Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/11660770-00db-445f-940a-a4ec71f08456.roa
File: 11660770-00db-445f-940a-a4ec71f08456.roa (raw, json)
Hash identifier: FLhCgTlMOn2YnW4rsDIDOqL/E+TUR+ULB/8Z/okDwnU=
Subject key identifier: FB:A9:41:42:E5:5B:4D:A7:9B:DF:E0:EF:D5:9B:16:12:44:93:58:FC
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 010A99A5BC8C56C1A34DBAA07CA25104267F3745
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/11660770-00db-445f-940a-a4ec71f08456.roa
Signing time: Fri 17 Mar 2023 00:00:00 +0000
ROA not before: Fri 17 Mar 2023 00:00:00 +0000
ROA not after: Mon 20 Mar 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:0a:99:a5:bc:8c:56:c1:a3:4d:ba:a0:7c:a2:51:04:26:7f:37:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Mar 17 00:00:00 2023 GMT
Not After : Mar 20 23:59:59 2023 GMT
Subject: serialNumber=8aefe2d4b903749a7a63bc407702f7694757ce040a106ff739b36fff849bd0b2, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:6c:6d:8f:f3:6a:c7:25:ea:0d:13:87:99:ca:
e8:33:40:6f:a3:1c:91:86:f1:bf:58:f9:6a:e3:58:
71:05:5e:44:ec:17:a3:94:5e:7a:e5:91:c7:ef:56:
8c:c0:dc:23:b0:74:68:1a:02:dd:18:84:07:56:95:
b4:95:78:eb:08:6e:a1:84:ac:9d:b1:20:ef:ad:c3:
03:3d:32:c3:69:70:16:33:fb:e4:15:1b:4f:2e:9c:
2a:db:2b:01:21:4e:a1:77:34:1a:49:c2:f8:6a:b0:
98:4e:c3:3c:2c:4b:97:5c:16:82:0e:c6:25:5d:d9:
5b:41:4a:b3:33:46:f9:a2:53:27:51:d7:27:bc:24:
ba:63:dc:70:a9:10:eb:65:26:a8:4d:16:69:b8:d9:
9e:40:ec:82:57:64:e9:fb:1f:8e:9a:2f:e9:dc:46:
e6:df:eb:4c:3f:92:4b:ff:6b:32:7c:31:5c:d0:98:
62:4f:dd:d5:19:b6:c3:76:f2:cf:33:63:b3:51:48:
96:30:12:df:35:3a:3f:17:ba:a0:f6:dd:da:83:8d:
5e:ff:02:57:61:4d:71:73:9e:c3:ad:3b:6a:b0:e7:
1c:71:20:13:1c:b2:d8:82:c2:12:57:97:24:89:dd:
7e:65:ab:7d:96:49:ac:ac:c4:c0:13:f0:e0:1f:03:
68:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:A9:41:42:E5:5B:4D:A7:9B:DF:E0:EF:D5:9B:16:12:44:93:58:FC
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/11660770-00db-445f-940a-a4ec71f08456.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
07:2a:4b:3b:d5:7c:42:b9:d3:80:d5:a1:cc:63:65:4f:ac:fc:
9b:97:23:14:f2:e0:c8:76:e5:a5:44:51:84:f1:e6:b1:91:fd:
8d:ba:c2:84:c8:46:d2:81:1a:46:42:0d:65:4a:7e:df:04:a0:
2b:64:0d:2b:f9:b9:7b:c0:f2:32:46:b5:0e:de:11:2a:90:d1:
c2:5f:d1:d3:96:bd:d9:7e:84:90:26:07:79:83:73:05:b0:96:
a1:cc:dc:49:be:04:b4:51:37:07:75:d7:fb:15:df:b4:da:d7:
b5:31:fd:2d:58:d9:44:38:b2:3d:da:c6:af:a3:23:d1:a3:03:
0d:6d:7a:81:47:15:81:a3:09:9f:bf:45:b9:34:d9:71:8c:93:
f2:ba:3b:a0:71:80:a3:98:71:b4:7d:89:6d:d9:97:19:00:4b:
a6:52:20:aa:25:21:37:d8:83:a0:e7:20:07:e0:88:3c:4e:d8:
d8:87:55:8e:3d:12:85:8e:d8:62:b3:8e:b8:35:e7:fe:78:c8:
0f:b5:d4:4d:ab:63:43:2d:00:60:80:16:72:0a:83:e0:0b:6a:
f2:fa:30:ef:3b:29:75:f4:05:17:b0:b3:f2:61:58:45:9a:76:
16:2e:7f:08:90:70:24:f7:ff:28:1d:ea:e3:c1:43:d7:8f:04:
c3:0a:78:b0
-----BEGIN CERTIFICATE-----
MIIGMTCCBRmgAwIBAgIUAQqZpbyMVsGjTbqgfKJRBCZ/N0UwDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyMjc4YWFiODc4ZjI4MzFiYjE4MjNiNTg3OTRiMDkyZDg2
ZmIxZDdhMGY3NGUyODE2MTEwHhcNMjMwMzE3MDAwMDAwWhcNMjMwMzIwMjM1OTU5
WjCBpTFJMEcGA1UEBRNAOGFlZmUyZDRiOTAzNzQ5YTdhNjNiYzQwNzcwMmY3Njk0
NzU3Y2UwNDBhMTA2ZmY3MzliMzZmZmY4NDliZDBiMjEtMCsGA1UEAxMkNmFlNGU1
NjctNjM0OC00YzRmLTk4YTgtMDQyMmM0YzUyZmYzMRQwEgYDVQQLEwtBbWF6b24g
UlBLSTETMBEGA1UEChMKQW1hem9uLmNvbTCCASIwDQYJKoZIhvcNAQEBBQADggEP
ADCCAQoCggEBAJRsbY/zascl6g0Th5nK6DNAb6MckYbxv1j5auNYcQVeROwXo5Re
euWRx+9WjMDcI7B0aBoC3RiEB1aVtJV46whuoYSsnbEg763DAz0yw2lwFjP75BUb
Ty6cKtsrASFOoXc0GknC+GqwmE7DPCxLl1wWgg7GJV3ZW0FKszNG+aJTJ1HXJ7wk
umPccKkQ62UmqE0WabjZnkDsgldk6fsfjpov6dxG5t/rTD+SS/9rMnwxXNCYYk/d
1Rm2w3byzzNjs1FIljAS3zU6Pxe6oPbd2oONXv8CV2FNcXOew607arDnHHEgExyy
2ILCEleXJIndfmWrfZZJrKzEwBPw4B8DaFkCAwEAAaOCAr4wggK6MB0GA1UdDgQW
BBT7qUFC5VtNp5vf4O/VmxYSRJNY/DAfBgNVHSMEGDAWgBSRRO3HpA7pkLf6Nm/2
4X15rcSDlzAOBgNVHQ8BAf8EBAMCB4AwgfMGCCsGAQUFBwEBBIHmMIHjMIHgBggr
BgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2FyaW4t
cnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMvMDM1
NzI3MmMtYTc5YS00NWJmLTk1ODYtOTJkZDQ5ZWYzMjIzLzczZjIxYzJiLTg4MjMt
NGMyNC1iMjViLTQzYzgwY2I2ZDFiYi8yNzhhYWI4NzhmMjgzMWJiMTgyM2I1ODc5
NGIwOTJkODZmYjFkN2EwZjc0ZTI4MTYxMS5jZXIwgZ4GCCsGAQUFBwELBIGRMIGO
MIGLBggrBgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6
b25hd3MuY29tL3ZvbHVtZS9iNjhhMzJlZS00NTVkLTQ4M2EtOTQzZC0xYTViZTc0
OGJmZWEvMTE2NjA3NzAtMDBkYi00NDVmLTk0MGEtYTRlYzcxZjA4NDU2LnJvYTCB
lQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I2OGEzMmVlLTQ1NWQtNDgzYS05NDNk
LTFhNWJlNzQ4YmZlYS80YmI4YWU1Yy0xMjRjLTQyZjMtODdmYi00ZjM0ZTc0ZTNk
YTIuY3JsMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8E
EDAOMAwEAgABMAYDBADHJHgwDQYJKoZIhvcNAQELBQADggEBAAcqSzvVfEK504DV
ocxjZU+s/JuXIxTy4Mh25aVEUYTx5rGR/Y26woTIRtKBGkZCDWVKft8EoCtkDSv5
uXvA8jJGtQ7eESqQ0cJf0dOWvdl+hJAmB3mDcwWwlqHM3Em+BLRRNwd11/sV37Ta
17Ux/S1Y2UQ4sj3axq+jI9GjAw1teoFHFYGjCZ+/Rbk02XGMk/K6O6BxgKOYcbR9
iW3ZlxkAS6ZSIKolITfYg6DnIAfgiDxO2NiHVY49EoWO2GKzjrg15/54yA+11E2r
Y0MtAGCAFnIKg+ALavL6MO87KXX0BRews/JhWEWadhYufwiQcCT3/ygd6uPBQ9eP
BMMKeLA=
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:31 2023 by rpki-client on console-fra.rpki-client.org