Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/265b0f64-a13f-478c-9459-1cb3362a6740.roa
File: 265b0f64-a13f-478c-9459-1cb3362a6740.roa (download)
Hash identifier: mOwLRc1N6crb1+L8HP81oMzw+Q4pQ/mRZas1WmHifLA=
Subject key identifier: EA:B7:74:7D:CC:2F:64:90:CA:37:03:83:6A:CA:34:AB:62:5A:84:02
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 50E5809BCC42820F6D477D1ECB90D4DA23125E6C
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/265b0f64-a13f-478c-9459-1cb3362a6740.roa
ROA valid until: Tue, 17 Jan 2023 23:59:59 +0000
asID: 400098
IP address blocks:
1: 199.36.120.0/24 maxlen: 24
Validation: OK
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
50:e5:80:9b:cc:42:82:0f:6d:47:7d:1e:cb:90:d4:da:23:12:5e:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Jan 14 00:00:00 2023 GMT
Not After : Jan 17 23:59:59 2023 GMT
Subject: serialNumber=c6e55d05c7a6d70e1bab02c2ca746643cce621e2ff7d3a47201bb7429620b8b0, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:4a:3f:c8:18:f8:00:a6:ed:c3:57:ea:1f:4d:
c4:3a:77:63:85:e9:71:08:60:ec:aa:bd:e1:79:85:
bc:0c:39:97:85:32:4a:1d:32:e7:bd:81:51:32:30:
43:1a:f6:84:84:f3:1b:65:15:ad:50:e9:a8:63:a7:
89:f8:b8:6e:cc:73:36:81:8a:37:23:71:a1:ea:18:
95:d3:fa:9e:33:4e:3b:b2:76:47:2c:7e:66:a6:44:
55:3e:7f:d0:98:91:40:d6:4a:ab:d1:35:dd:78:7c:
7c:e9:46:cc:a3:53:e3:4a:8f:17:f0:9e:e3:94:0c:
d3:75:ef:f9:16:c8:df:4c:23:60:8d:13:ca:91:3c:
20:60:84:5f:0e:56:b7:2d:65:ae:49:71:2c:d1:40:
f5:57:ef:3d:dc:de:81:12:e4:ec:f1:6b:94:fa:84:
6e:93:9d:32:d0:23:5e:92:99:b0:ee:35:45:b4:ac:
6e:ef:16:ae:f1:d9:55:f9:37:b4:2b:3b:ac:bd:3e:
4e:59:47:82:3e:1d:3c:ad:0c:98:21:f1:ef:40:df:
4a:de:42:ef:ca:86:85:06:ea:7f:26:13:77:ac:64:
52:8f:b3:06:a8:e8:68:d4:88:17:6e:36:44:45:1d:
1a:50:a7:22:f2:b2:85:f6:a8:cf:9c:cf:10:45:c4:
e1:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:B7:74:7D:CC:2F:64:90:CA:37:03:83:6A:CA:34:AB:62:5A:84:02
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/265b0f64-a13f-478c-9459-1cb3362a6740.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
88:2a:99:6d:aa:8a:c7:59:12:97:e7:2c:5d:63:61:08:fd:9f:
ce:28:df:09:51:5e:26:51:39:e8:6d:0f:39:c5:40:c5:f4:07:
97:50:44:71:18:6b:4b:bf:ca:dd:b8:44:05:88:f0:04:55:51:
c0:77:fb:8f:25:54:6e:25:a0:10:1e:e1:63:f2:42:6d:6b:86:
8e:c3:03:20:0c:fa:1d:66:e3:e4:32:9e:8a:d9:26:22:46:53:
bd:cb:e1:9d:82:ad:af:a4:1f:53:3c:fc:a1:b3:20:07:db:0f:
b9:f7:0e:1c:09:b7:ce:e2:70:e1:5f:16:eb:a9:8a:ba:f4:e8:
27:44:f4:06:a5:51:f6:db:4d:05:b3:f2:c3:6e:e4:b4:a0:d3:
12:fd:df:de:b9:94:bd:8f:11:32:57:65:bb:60:c4:d3:21:c9:
