Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/27b36210-421f-4611-8656-0926a8832319.roa
File: 27b36210-421f-4611-8656-0926a8832319.roa (raw, json)
Hash identifier: 831K1c0+i83jTDg2ibTOQMbs/6RiE22w64MOwulbdLk=
Subject key identifier: AA:87:E3:1C:FE:3A:5A:B9:0D:E3:C9:23:2F:24:EC:8D:24:89:7B:8D
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 6F86132963C29ED9CDFE5B2845EEB12FC76B28
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/27b36210-421f-4611-8656-0926a8832319.roa
Signing time: Tue 04 Oct 2022 00:00:00 +0000
ROA not before: Tue 04 Oct 2022 00:00:00 +0000
ROA not after: Fri 07 Oct 2022 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6f:86:13:29:63:c2:9e:d9:cd:fe:5b:28:45:ee:b1:2f:c7:6b:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Oct 4 00:00:00 2022 GMT
Not After : Oct 7 23:59:59 2022 GMT
Subject: serialNumber=f808507595d1e0d1a6c1a2e272da0912468a9311b636f2fa94e0a08438c0acbf, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:4b:bc:e8:c1:3d:2a:39:53:3e:29:9f:76:cf:
10:28:13:34:91:c1:04:ca:75:17:bc:e7:82:f3:8e:
da:5b:0e:03:ae:ab:34:75:a7:de:58:07:c5:4f:5b:
a0:37:24:4c:cd:6d:71:ed:cc:10:ee:8d:55:d1:4e:
d1:8a:c7:b0:27:e1:8b:70:08:b3:51:82:f6:3f:5d:
a9:3c:51:42:83:1e:43:ff:65:91:cc:a2:67:0d:47:
ad:6c:7c:c0:68:05:17:8e:93:b7:a0:52:8b:25:59:
de:c1:3d:d2:82:f2:86:34:69:a0:7d:67:33:76:2e:
b7:e5:e4:c6:39:cc:49:68:bc:0c:78:70:08:4b:7d:
21:1e:e3:a1:02:69:e0:b8:8c:7d:78:31:4b:55:2f:
0b:3c:73:98:d1:ac:20:ee:ba:04:15:bd:19:9f:4e:
bc:2e:99:24:ef:3b:1e:17:a0:fe:e1:90:79:ab:a2:
02:d7:1a:27:a5:8a:ff:e3:ad:00:28:29:e6:d6:be:
b0:b9:ad:ee:b2:6e:e1:f3:b3:a5:9a:78:87:c9:46:
a3:58:1e:eb:ad:b4:2e:89:3a:da:2b:ef:38:38:71:
ce:09:fb:43:3e:92:aa:5e:8e:f3:d5:dd:19:95:cb:
9c:cb:6c:39:a5:ba:44:f6:8a:c2:7a:7a:16:f3:b1:
53:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:87:E3:1C:FE:3A:5A:B9:0D:E3:C9:23:2F:24:EC:8D:24:89:7B:8D
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/27b36210-421f-4611-8656-0926a8832319.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
62:60:34:e7:96:95:45:3c:33:1f:be:a0:bc:62:22:28:d3:21:
5e:90:ba:e8:8f:b0:a9:3b:b5:25:6c:b5:e0:e8:f8:9b:78:6c:
d2:f0:a3:89:77:c4:e2:ce:b2:2e:79:ba:ba:6b:0a:e4:88:80:
fc:42:1e:ac:d2:f2:85:31:61:ec:5d:9a:84:90:6e:5f:a2:7a:
ab:09:93:cf:d5:40:3e:96:b8:46:94:d9:5d:7b:4f:12:08:f0:
22:bd:0a:88:0a:5f:6c:d8:f2:f0:d1:f6:e1:d4:33:8d:38:4c:
c9:a1:71:10:34:96:84:65:fa:02:a8:d2:51:78:29:b3:f9:b4:
e7:91:08:7a:bb:db:3e:f1:f6:7d:51:6d:ea:69:d5:70:ca:6b:
5b:ba:95:cb:b7:b3:63:3e:bd:7e:c4:10:59:fe:23:f3:e7:6a:
49:23:64:77:e4:a5:8a:64:22:11:4a:d1:06:25:b0:64:9a:ae:
7b:38:ca:cc:0c:f8:01:dd:80:11:85:68:0a:39:52:c0:28:3e:
4a:67:e5:75:08:50:e7:bc:64:47:fa:b4:62:76:48:a0:e9:4b:
29:c0:a1:38:54:07:95:b9:1f:5b:e5:00:f4:2c:d8:51:58:5a:
75:46:f0:57:c3:42:d4:4b:65:3a:9d:c4:67:05:7b:91:ab:7c:
58:73:a1:e6
-----BEGIN CERTIFICATE-----
MIIGMDCCBRigAwIBAgITb4YTKWPCntnN/lsoRe6xL8drKDANBgkqhkiG9w0BAQsF
ADA9MTswOQYDVQQDEzIyNzhhYWI4NzhmMjgzMWJiMTgyM2I1ODc5NGIwOTJkODZm
YjFkN2EwZjc0ZTI4MTYxMTAeFw0yMjEwMDQwMDAwMDBaFw0yMjEwMDcyMzU5NTla
MIGlMUkwRwYDVQQFE0BmODA4NTA3NTk1ZDFlMGQxYTZjMWEyZTI3MmRhMDkxMjQ2
OGE5MzExYjYzNmYyZmE5NGUwYTA4NDM4YzBhY2JmMS0wKwYDVQQDEyQ2YWU0ZTU2
Ny02MzQ4LTRjNGYtOThhOC0wNDIyYzRjNTJmZjMxFDASBgNVBAsTC0FtYXpvbiBS
UEtJMRMwEQYDVQQKEwpBbWF6b24uY29tMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8A
MIIBCgKCAQEArUu86ME9KjlTPimfds8QKBM0kcEEynUXvOeC847aWw4Drqs0dafe
WAfFT1ugNyRMzW1x7cwQ7o1V0U7RisewJ+GLcAizUYL2P12pPFFCgx5D/2WRzKJn
DUetbHzAaAUXjpO3oFKLJVnewT3SgvKGNGmgfWczdi635eTGOcxJaLwMeHAIS30h
HuOhAmnguIx9eDFLVS8LPHOY0awg7roEFb0Zn068Lpkk7zseF6D+4ZB5q6IC1xon
pYr/460AKCnm1r6wua3usm7h87OlmniHyUajWB7rrbQuiTraK+84OHHOCftDPpKq
Xo7z1d0Zlcucy2w5pbpE9orCenoW87FTWQIDAQABo4ICvjCCArowHQYDVR0OBBYE
FKqH4xz+Olq5DePJIy8k7I0kiXuNMB8GA1UdIwQYMBaAFJFE7cekDumQt/o2b/bh
fXmtxIOXMA4GA1UdDwEB/wQEAwIHgDCB8wYIKwYBBQUHAQEEgeYwgeMwgeAGCCsG
AQUFBzAChoHTcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1y
cGtpLXRhLzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy8wMzU3
MjcyYy1hNzlhLTQ1YmYtOTU4Ni05MmRkNDllZjMyMjMvNzNmMjFjMmItODgyMy00
YzI0LWIyNWItNDNjODBjYjZkMWJiLzI3OGFhYjg3OGYyODMxYmIxODIzYjU4Nzk0
YjA5MmQ4NmZiMWQ3YTBmNzRlMjgxNjExLmNlcjCBngYIKwYBBQUHAQsEgZEwgY4w
gYsGCCsGAQUFBzALhn9yc3luYzovL3Jwa2ktcnN5bmMudXMtZWFzdC0yLmFtYXpv
bmF3cy5jb20vdm9sdW1lL2I2OGEzMmVlLTQ1NWQtNDgzYS05NDNkLTFhNWJlNzQ4
YmZlYS8yN2IzNjIxMC00MjFmLTQ2MTEtODY1Ni0wOTI2YTg4MzIzMTkucm9hMIGV
BgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0
LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvYjY4YTMyZWUtNDU1ZC00ODNhLTk0M2Qt
MWE1YmU3NDhiZmVhLzRiYjhhZTVjLTEyNGMtNDJmMy04N2ZiLTRmMzRlNzRlM2Rh
Mi5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQ
MA4wDAQCAAEwBgMEAMckeDANBgkqhkiG9w0BAQsFAAOCAQEAYmA055aVRTwzH76g
vGIiKNMhXpC66I+wqTu1JWy14Oj4m3hs0vCjiXfE4s6yLnm6umsK5IiA/EIerNLy
hTFh7F2ahJBuX6J6qwmTz9VAPpa4RpTZXXtPEgjwIr0KiApfbNjy8NH24dQzjThM
yaFxEDSWhGX6AqjSUXgps/m055EIervbPvH2fVFt6mnVcMprW7qVy7ezYz69fsQQ
Wf4j8+dqSSNkd+SlimQiEUrRBiWwZJquezjKzAz4Ad2AEYVoCjlSwCg+SmfldQhQ
57xkR/q0YnZIoOlLKcChOFQHlbkfW+UA9CzYUVhadUbwV8NC1EtlOp3EZwV7kat8
WHOh5g==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:33 2023 by rpki-client on console-fra.rpki-client.org