Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/29cb2bb4-9914-4ea1-a539-6ac2ea35fad9.roa
File: 29cb2bb4-9914-4ea1-a539-6ac2ea35fad9.roa (raw, json)
Hash identifier: tEk/ZZ1/BXEmY7C0fZMS2T0viXDIM8BWYB9tnz89o4w=
Subject key identifier: 70:1A:A6:C2:36:71:62:94:58:82:A7:8B:76:A2:A1:15:A8:A5:6B:7F
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 7755D9F618ED7713079AFB396C6D0AC4CEF8B053
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/29cb2bb4-9914-4ea1-a539-6ac2ea35fad9.roa
Signing time: Mon 05 Jun 2023 00:00:00 +0000
ROA not before: Mon 05 Jun 2023 00:00:00 +0000
ROA not after: Thu 08 Jun 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
77:55:d9:f6:18:ed:77:13:07:9a:fb:39:6c:6d:0a:c4:ce:f8:b0:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Jun 5 00:00:00 2023 GMT
Not After : Jun 8 23:59:59 2023 GMT
Subject: serialNumber=8b309ac311e47e2de4119302bdbf2ba20607a3833ea5147424d0052c5ba46183, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:df:42:70:4a:0d:d7:7c:fa:e1:30:8d:d2:06:
81:9c:71:59:a1:97:ea:60:1f:e9:ab:58:61:a2:59:
c2:a9:7a:d3:a7:c2:78:c2:08:ff:24:13:51:d8:7d:
d7:a2:ac:e6:97:58:5e:3b:8c:94:bd:ea:be:63:68:
c1:c8:3b:4e:8d:14:1d:8c:8d:f3:35:1a:11:58:c9:
f7:85:3f:61:e9:98:42:8f:21:b7:a4:c2:e4:86:ec:
da:a6:82:09:c2:88:03:12:f2:78:e2:cf:0e:6a:0d:
e8:39:21:92:6f:1e:d0:4a:68:60:3f:f5:90:69:17:
52:e2:ea:84:bc:8f:ce:02:f2:48:ca:bc:7a:45:8b:
aa:0e:fb:ac:a8:07:28:40:4d:5a:d9:bd:ca:62:bb:
c9:88:56:c5:72:b1:e2:28:56:3b:9d:9d:0f:69:bc:
38:e7:39:4c:6e:f8:40:81:44:4d:d8:cb:34:11:30:
9c:ce:e8:0c:80:4a:27:b0:95:67:00:bc:72:5e:98:
15:a4:2b:d8:09:85:42:a0:93:e1:39:0c:5b:e8:88:
d7:e7:4e:80:f6:0c:1b:76:78:68:e2:0f:a2:28:57:
a4:34:39:c5:dc:2b:de:32:88:da:0a:63:f1:2f:5d:
c1:9c:c9:47:78:b6:29:c1:86:01:e7:98:66:75:05:
4e:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:1A:A6:C2:36:71:62:94:58:82:A7:8B:76:A2:A1:15:A8:A5:6B:7F
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/29cb2bb4-9914-4ea1-a539-6ac2ea35fad9.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
5b:e3:a0:ce:a1:7e:df:26:54:53:74:1a:24:76:00:3a:6b:07:
6f:56:c8:da:06:be:63:60:a3:57:8e:6d:a9:f2:ae:a0:40:80:
10:1c:72:b9:39:3d:ff:97:0b:c8:76:87:b2:34:77:d9:e0:c9:
f5:14:c8:3a:8f:3b:19:42:ca:4f:0e:ef:db:21:33:39:4c:51:
e5:6b:ac:9a:18:36:5d:81:23:83:fc:b6:ce:01:ba:fc:e1:9c:
37:90:5d:04:cb:d8:e6:31:fb:0e:6b:0f:13:1f:53:8a:ae:e0:
f2:1d:9c:7f:20:de:f9:41:e0:8a:95:9b:c2:76:ad:ab:32:f8:
fd:fa:d9:8b:74:2a:aa:a5:30:8d:7a:3e:3d:60:0f:e7:d7:dc:
63:91:d5:95:03:c7:1b:22:25:0f:b5:bd:67:64:d1:ce:e1:04:
