Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/064c5298-026e-4634-8c90-22797270eac3.roa
File: 064c5298-026e-4634-8c90-22797270eac3.roa (raw, json)
Hash identifier: TfqqUeBeb6OepaJbu6KBpM+YPSD6l9SmwLG8Ba8C6XI=
Subject key identifier: BC:8D:8E:9B:4B:B9:CC:5E:11:AA:4B:B0:07:DC:8F:05:A2:83:24:7C
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 5BFEBC6BCDF0FB335D2FCCE331E8C5EB8C578641
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/064c5298-026e-4634-8c90-22797270eac3.roa
Signing time: Fri 17 Mar 2023 00:00:00 +0000
ROA not before: Fri 17 Mar 2023 00:00:00 +0000
ROA not after: Mon 20 Mar 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5b:fe:bc:6b:cd:f0:fb:33:5d:2f:cc:e3:31:e8:c5:eb:8c:57:86:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Mar 17 00:00:00 2023 GMT
Not After : Mar 20 23:59:59 2023 GMT
Subject: serialNumber=3024716bef6b27e3c8776944f1f1106fe3337f978a788e16dd05241d0aa81f6f, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:7d:5f:4c:80:66:99:48:22:5b:92:b9:ae:47:
87:2a:f3:cd:8c:aa:37:d8:b2:af:b3:8a:63:fb:48:
95:62:c5:fe:e0:cb:8e:69:8a:1d:94:25:56:5c:0f:
b3:5f:21:f8:bd:fc:e5:f8:d8:8a:23:25:a8:6b:7d:
77:23:c7:e5:25:b8:99:d8:ef:e8:9f:dc:90:e3:fc:
c7:5a:2d:5c:46:34:46:b8:c2:3f:c0:05:31:72:c0:
75:ec:e0:85:0e:e9:8e:f9:20:e2:91:94:da:94:ee:
a6:b0:3d:1e:66:49:72:71:a2:c5:63:82:a1:6a:28:
65:2f:92:df:7c:13:40:ca:a8:40:bb:54:da:11:d5:
4d:63:db:82:ad:d7:22:e6:22:40:9b:9f:7d:e7:88:
78:3c:c6:fb:94:28:33:ab:c9:a6:60:ae:10:46:bc:
e3:3f:23:db:9e:23:a6:3a:6a:90:2b:98:ef:90:0c:
b8:25:93:e4:0d:5b:ce:eb:31:e9:f1:5c:ae:78:11:
29:84:16:85:b6:67:64:3f:4b:2e:00:4e:a2:74:f5:
8c:fe:1d:44:00:b6:3f:d3:0e:44:40:ee:70:f0:a6:
ce:60:7c:71:a7:0a:9b:cd:77:54:31:ec:8f:26:80:
78:02:5c:fd:9c:4d:71:ab:3f:e1:0f:9a:f4:92:af:
7f:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:8D:8E:9B:4B:B9:CC:5E:11:AA:4B:B0:07:DC:8F:05:A2:83:24:7C
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/064c5298-026e-4634-8c90-22797270eac3.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
50:d5:65:fb:d4:3b:ef:ed:11:ad:91:20:dc:f8:a3:2c:bc:ff:
82:cb:1f:fd:44:cd:54:22:5a:c4:80:5b:a2:28:52:5c:2d:73:
df:7b:4f:32:db:db:09:70:1d:ba:bc:af:64:11:d8:62:eb:29:
c3:d4:78:94:79:ba:9f:4c:c5:1f:bc:e7:9e:4d:0b:1f:10:69:
1e:07:d8:e3:22:18:0c:fa:73:0e:13:c8:00:6d:d8:c9:7d:f4:
1d:97:f8:0a:05:f0:87:d8:ba:41:18:a4:37:2f:b2:4d:87:aa:
cf:62:b8:50:5e:e2:1a:f3:2b:29:73:54:74:97:29:a7:47:7d:
62:6e:5b:57:68:a8:cb:08:2b:3e:94:04:e6:78:3c:2f:24:bf:
6f:7e:b1:6a:f9:a2:57:32:3c:f8:4d:ac:8f:c6:df:d0:24:ac:
