Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/21ab0351-e1a8-49ac-b576-348c0df0b0d9.roa
File: 21ab0351-e1a8-49ac-b576-348c0df0b0d9.roa (raw, json)
Hash identifier: GbEAhsgvq1k2GA7fTgWOwGCaEr96ZNR3N3rYl3jLNl0=
Subject key identifier: 7A:12:DD:A7:58:71:5A:CC:62:CA:05:33:90:DA:4E:82:2C:AA:12:AB
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 1DEB29FCA18AEEF312A080E24D10CD785364D54E
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/21ab0351-e1a8-49ac-b576-348c0df0b0d9.roa
Signing time: Fri 05 Aug 2022 00:00:00 +0000
ROA not before: Fri 05 Aug 2022 00:00:00 +0000
ROA not after: Mon 08 Aug 2022 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1d:eb:29:fc:a1:8a:ee:f3:12:a0:80:e2:4d:10:cd:78:53:64:d5:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Aug 5 00:00:00 2022 GMT
Not After : Aug 8 23:59:59 2022 GMT
Subject: serialNumber=628ec3ea18235842b373a542542d4078d8153ebc9fac3876437f589e25cafa79, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:77:72:c5:d4:37:cc:42:39:9d:a0:8c:bc:af:
20:3c:84:65:61:89:f3:9e:08:66:2c:4e:64:56:f7:
7f:12:d6:65:c4:7e:48:cb:7e:9b:b3:be:00:f8:85:
2c:b2:4f:3e:eb:40:97:12:90:2b:fb:a3:dd:97:54:
4f:89:0c:11:96:37:b0:7f:34:1b:94:9c:bb:fd:a9:
38:d2:ac:14:ca:58:f0:60:02:e1:b8:3a:e0:5d:8e:
62:ff:c5:b9:81:fd:90:7e:90:41:2f:c6:1d:86:c0:
cd:80:6e:14:87:9c:90:34:95:7a:38:08:08:94:3e:
75:9a:44:81:08:ee:f6:11:ec:11:48:b2:39:4c:28:
7e:fa:7b:d3:12:78:7d:86:5e:91:18:4d:46:bd:fc:
74:3e:76:47:8e:4c:56:e8:15:dd:4a:b6:90:39:23:
36:f5:9f:81:7d:27:d0:52:ad:ff:48:1c:41:c1:cb:
f3:f5:5b:13:74:3b:13:6e:82:bd:c6:f4:d9:f6:41:
cb:2e:dc:06:eb:b1:42:10:43:3c:cf:79:f7:2e:08:
42:1e:c1:1d:60:4d:d5:72:cf:3e:62:5a:34:70:79:
03:85:0f:ea:47:c1:73:fd:e1:59:1b:fa:84:75:3b:
94:05:63:80:11:64:bb:cb:7b:83:82:12:f8:e2:d1:
72:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:12:DD:A7:58:71:5A:CC:62:CA:05:33:90:DA:4E:82:2C:AA:12:AB
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/21ab0351-e1a8-49ac-b576-348c0df0b0d9.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
7a:7f:3a:93:a9:1f:be:b8:0a:2f:5c:d3:f8:f8:7f:de:6d:b7:
54:80:d7:48:54:f1:e5:9e:95:28:49:20:e8:e3:88:c0:b0:bd:
39:48:01:ba:6f:4f:4e:e5:e6:80:72:eb:89:0e:8e:4c:6b:69:
3e:a0:36:7d:66:db:e0:a4:b2:da:59:05:b1:c4:2f:3a:2e:7a:
cb:b2:a8:4c:9b:d5:05:60:22:ee:e9:c9:24:cf:de:6e:b4:b3:
40:c9:24:d4:4b:2e:a8:24:1d:ec:c7:33:81:09:7c:aa:cc:52:
60:dd:4d:a2:9a:8d:22:3c:64:45:d3:99:f4:2e:f1:fc:6b:49:
5e:67:bf:10:c4:b3:e1:27:95:3a:b2:21:53:4d:30:c9:b9:da:
d7:9f:20:41:57:0b:00:fb:75:7a:fe:39:3b:02:0b:ef:0c:e7:
d4:cf:cb:4f:ce:5b:5c:26:04:6c:b0:8f:14:33:61:50:61:62:
1e:cd:b3:04:c0:23:85:0f:15:5f:d6:d0:cc:6d:ec:4c:be:65:
97:04:ba:08:79:5e:08:35:ec:37:2c:c1:0e:5d:ab:da:2a:09:
79:6f:9e:8a:c1:ca:a4:af:9f:2a:37:bf:2a:82:2b:3f:9d:7d:
28:1d:55:1f:6d:f8:85:69:d0:40:4a:b9:c4:c8:21:9b:a2:d8:
f0:c5:ca:aa
-----BEGIN CERTIFICATE-----
MIIGMTCCBRmgAwIBAgIUHesp/KGK7vMSoIDiTRDNeFNk1U4wDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyMjc4YWFiODc4ZjI4MzFiYjE4MjNiNTg3OTRiMDkyZDg2
ZmIxZDdhMGY3NGUyODE2MTEwHhcNMjIwODA1MDAwMDAwWhcNMjIwODA4MjM1OTU5
WjCBpTFJMEcGA1UEBRNANjI4ZWMzZWExODIzNTg0MmIzNzNhNTQyNTQyZDQwNzhk
ODE1M2ViYzlmYWMzODc2NDM3ZjU4OWUyNWNhZmE3OTEtMCsGA1UEAxMkNmFlNGU1
NjctNjM0OC00YzRmLTk4YTgtMDQyMmM0YzUyZmYzMRQwEgYDVQQLEwtBbWF6b24g
UlBLSTETMBEGA1UEChMKQW1hem9uLmNvbTCCASIwDQYJKoZIhvcNAQEBBQADggEP
ADCCAQoCggEBAKd3csXUN8xCOZ2gjLyvIDyEZWGJ854IZixOZFb3fxLWZcR+SMt+
m7O+APiFLLJPPutAlxKQK/uj3ZdUT4kMEZY3sH80G5Scu/2pONKsFMpY8GAC4bg6
4F2OYv/FuYH9kH6QQS/GHYbAzYBuFIeckDSVejgICJQ+dZpEgQju9hHsEUiyOUwo
fvp70xJ4fYZekRhNRr38dD52R45MVugV3Uq2kDkjNvWfgX0n0FKt/0gcQcHL8/Vb
E3Q7E26Cvcb02fZByy7cBuuxQhBDPM959y4IQh7BHWBN1XLPPmJaNHB5A4UP6kfB
c/3hWRv6hHU7lAVjgBFku8t7g4IS+OLRcmcCAwEAAaOCAr4wggK6MB0GA1UdDgQW
BBR6Et2nWHFazGLKBTOQ2k6CLKoSqzAfBgNVHSMEGDAWgBSRRO3HpA7pkLf6Nm/2
4X15rcSDlzAOBgNVHQ8BAf8EBAMCB4AwgfMGCCsGAQUFBwEBBIHmMIHjMIHgBggr
BgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2FyaW4t
cnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMvMDM1
NzI3MmMtYTc5YS00NWJmLTk1ODYtOTJkZDQ5ZWYzMjIzLzczZjIxYzJiLTg4MjMt
NGMyNC1iMjViLTQzYzgwY2I2ZDFiYi8yNzhhYWI4NzhmMjgzMWJiMTgyM2I1ODc5
NGIwOTJkODZmYjFkN2EwZjc0ZTI4MTYxMS5jZXIwgZ4GCCsGAQUFBwELBIGRMIGO
MIGLBggrBgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6
b25hd3MuY29tL3ZvbHVtZS9iNjhhMzJlZS00NTVkLTQ4M2EtOTQzZC0xYTViZTc0
OGJmZWEvMjFhYjAzNTEtZTFhOC00OWFjLWI1NzYtMzQ4YzBkZjBiMGQ5LnJvYTCB
lQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I2OGEzMmVlLTQ1NWQtNDgzYS05NDNk
LTFhNWJlNzQ4YmZlYS80YmI4YWU1Yy0xMjRjLTQyZjMtODdmYi00ZjM0ZTc0ZTNk
YTIuY3JsMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8E
EDAOMAwEAgABMAYDBADHJHgwDQYJKoZIhvcNAQELBQADggEBAHp/OpOpH764Ci9c
0/j4f95tt1SA10hU8eWelShJIOjjiMCwvTlIAbpvT07l5oBy64kOjkxraT6gNn1m
2+CkstpZBbHELzouesuyqEyb1QVgIu7pySTP3m60s0DJJNRLLqgkHezHM4EJfKrM
UmDdTaKajSI8ZEXTmfQu8fxrSV5nvxDEs+EnlTqyIVNNMMm52tefIEFXCwD7dXr+
OTsCC+8M59TPy0/OW1wmBGywjxQzYVBhYh7NswTAI4UPFV/W0Mxt7Ey+ZZcEugh5
Xgg17DcswQ5dq9oqCXlvnorByqSvnyo3vyqCKz+dfSgdVR9t+IVp0EBKucTIIZui
2PDFyqo=
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:33 2023 by rpki-client on console-fra.rpki-client.org