1b:af:75:5f:bf:44:50:2f:ba:91:74:a0:bc:37:49:17:9f:9c:
71:76:6c:63:20:be:5c:31:69:d7:d0:c6:95:1f:09:15:a5:d6:
dd:e5:fd:a3:2b:04:e6:05:92:5c:e0:7a:7d:c2:f3:f3:63:e2:
87:d2:a1:91:2f:4e:a5:48:62:89:94:c0:66:c8:24:83:69:9a:
45:23:ab:6a:15:30:01:b4:3b:9f:98:04:d6:7a:fb:1c:0b:03:
f6:16:92:25
-----BEGIN CERTIFICATE-----
MIIGMTCCBRmgAwIBAgIUd1XZ9hjtdxMHmvs5bG0KxM74sFMwDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyMjc4YWFiODc4ZjI4MzFiYjE4MjNiNTg3OTRiMDkyZDg2
ZmIxZDdhMGY3NGUyODE2MTEwHhcNMjMwNjA1MDAwMDAwWhcNMjMwNjA4MjM1OTU5
WjCBpTFJMEcGA1UEBRNAOGIzMDlhYzMxMWU0N2UyZGU0MTE5MzAyYmRiZjJiYTIw
NjA3YTM4MzNlYTUxNDc0MjRkMDA1MmM1YmE0NjE4MzEtMCsGA1UEAxMkNmFlNGU1
NjctNjM0OC00YzRmLTk4YTgtMDQyMmM0YzUyZmYzMRQwEgYDVQQLEwtBbWF6b24g
UlBLSTETMBEGA1UEChMKQW1hem9uLmNvbTCCASIwDQYJKoZIhvcNAQEBBQADggEP
ADCCAQoCggEBAK7fQnBKDdd8+uEwjdIGgZxxWaGX6mAf6atYYaJZwql606fCeMII
/yQTUdh916Ks5pdYXjuMlL3qvmNowcg7To0UHYyN8zUaEVjJ94U/YemYQo8ht6TC
5Ibs2qaCCcKIAxLyeOLPDmoN6Dkhkm8e0EpoYD/1kGkXUuLqhLyPzgLySMq8ekWL
qg77rKgHKEBNWtm9ymK7yYhWxXKx4ihWO52dD2m8OOc5TG74QIFETdjLNBEwnM7o
DIBKJ7CVZwC8cl6YFaQr2AmFQqCT4TkMW+iI1+dOgPYMG3Z4aOIPoihXpDQ5xdwr
3jKI2gpj8S9dwZzJR3i2KcGGAeeYZnUFTo8CAwEAAaOCAr4wggK6MB0GA1UdDgQW
BBRwGqbCNnFilFiCp4t2oqEVqKVrfzAfBgNVHSMEGDAWgBSRRO3HpA7pkLf6Nm/2
4X15rcSDlzAOBgNVHQ8BAf8EBAMCB4AwgfMGCCsGAQUFBwEBBIHmMIHjMIHgBggr
BgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2FyaW4t
cnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMvMDM1
NzI3MmMtYTc5YS00NWJmLTk1ODYtOTJkZDQ5ZWYzMjIzLzczZjIxYzJiLTg4MjMt
NGMyNC1iMjViLTQzYzgwY2I2ZDFiYi8yNzhhYWI4NzhmMjgzMWJiMTgyM2I1ODc5
NGIwOTJkODZmYjFkN2EwZjc0ZTI4MTYxMS5jZXIwgZ4GCCsGAQUFBwELBIGRMIGO
MIGLBggrBgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6
b25hd3MuY29tL3ZvbHVtZS9iNjhhMzJlZS00NTVkLTQ4M2EtOTQzZC0xYTViZTc0
OGJmZWEvMjljYjJiYjQtOTkxNC00ZWExLWE1MzktNmFjMmVhMzVmYWQ5LnJvYTCB
lQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I2OGEzMmVlLTQ1NWQtNDgzYS05NDNk
LTFhNWJlNzQ4YmZlYS80YmI4YWU1Yy0xMjRjLTQyZjMtODdmYi00ZjM0ZTc0ZTNk
YTIuY3JsMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8E
EDAOMAwEAgABMAYDBADHJHgwDQYJKoZIhvcNAQELBQADggEBAFvjoM6hft8mVFN0
GiR2ADprB29WyNoGvmNgo1eObanyrqBAgBAccrk5Pf+XC8h2h7I0d9ngyfUUyDqP
OxlCyk8O79shMzlMUeVrrJoYNl2BI4P8ts4BuvzhnDeQXQTL2OYx+w5rDxMfU4qu
4PIdnH8g3vlB4IqVm8J2rasy+P362Yt0KqqlMI16Pj1gD+fX3GOR1ZUDxxsiJQ+1
vWdk0c7hBBuvdV+/RFAvupF0oLw3SRefnHF2bGMgvlwxadfQxpUfCRWl1t3l/aMr
BOYFklzgen3C8/Nj4ofSoZEvTqVIYomUwGbIJINpmkUjq2oVMAG0O5+YBNZ6+xwL
A/YWkiU=
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:39 2023 by rpki-client on console-ams.rpki-client.org