06:02:88:a8:18:c3:c2:c0:5d:34:b8:da:15:45:fc:5b:5c:69:
32:eb:18:e7:8f:21:ef:bb:b5:08:e8:b1:c2:2e:b2:d8:8d:a6:
d8:50:cc:3d:79:73:7a:ee:ef:ef:1d:62:87:f8:57:f5:3a:d3:
d8:1c:1e:8b:a1:2d:10:00:cc:7b:93:c3:3f:94:e3:49:a1:a7:
75:40:63:1b:6c:54:d9:5f:18:2b:17:0c:de:98:1c:13:45:0b:
e1:4e:e8:d2
-----BEGIN CERTIFICATE-----
MIIGMTCCBRmgAwIBAgIUW/68a83w+zNdL8zjMejF64xXhkEwDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyMjc4YWFiODc4ZjI4MzFiYjE4MjNiNTg3OTRiMDkyZDg2
ZmIxZDdhMGY3NGUyODE2MTEwHhcNMjMwMzE3MDAwMDAwWhcNMjMwMzIwMjM1OTU5
WjCBpTFJMEcGA1UEBRNAMzAyNDcxNmJlZjZiMjdlM2M4Nzc2OTQ0ZjFmMTEwNmZl
MzMzN2Y5NzhhNzg4ZTE2ZGQwNTI0MWQwYWE4MWY2ZjEtMCsGA1UEAxMkNmFlNGU1
NjctNjM0OC00YzRmLTk4YTgtMDQyMmM0YzUyZmYzMRQwEgYDVQQLEwtBbWF6b24g
UlBLSTETMBEGA1UEChMKQW1hem9uLmNvbTCCASIwDQYJKoZIhvcNAQEBBQADggEP
ADCCAQoCggEBAKt9X0yAZplIIluSua5HhyrzzYyqN9iyr7OKY/tIlWLF/uDLjmmK
HZQlVlwPs18h+L385fjYiiMlqGt9dyPH5SW4mdjv6J/ckOP8x1otXEY0RrjCP8AF
MXLAdezghQ7pjvkg4pGU2pTuprA9HmZJcnGixWOCoWooZS+S33wTQMqoQLtU2hHV
TWPbgq3XIuYiQJuffeeIeDzG+5QoM6vJpmCuEEa84z8j254jpjpqkCuY75AMuCWT
5A1bzusx6fFcrngRKYQWhbZnZD9LLgBOonT1jP4dRAC2P9MOREDucPCmzmB8cacK
m813VDHsjyaAeAJc/ZxNcas/4Q+a9JKvf7MCAwEAAaOCAr4wggK6MB0GA1UdDgQW
BBS8jY6bS7nMXhGqS7AH3I8FooMkfDAfBgNVHSMEGDAWgBSRRO3HpA7pkLf6Nm/2
4X15rcSDlzAOBgNVHQ8BAf8EBAMCB4AwgfMGCCsGAQUFBwEBBIHmMIHjMIHgBggr
BgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2FyaW4t
cnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMvMDM1
NzI3MmMtYTc5YS00NWJmLTk1ODYtOTJkZDQ5ZWYzMjIzLzczZjIxYzJiLTg4MjMt
NGMyNC1iMjViLTQzYzgwY2I2ZDFiYi8yNzhhYWI4NzhmMjgzMWJiMTgyM2I1ODc5
NGIwOTJkODZmYjFkN2EwZjc0ZTI4MTYxMS5jZXIwgZ4GCCsGAQUFBwELBIGRMIGO
MIGLBggrBgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6
b25hd3MuY29tL3ZvbHVtZS9iNjhhMzJlZS00NTVkLTQ4M2EtOTQzZC0xYTViZTc0
OGJmZWEvMDY0YzUyOTgtMDI2ZS00NjM0LThjOTAtMjI3OTcyNzBlYWMzLnJvYTCB
lQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I2OGEzMmVlLTQ1NWQtNDgzYS05NDNk
LTFhNWJlNzQ4YmZlYS80YmI4YWU1Yy0xMjRjLTQyZjMtODdmYi00ZjM0ZTc0ZTNk
YTIuY3JsMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8E
EDAOMAwEAgABMAYDBADHJHgwDQYJKoZIhvcNAQELBQADggEBAFDVZfvUO+/tEa2R
INz4oyy8/4LLH/1EzVQiWsSAW6IoUlwtc997TzLb2wlwHbq8r2QR2GLrKcPUeJR5
up9MxR+8555NCx8QaR4H2OMiGAz6cw4TyABt2Ml99B2X+AoF8IfYukEYpDcvsk2H
qs9iuFBe4hrzKylzVHSXKadHfWJuW1doqMsIKz6UBOZ4PC8kv29+sWr5olcyPPhN
rI/G39AkrAYCiKgYw8LAXTS42hVF/FtcaTLrGOePIe+7tQjoscIustiNpthQzD15
c3ru7+8dYof4V/U609gcHouhLRAAzHuTwz+U40mhp3VAYxtsVNlfGCsXDN6YHBNF
C+FO6NI=
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:31 2023 by rpki-client on console-fra.rpki-client.org