Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/21e13b72-79ec-482d-b45a-11b1b6969061.roa
File: 21e13b72-79ec-482d-b45a-11b1b6969061.roa (raw, json)
Hash identifier: FGiHQcDxhHSTuhfafGB9cZRWjoNyJUmG30AXrHkJLsE=
Subject key identifier: B1:56:85:A5:10:A9:BE:E9:A9:E1:D3:CE:29:5E:F8:62:80:EC:A6:CE
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 3F02287DBEAB737415D114A20A566636A6968874
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/21e13b72-79ec-482d-b45a-11b1b6969061.roa
Signing time: Fri 07 Oct 2022 00:00:00 +0000
ROA not before: Fri 07 Oct 2022 00:00:00 +0000
ROA not after: Mon 10 Oct 2022 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3f:02:28:7d:be:ab:73:74:15:d1:14:a2:0a:56:66:36:a6:96:88:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Oct 7 00:00:00 2022 GMT
Not After : Oct 10 23:59:59 2022 GMT
Subject: serialNumber=b907c29fdb72b1a2e6fb83464070d653c2af72e0fd63c4dbb7acc1a90e208cd5, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:96:78:e3:5d:6c:83:3a:16:76:a0:0f:5c:0c:
bc:2a:2a:a9:31:95:8a:a2:20:02:29:88:45:50:f1:
61:3b:22:19:61:57:fb:86:1c:fb:dd:2a:60:dc:c9:
8f:38:68:1f:8e:05:a8:bc:bd:ef:a0:2a:45:9b:de:
0b:7e:1d:e9:f9:42:ec:9e:53:5b:c0:f7:3b:f3:1b:
39:16:2e:09:03:a8:7a:49:4b:2b:d2:fe:40:84:e4:
38:ec:7b:ed:99:0c:a1:05:ad:02:1c:a8:f0:ef:c6:
61:cd:85:17:d2:59:27:c4:7d:8d:24:0e:b6:74:23:
34:f7:97:9e:ce:69:47:1c:32:38:a6:2d:a3:2b:13:
8b:ef:b6:d0:22:59:69:92:c6:7b:86:2e:87:74:b2:
42:79:30:c0:d9:9a:51:94:04:db:ea:14:d3:75:17:
f6:61:b0:65:27:93:9b:3c:e4:3c:f1:1d:a4:5b:94:
ee:ce:c0:ae:8f:e1:61:bc:b4:99:02:8d:7c:36:39:
1f:90:bc:26:f5:df:a0:0f:80:3c:38:5a:27:c9:a4:
1e:d4:e7:93:26:68:34:fd:e4:00:6e:16:bf:8e:b2:
c7:03:f3:d7:08:76:09:ff:7d:89:3e:cc:33:73:63:
2d:38:45:1a:0d:c1:01:4c:a0:56:04:4e:ae:5d:5c:
46:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:56:85:A5:10:A9:BE:E9:A9:E1:D3:CE:29:5E:F8:62:80:EC:A6:CE
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/21e13b72-79ec-482d-b45a-11b1b6969061.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
5b:80:02:c7:94:2d:0d:05:fb:38:9c:8b:46:00:dd:c7:d6:22:
16:bc:05:d1:e7:0a:7e:24:02:62:8d:01:33:23:31:02:48:fd:
0f:92:6a:8b:0d:40:5c:b4:47:a2:33:e3:3f:d6:03:c1:b7:c5:
6f:5f:eb:89:54:e5:e6:b0:c6:1f:8c:b4:14:57:22:90:a8:56:
5f:5f:17:8e:fa:d7:69:90:fd:8e:5e:10:c5:73:b8:c0:77:60:
26:12:8b:68:aa:d8:23:1f:f5:67:58:30:1c:1e:96:9a:1f:20:
bc:2c:83:ab:a5:92:62:e7:ca:7b:31:70:90:e1:aa:6a:e4:97:
4e:be:84:58:85:27:49:5e:0c:a4:d3:4d:cb:a3:b4:41:d7:ed:
6f:a2:da:08:4e:b6:72:37:4b:53:18:4e:3f:e1:4a:67:cb:f0:
