Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/19afeba1-690a-430e-b10e-42f0a2543aca.roa
File: 19afeba1-690a-430e-b10e-42f0a2543aca.roa (raw, json)
Hash identifier: UOqD8tCn3Nnkzum22OS+OmL6qggauIXWf+McEmDybfA=
Subject key identifier: 00:2B:57:78:66:69:83:39:28:96:6B:A8:CA:46:FA:C4:55:5F:FE:2E
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 6AB15D55CE82CDE1F8E8AFF655BECC542508F62F
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/19afeba1-690a-430e-b10e-42f0a2543aca.roa
Signing time: Tue 29 Nov 2022 00:00:00 +0000
ROA not before: Tue 29 Nov 2022 00:00:00 +0000
ROA not after: Fri 02 Dec 2022 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6a:b1:5d:55:ce:82:cd:e1:f8:e8:af:f6:55:be:cc:54:25:08:f6:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Nov 29 00:00:00 2022 GMT
Not After : Dec 2 23:59:59 2022 GMT
Subject: serialNumber=c8120b4500512fa51d8f387d0da62745f2c34c068db50660860ad0f5519115cf, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:e1:5f:64:5e:df:11:cd:3a:51:e3:ff:19:b5:
f2:69:66:d6:b6:0f:ed:e3:88:1f:e6:b1:b6:75:b2:
db:04:fe:a8:ac:df:c2:af:60:55:74:ff:17:a8:b2:
41:25:f9:dd:f9:ef:32:d2:39:6e:dd:f5:aa:e9:f7:
07:7e:62:4f:8f:80:b2:93:ae:bd:f8:aa:30:b3:50:
e9:98:14:92:34:3d:0e:23:65:ea:ee:a0:19:23:b3:
09:c3:ba:a0:36:1d:ee:b0:ca:08:e6:0d:79:6e:d5:
9f:90:09:98:fd:f3:62:8d:eb:31:84:01:16:9b:2f:
3c:60:ee:1b:8f:1b:7f:b8:86:65:89:42:18:2c:e3:
99:a4:72:ff:d6:20:8a:18:6b:13:a8:13:b7:fd:19:
d7:d0:19:e3:01:fe:95:30:0d:8a:63:a9:8b:e5:4d:
31:2c:e2:55:db:c8:23:d3:89:47:0c:3a:94:6c:a2:
07:9c:37:03:fc:18:48:80:89:97:17:50:8f:55:eb:
ef:46:47:ef:ac:8a:46:0e:e0:61:3f:90:ee:3b:49:
99:bd:b3:14:b7:65:10:b6:0b:c0:0d:fb:97:23:66:
0d:48:74:7f:ff:26:6a:98:c2:a3:84:4f:62:4c:ca:
33:86:c0:ab:ae:f1:91:50:ab:84:a2:ae:94:ca:13:
ae:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:2B:57:78:66:69:83:39:28:96:6B:A8:CA:46:FA:C4:55:5F:FE:2E
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/19afeba1-690a-430e-b10e-42f0a2543aca.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
a3:31:16:13:ce:ab:0e:dc:14:85:1e:40:55:09:03:35:50:8a:
c8:c7:2e:55:a5:ca:15:41:0b:df:86:ff:32:13:b1:af:e1:5c:
69:14:cc:1f:ba:d5:20:44:8e:8d:3c:d4:ec:ca:63:db:10:1e:
1c:8f:91:f5:7d:79:53:6c:48:e0:6f:6e:32:58:79:c5:a9:e7:
c8:fc:61:8d:bb:b2:f8:a1:51:28:1f:f9:91:f0:b9:2e:a7:52:
42:5b:ba:89:24:6b:bb:f5:ef:32:1c:3e:55:20:53:08:7c:f5:
47:80:55:e6:c7:21:28:d1:0f:d4:e9:15:9d:79:4d:a3:e6:dd:
7e:92:67:91:7a:6a:56:cc:fe:1f:cf:d5:4d:a8:04:88:f2:c2:
b0:b9:a6:27:3c:76:77:f8:36:72:74:65:eb:18:c3:0a:6b:08:
6a:8d:8c:c5:58:1f:da:f9:eb:e2:11:1d:db:12:9d:a4:13:33:
63:61:90:e6:9c:b7:b0:0c:bb:2a:87:c9:08:bc:11:c1:c2:9b:
2d:2f:da:91:0b:45:c6:41:f4:76:7c:5d:74:2e:bb:2f:e1:92:
8c:52:07:5d:f2:85:94:76:71:36:f9:82:3a:c3:86:c7:69:8c:
35:79:ad:c9:89:78:d0:36:7d:0c:42:06:0c:cb:26:75:6d:e3:
7c:8e:7d:d2
-----BEGIN CERTIFICATE-----
MIIGMTCCBRmgAwIBAgIUarFdVc6CzeH46K/2Vb7MVCUI9i8wDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyMjc4YWFiODc4ZjI4MzFiYjE4MjNiNTg3OTRiMDkyZDg2
ZmIxZDdhMGY3NGUyODE2MTEwHhcNMjIxMTI5MDAwMDAwWhcNMjIxMjAyMjM1OTU5
WjCBpTFJMEcGA1UEBRNAYzgxMjBiNDUwMDUxMmZhNTFkOGYzODdkMGRhNjI3NDVm
MmMzNGMwNjhkYjUwNjYwODYwYWQwZjU1MTkxMTVjZjEtMCsGA1UEAxMkNmFlNGU1
NjctNjM0OC00YzRmLTk4YTgtMDQyMmM0YzUyZmYzMRQwEgYDVQQLEwtBbWF6b24g
UlBLSTETMBEGA1UEChMKQW1hem9uLmNvbTCCASIwDQYJKoZIhvcNAQEBBQADggEP
ADCCAQoCggEBAKLhX2Re3xHNOlHj/xm18mlm1rYP7eOIH+axtnWy2wT+qKzfwq9g
VXT/F6iyQSX53fnvMtI5bt31qun3B35iT4+AspOuvfiqMLNQ6ZgUkjQ9DiNl6u6g
GSOzCcO6oDYd7rDKCOYNeW7Vn5AJmP3zYo3rMYQBFpsvPGDuG48bf7iGZYlCGCzj
maRy/9YgihhrE6gTt/0Z19AZ4wH+lTANimOpi+VNMSziVdvII9OJRww6lGyiB5w3
A/wYSICJlxdQj1Xr70ZH76yKRg7gYT+Q7jtJmb2zFLdlELYLwA37lyNmDUh0f/8m
apjCo4RPYkzKM4bAq67xkVCrhKKulMoTrlsCAwEAAaOCAr4wggK6MB0GA1UdDgQW
BBQAK1d4ZmmDOSiWa6jKRvrEVV/+LjAfBgNVHSMEGDAWgBSRRO3HpA7pkLf6Nm/2
4X15rcSDlzAOBgNVHQ8BAf8EBAMCB4AwgfMGCCsGAQUFBwEBBIHmMIHjMIHgBggr
BgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2FyaW4t
cnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMvMDM1
NzI3MmMtYTc5YS00NWJmLTk1ODYtOTJkZDQ5ZWYzMjIzLzczZjIxYzJiLTg4MjMt
NGMyNC1iMjViLTQzYzgwY2I2ZDFiYi8yNzhhYWI4NzhmMjgzMWJiMTgyM2I1ODc5
NGIwOTJkODZmYjFkN2EwZjc0ZTI4MTYxMS5jZXIwgZ4GCCsGAQUFBwELBIGRMIGO
MIGLBggrBgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6
b25hd3MuY29tL3ZvbHVtZS9iNjhhMzJlZS00NTVkLTQ4M2EtOTQzZC0xYTViZTc0
OGJmZWEvMTlhZmViYTEtNjkwYS00MzBlLWIxMGUtNDJmMGEyNTQzYWNhLnJvYTCB
lQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I2OGEzMmVlLTQ1NWQtNDgzYS05NDNk
LTFhNWJlNzQ4YmZlYS80YmI4YWU1Yy0xMjRjLTQyZjMtODdmYi00ZjM0ZTc0ZTNk
YTIuY3JsMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8E
EDAOMAwEAgABMAYDBADHJHgwDQYJKoZIhvcNAQELBQADggEBAKMxFhPOqw7cFIUe
QFUJAzVQisjHLlWlyhVBC9+G/zITsa/hXGkUzB+61SBEjo081OzKY9sQHhyPkfV9
eVNsSOBvbjJYecWp58j8YY27svihUSgf+ZHwuS6nUkJbuokka7v17zIcPlUgUwh8
9UeAVebHISjRD9TpFZ15TaPm3X6SZ5F6albM/h/P1U2oBIjywrC5pic8dnf4NnJ0
ZesYwwprCGqNjMVYH9r56+IRHdsSnaQTM2NhkOact7AMuyqHyQi8EcHCmy0v2pEL
RcZB9HZ8XXQuuy/hkoxSB13yhZR2cTb5gjrDhsdpjDV5rcmJeNA2fQxCBgzLJnVt
43yOfdI=
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:38 2023 by rpki-client on console-ams.rpki-client.org