:fb:48:e1:c1:7c:50:22:c4:51:a6:87:0d:40:
7b:2d:c5:1e:59:6b:ce:bc:1b:3e:8b:95:82:1f:a5:
7b:60:a7:8a:0e:e1:4a:11:66:09:1c:51:81:38:70:
51:2c:44:a8:9c:30:b4:1a:b7:07:6b:6a:0e:33:20:
e6:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:DE:A6:0B:DE:EF:3A:33:F4:81:E9:91:C8:BA:24:FD:A2:94:0E:C6
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/00fd10bf-2099-477c-b996-c02eb1faec65.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
44:5b:d0:de:49:e1:7f:3b:7f:0e:c1:f2:21:2f:c2:92:75:85:
4d:72:ad:2c:76:10:04:f1:7f:c7:75:bd:23:f0:ff:29:9d:8d:
18:fe:b0:4c:3f:02:98:76:3f:7a:12:d9:30:82:e2:99:9b:8b:
61:ab:ae:40:cd:0b:ef:3d:28:7f:b8:af:55:dc:b7:f1:04:ce:
07:9a:6a:92:db:42:41:89:39:78:f0:f3:3a:40:ef:bd:8c:8c:
1e:80:9b:22:ab:2a:d1:92:98:73:8b:ce:88:9e:c1:25:17:7e:
7d:8e:fb:56:6a:eb:bf:b1:65:d6:12:81:39:1b:87:03:36:a7:
2b:7d:1d:14:d6:3e:02:5e:6e:8b:51:dc:db:f5:66:73:49:a0:
58:5e:f8:81:4f:b7:ec:74:fe:10:16:44:ea:a7:41:31:5f:b7:
18:e6:29:f4:57:a8:39:69:a7:4f:68:d8:fd:cc:94:81:be:e5:
7b:b5:13:84:ea:d3:5f:95:d3:21:35:49:08:b3:b2:bf:91:91:
23:72:05:c5:d5:0c:0d:ea:da:0f:0e:e4:0e:51:e4:46:8c:49:
f3:d8:ed:f5:c4:0f:08:17:57:f7:9d:1e:6b:95:13:31:31:c7:
b3:4c:7b:5c:ac:4f:28:49:52:e4:80:e3:b3:45:7a:39:e2:54:
a2:14:f9:08
-----BEGIN CERTIFICATE-----
MIIGMTCCBRmgAwIBAgIUKbQqfLSkau18j2KhrZxJL7XFS88wDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyMjc4YWFiODc4ZjI4MzFiYjE4MjNiNTg3OTRiMDkyZDg2
ZmIxZDdhMGY3NGUyODE2MTEwHhcNMjMwNDExMDAwMDAwWhcNMjMwNDE0MjM1OTU5
WjCBpTFJMEcGA1UEBRNANjljZWZjZDJlOWM4Yjg1NDJmNzExNmEzMzM2NDdjNjRj
YTU0M2ZjYzA1MjUzNWM5Yzg4MDBhNGE3YjlmY2RjYjEtMCsGA1UEAxMkNmFlNGU1
NjctNjM0OC00YzRmLTk4YTgtMDQyMmM0YzUyZmYzMRQwEgYDVQQLEwtBbWF6b24g
UlBLSTETMBEGA1UEChMKQW1hem9uLmNvbTCCASIwDQYJKoZIhvcNAQEBBQADggEP
ADCCAQoCggEBAIwvUfdHJu+/gXQ+hnIbFKX6fgnGqaX+DNYRwsdh4O2+vETRR++Y
4QVUsI5jm++k5vzYWoEMQ9pM0TmEV6Ymf9MQZ/nmfaTrxRVYJGx1zdkPEVaJ0s5S
0ar/SVRay2vjBTqx5cVAryeBUe1e9ULFRNMU9IJsrMF8yFdcKKf2Tf6n9CoGa+Gv
YT8bTFKBv/gVri/xnAMkrTjPQ2cnLbtO9uk//A4d3APF3Y/Jc3/PX92AYXlDFctb
kLQ5zgxAITbiZqHA2EL7SOHBfFAixFGmhw1Aey3FHllrzrwbPouVgh+le2Cnig7h
ShFmCRxRgThwUSxEqJwwtBq3B2tqDjMg5tcCAwEAAaOCAr4wggK6MB0GA1UdDgQW
BBSf3qYL3u86M/SB6ZHIuiT9opQOxjAfBgNVHSMEGDAWgBSRRO3HpA7pkLf6Nm/2
4X15rcSDlzAOBgNVHQ8BAf8EBAMCB4AwgfMGCCsGAQUFBwEBBIHmMIHjMIHgBggr
BgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2FyaW4t
cnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMvMDM1
NzI3MmMtYTc5YS00NWJmLTk1ODYtOTJkZDQ5ZWYzMjIzLzczZjIxYzJiLTg4MjMt
NGMyNC1iMjViLTQzYzgwY2I2ZDFiYi8yNzhhYWI4NzhmMjgzMWJiMTgyM2I1ODc5
NGIwOTJkODZmYjFkN2EwZjc0ZTI4MTYxMS5jZXIwgZ4GCCsGAQUFBwELBIGRMIGO
MIGLBggrBgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6
b25hd3MuY29tL3ZvbHVtZS9iNjhhMzJlZS00NTVkLTQ4M2EtOTQzZC0xYTViZTc0
OGJmZWEvMDBmZDEwYmYtMjA5OS00NzdjLWI5OTYtYzAyZWIxZmFlYzY1LnJvYTCB
lQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I2OGEzMmVlLTQ1NWQtNDgzYS05NDNk
LTFhNWJlNzQ4YmZlYS80YmI4YWU1Yy0xMjRjLTQyZjMtODdmYi00ZjM0ZTc0ZTNk
YTIuY3JsMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8E
EDAOMAwEAgABMAYDBADHJHgwDQYJKoZIhvcNAQELBQADggEBAERb0N5J4X87fw7B
8iEvwpJ1hU1yrSx2EATxf8d1vSPw/ymdjRj+sEw/Aph2P3oS2TCC4pmbi2GrrkDN
C+89KH+4r1Xct/EEzgeaapLbQkGJOXjw8zpA772MjB6AmyKrKtGSmHOLzoiewSUX
fn2O+1Zq67+xZdYSgTkbhwM2pyt9HRTWPgJebotR3Nv1ZnNJoFhe+IFPt+x0/hAW
ROqnQTFftxjmKfRXqDlpp09o2P3MlIG+5Xu1E4Tq01+V0yE1SQizsr+RkSNyBcXV
DA3q2g8O5A5R5EaMSfPY7fXEDwgXV/edHmuVEzExx7NMe1ysTyhJUuSA47NFejni
VKIU+Qg=
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:31 2023 by rpki-client on console-fra.rpki-client.org