f4:08:c0:0c:4a:31:c8:00:2f:2d:fd:1b:7b:ae:0a:05:a1:ab:
8b:cc:13:8f:29:30:33:1d:3e:f3:87:07:67:7f:0d:a7:c0:b0:
bd:14:96:b2:7f:65:2a:16:aa:37:91:8d:cb:d1:08:c4:62:51:
a3:1f:4f:ef:be:6c:4d:a9:1e:dc:f2:da:ae:c7:f2:dc:6e:f0:
de:34:7f:3a:70:0d:41:28:7d:93:93:0a:21:f2:59:e3:06:4e:
96:1a:41:0e
-----BEGIN CERTIFICATE-----
MIIGMTCCBRmgAwIBAgIUUOWAm8xCgg9tR30ey5DU2iMSXmwwDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyMjc4YWFiODc4ZjI4MzFiYjE4MjNiNTg3OTRiMDkyZDg2
ZmIxZDdhMGY3NGUyODE2MTEwHhcNMjMwMTE0MDAwMDAwWhcNMjMwMTE3MjM1OTU5
WjCBpTFJMEcGA1UEBRNAYzZlNTVkMDVjN2E2ZDcwZTFiYWIwMmMyY2E3NDY2NDNj
Y2U2MjFlMmZmN2QzYTQ3MjAxYmI3NDI5NjIwYjhiMDEtMCsGA1UEAxMkNmFlNGU1
NjctNjM0OC00YzRmLTk4YTgtMDQyMmM0YzUyZmYzMRQwEgYDVQQLEwtBbWF6b24g
UlBLSTETMBEGA1UEChMKQW1hem9uLmNvbTCCASIwDQYJKoZIhvcNAQEBBQADggEP
ADCCAQoCggEBAKxKP8gY+ACm7cNX6h9NxDp3Y4XpcQhg7Kq94XmFvAw5l4UySh0y
572BUTIwQxr2hITzG2UVrVDpqGOnifi4bsxzNoGKNyNxoeoYldP6njNOO7J2Ryx+
ZqZEVT5/0JiRQNZKq9E13Xh8fOlGzKNT40qPF/Ce45QM03Xv+RbI30wjYI0TypE8
IGCEXw5Wty1lrklxLNFA9VfvPdzegRLk7PFrlPqEbpOdMtAjXpKZsO41RbSsbu8W
rvHZVfk3tCs7rL0+TllHgj4dPK0MmCHx70DfSt5C78qGhQbqfyYTd6xkUo+zBqjo
aNSIF242REUdGlCnIvKyhfaoz5zPEEXE4TMCAwEAAaOCAr4wggK6MB0GA1UdDgQW
BBTqt3R9zC9kkMo3A4NqyjSrYlqEAjAfBgNVHSMEGDAWgBSRRO3HpA7pkLf6Nm/2
4X15rcSDlzAOBgNVHQ8BAf8EBAMCB4AwgfMGCCsGAQUFBwEBBIHmMIHjMIHgBggr
BgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2FyaW4t
cnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMvMDM1
NzI3MmMtYTc5YS00NWJmLTk1ODYtOTJkZDQ5ZWYzMjIzLzczZjIxYzJiLTg4MjMt
NGMyNC1iMjViLTQzYzgwY2I2ZDFiYi8yNzhhYWI4NzhmMjgzMWJiMTgyM2I1ODc5
NGIwOTJkODZmYjFkN2EwZjc0ZTI4MTYxMS5jZXIwgZ4GCCsGAQUFBwELBIGRMIGO
MIGLBggrBgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6
b25hd3MuY29tL3ZvbHVtZS9iNjhhMzJlZS00NTVkLTQ4M2EtOTQzZC0xYTViZTc0
OGJmZWEvMjY1YjBmNjQtYTEzZi00NzhjLTk0NTktMWNiMzM2MmE2NzQwLnJvYTCB
lQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I2OGEzMmVlLTQ1NWQtNDgzYS05NDNk
LTFhNWJlNzQ4YmZlYS80YmI4YWU1Yy0xMjRjLTQyZjMtODdmYi00ZjM0ZTc0ZTNk
YTIuY3JsMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8E
EDAOMAwEAgABMAYDBADHJHgwDQYJKoZIhvcNAQELBQADggEBAIgqmW2qisdZEpfn
LF1jYQj9n84o3wlRXiZROehtDznFQMX0B5dQRHEYa0u/yt24RAWI8ARVUcB3+48l
VG4loBAe4WPyQm1rho7DAyAM+h1m4+QynorZJiJGU73L4Z2Cra+kH1M8/KGzIAfb
D7n3DhwJt87icOFfFuupirr06CdE9AalUfbbTQWz8sNu5LSg0xL93965lL2PETJX
ZbtgxNMhyfQIwAxKMcgALy39G3uuCgWhq4vME48pMDMdPvOHB2d/DafAsL0UlrJ/
ZSoWqjeRjcvRCMRiUaMfT+++bE2pHtzy2q7H8txu8N40fzpwDUEofZOTCiHyWeMG
TpYaQQ4=
-----END CERTIFICATE-----
Generated at Sat Jan 14 19:11:53 2023 by rpki-client.