14:31:69:a0:98:0f:99:33:da:6e:b7:45:0c:19:8e:34:43:92:
af:b6:dd:d8:08:1b:c5:d5:bf:41:5c:ee:93:85:d4:75:48:d4:
c1:47:84:3a:db:01:fd:28:5a:38:15:24:67:a1:fb:4a:f3:1e:
dc:4e:27:09:46:7d:d1:12:e6:b7:f2:5e:df:b4:93:68:29:b3:
c9:69:6b:ea:36:89:fd:16:60:bf:ae:f4:b1:db:0b:4b:8b:90:
b2:e6:56:e0
-----BEGIN CERTIFICATE-----
MIIGMTCCBRmgAwIBAgIUPwIofb6rc3QV0RSiClZmNqaWiHQwDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyMjc4YWFiODc4ZjI4MzFiYjE4MjNiNTg3OTRiMDkyZDg2
ZmIxZDdhMGY3NGUyODE2MTEwHhcNMjIxMDA3MDAwMDAwWhcNMjIxMDEwMjM1OTU5
WjCBpTFJMEcGA1UEBRNAYjkwN2MyOWZkYjcyYjFhMmU2ZmI4MzQ2NDA3MGQ2NTNj
MmFmNzJlMGZkNjNjNGRiYjdhY2MxYTkwZTIwOGNkNTEtMCsGA1UEAxMkNmFlNGU1
NjctNjM0OC00YzRmLTk4YTgtMDQyMmM0YzUyZmYzMRQwEgYDVQQLEwtBbWF6b24g
UlBLSTETMBEGA1UEChMKQW1hem9uLmNvbTCCASIwDQYJKoZIhvcNAQEBBQADggEP
ADCCAQoCggEBAKyWeONdbIM6FnagD1wMvCoqqTGViqIgAimIRVDxYTsiGWFX+4Yc
+90qYNzJjzhoH44FqLy976AqRZveC34d6flC7J5TW8D3O/MbORYuCQOoeklLK9L+
QITkOOx77ZkMoQWtAhyo8O/GYc2FF9JZJ8R9jSQOtnQjNPeXns5pRxwyOKYtoysT
i++20CJZaZLGe4Yuh3SyQnkwwNmaUZQE2+oU03UX9mGwZSeTmzzkPPEdpFuU7s7A
ro/hYby0mQKNfDY5H5C8JvXfoA+APDhaJ8mkHtTnkyZoNP3kAG4Wv46yxwPz1wh2
Cf99iT7MM3NjLThFGg3BAUygVgROrl1cRkECAwEAAaOCAr4wggK6MB0GA1UdDgQW
BBSxVoWlEKm+6anh084pXvhigOymzjAfBgNVHSMEGDAWgBSRRO3HpA7pkLf6Nm/2
4X15rcSDlzAOBgNVHQ8BAf8EBAMCB4AwgfMGCCsGAQUFBwEBBIHmMIHjMIHgBggr
BgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2FyaW4t
cnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMvMDM1
NzI3MmMtYTc5YS00NWJmLTk1ODYtOTJkZDQ5ZWYzMjIzLzczZjIxYzJiLTg4MjMt
NGMyNC1iMjViLTQzYzgwY2I2ZDFiYi8yNzhhYWI4NzhmMjgzMWJiMTgyM2I1ODc5
NGIwOTJkODZmYjFkN2EwZjc0ZTI4MTYxMS5jZXIwgZ4GCCsGAQUFBwELBIGRMIGO
MIGLBggrBgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6
b25hd3MuY29tL3ZvbHVtZS9iNjhhMzJlZS00NTVkLTQ4M2EtOTQzZC0xYTViZTc0
OGJmZWEvMjFlMTNiNzItNzllYy00ODJkLWI0NWEtMTFiMWI2OTY5MDYxLnJvYTCB
lQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I2OGEzMmVlLTQ1NWQtNDgzYS05NDNk
LTFhNWJlNzQ4YmZlYS80YmI4YWU1Yy0xMjRjLTQyZjMtODdmYi00ZjM0ZTc0ZTNk
YTIuY3JsMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8E
EDAOMAwEAgABMAYDBADHJHgwDQYJKoZIhvcNAQELBQADggEBAFuAAseULQ0F+zic
i0YA3cfWIha8BdHnCn4kAmKNATMjMQJI/Q+SaosNQFy0R6Iz4z/WA8G3xW9f64lU
5eawxh+MtBRXIpCoVl9fF47612mQ/Y5eEMVzuMB3YCYSi2iq2CMf9WdYMBwelpof
ILwsg6ulkmLnynsxcJDhqmrkl06+hFiFJ0leDKTTTcujtEHX7W+i2ghOtnI3S1MY
Tj/hSmfL8BQxaaCYD5kz2m63RQwZjjRDkq+23dgIG8XVv0Fc7pOF1HVI1MFHhDrb
Af0oWjgVJGeh+0rzHtxOJwlGfdES5rfyXt+0k2gps8lpa+o2if0WYL+u9LHbC0uL
kLLmVuA=
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:33 2023 by rpki-client on console-fra.rpki-client.org