Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/058ac169-e1b9-413f-a419-895e66259a0f.roa
File: 058ac169-e1b9-413f-a419-895e66259a0f.roa (raw, json)
Hash identifier: ZuYzBjqCwWRKNNOtgyZS7xLUldE6ySQk5l290sA+FKI=
Subject key identifier: E8:6F:9B:FF:D5:91:67:46:43:37:9F:54:77:0E:58:69:78:13:17:96
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 60F07FA607972433D8E815149901F6E623B63AB9
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/058ac169-e1b9-413f-a419-895e66259a0f.roa
Signing time: Thu 23 Mar 2023 00:00:00 +0000
ROA not before: Thu 23 Mar 2023 00:00:00 +0000
ROA not after: Sun 26 Mar 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
60:f0:7f:a6:07:97:24:33:d8:e8:15:14:99:01:f6:e6:23:b6:3a:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Mar 23 00:00:00 2023 GMT
Not After : Mar 26 23:59:59 2023 GMT
Subject: serialNumber=272340435f228d91befac5065c50ce1f1c30364d58735b3a5027b5ff2edae794, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:7a:c8:da:be:8a:0e:7a:d4:eb:84:bb:91:f4:
80:55:e2:d2:8e:17:a9:ee:35:14:36:ba:ce:89:eb:
b0:1b:4f:b7:cf:fa:1a:dc:eb:4f:d1:20:a9:ad:99:
c1:dc:4b:f9:56:72:c4:d2:55:18:fc:77:e7:52:ea:
3f:d6:39:93:ee:da:a6:23:e1:b8:72:9e:e2:fc:d8:
d5:ad:72:87:d8:f4:23:c3:72:8e:21:ed:46:9e:bb:
0b:a4:c5:f6:3d:68:65:c2:47:01:e1:7a:f0:0e:ba:
a1:9b:25:0f:00:bd:a7:4d:fc:34:1b:ac:73:13:4b:
57:03:6e:49:a6:ca:ad:72:fc:2a:85:b3:13:fc:e3:
c2:e8:bf:73:7b:18:6d:39:7d:ec:b4:b1:36:07:6c:
ba:3d:9d:0c:54:84:2d:3c:20:8f:aa:a9:51:d4:0f:
90:05:b8:5a:22:b0:1c:1e:a3:11:f2:72:64:1f:0e:
5a:9f:78:10:13:9b:31:71:a6:71:5e:4f:e1:b1:b8:
c8:e2:a3:66:e8:10:2f:46:4a:f1:15:b7:77:4c:82:
d1:c5:58:74:2f:c0:a0:89:a1:9b:75:55:3f:27:14:
b2:fd:01:8a:39:b0:08:cc:d1:37:d4:28:10:86:5b:
7b:ba:ff:f4:53:f6:00:ca:4a:60:4d:b1:22:3a:7e:
ee:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:6F:9B:FF:D5:91:67:46:43:37:9F:54:77:0E:58:69:78:13:17:96
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/058ac169-e1b9-413f-a419-895e66259a0f.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
94:d2:4f:e6:05:f3:bc:74:41:fa:be:39:9f:d0:73:93:cd:ef:
ea:fd:d8:29:2e:92:26:61:e2:fa:1d:b9:57:42:50:93:22:c5:
6e:3e:78:42:78:11:ee:fb:f6:d4:ff:71:4c:23:13:2c:33:c2:
48:21:1c:1c:ea:c3:2c:f1:12:75:6d:cf:47:7c:32:3a:e9:04:
64:79:c0:1d:1f:b7:65:ff:5f:01:33:1b:47:94:0d:d5:d6:9f:
68:d7:55:39:c2:50:3b:5b:be:59:9c:5b:7f:56:ca:1c:db:a1:
67:31:d7:f1:f4:60:8a:d7:39:bb:1c:fe:d2:77:42:87:67:a2:
f0:f4:c7:11:75:c0:8c:17:43:ad:29:82:a8:9a:79:7f:5f:34:
03:c8:b6:af:e9:f8:05:d6:17:1b:c7:f2:c5:df:1f:7d:43:14:
e0:9e:c0:35:60:ba:22:8d:67:0f:56:6c:be:93:d7:33:40:cd:
bd:96:88:78:5a:48:08:bc:fe:24:c9:3f:ba:a9:f2:5d:fc:f7:
d8:3b:e5:b1:00:3c:a3:1c:a3:ee:10:db:96:2b:a9:70:34:8c:
85:a2:08:a9:61:c2:4d:d6:dd:ef:50:19:8d:ba:95:4c:56:2d:
ae:eb:81:72:c0:09:0b:0c:a8:d3:ab:c6:2d:80:66:52:a3:2f:
d2:f0:5f:14
-----BEGIN CERTIFICATE-----
MIIGMTCCBRmgAwIBAgIUYPB/pgeXJDPY6BUUmQH25iO2OrkwDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyMjc4YWFiODc4ZjI4MzFiYjE4MjNiNTg3OTRiMDkyZDg2
ZmIxZDdhMGY3NGUyODE2MTEwHhcNMjMwMzIzMDAwMDAwWhcNMjMwMzI2MjM1OTU5
WjCBpTFJMEcGA1UEBRNAMjcyMzQwNDM1ZjIyOGQ5MWJlZmFjNTA2NWM1MGNlMWYx
YzMwMzY0ZDU4NzM1YjNhNTAyN2I1ZmYyZWRhZTc5NDEtMCsGA1UEAxMkNmFlNGU1
NjctNjM0OC00YzRmLTk4YTgtMDQyMmM0YzUyZmYzMRQwEgYDVQQLEwtBbWF6b24g
UlBLSTETMBEGA1UEChMKQW1hem9uLmNvbTCCASIwDQYJKoZIhvcNAQEBBQADggEP
ADCCAQoCggEBAJt6yNq+ig561OuEu5H0gFXi0o4Xqe41FDa6zonrsBtPt8/6Gtzr
T9Egqa2ZwdxL+VZyxNJVGPx351LqP9Y5k+7apiPhuHKe4vzY1a1yh9j0I8NyjiHt
Rp67C6TF9j1oZcJHAeF68A66oZslDwC9p038NBuscxNLVwNuSabKrXL8KoWzE/zj
wui/c3sYbTl97LSxNgdsuj2dDFSELTwgj6qpUdQPkAW4WiKwHB6jEfJyZB8OWp94
EBObMXGmcV5P4bG4yOKjZugQL0ZK8RW3d0yC0cVYdC/AoImhm3VVPycUsv0Bijmw
CMzRN9QoEIZbe7r/9FP2AMpKYE2xIjp+7r0CAwEAAaOCAr4wggK6MB0GA1UdDgQW
BBTob5v/1ZFnRkM3n1R3DlhpeBMXljAfBgNVHSMEGDAWgBSRRO3HpA7pkLf6Nm/2
4X15rcSDlzAOBgNVHQ8BAf8EBAMCB4AwgfMGCCsGAQUFBwEBBIHmMIHjMIHgBggr
BgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2FyaW4t
cnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMvMDM1
NzI3MmMtYTc5YS00NWJmLTk1ODYtOTJkZDQ5ZWYzMjIzLzczZjIxYzJiLTg4MjMt
NGMyNC1iMjViLTQzYzgwY2I2ZDFiYi8yNzhhYWI4NzhmMjgzMWJiMTgyM2I1ODc5
NGIwOTJkODZmYjFkN2EwZjc0ZTI4MTYxMS5jZXIwgZ4GCCsGAQUFBwELBIGRMIGO
MIGLBggrBgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6
b25hd3MuY29tL3ZvbHVtZS9iNjhhMzJlZS00NTVkLTQ4M2EtOTQzZC0xYTViZTc0
OGJmZWEvMDU4YWMxNjktZTFiOS00MTNmLWE0MTktODk1ZTY2MjU5YTBmLnJvYTCB
lQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I2OGEzMmVlLTQ1NWQtNDgzYS05NDNk
LTFhNWJlNzQ4YmZlYS80YmI4YWU1Yy0xMjRjLTQyZjMtODdmYi00ZjM0ZTc0ZTNk
YTIuY3JsMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8E
EDAOMAwEAgABMAYDBADHJHgwDQYJKoZIhvcNAQELBQADggEBAJTST+YF87x0Qfq+
OZ/Qc5PN7+r92CkukiZh4voduVdCUJMixW4+eEJ4Ee779tT/cUwjEywzwkghHBzq
wyzxEnVtz0d8MjrpBGR5wB0ft2X/XwEzG0eUDdXWn2jXVTnCUDtbvlmcW39Wyhzb
oWcx1/H0YIrXObsc/tJ3QodnovD0xxF1wIwXQ60pgqiaeX9fNAPItq/p+AXWFxvH
8sXfH31DFOCewDVguiKNZw9WbL6T1zNAzb2WiHhaSAi8/iTJP7qp8l3899g75bEA
PKMco+4Q25YrqXA0jIWiCKlhwk3W3e9QGY26lUxWLa7rgXLACQsMqNOrxi2AZlKj
L9LwXxQ=
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:31 2023 by rpki-client on console-fra.rpki-client.org