Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/2ed5f243-f30f-4349-b208-edeea502675c.roa
File: 2ed5f243-f30f-4349-b208-edeea502675c.roa (raw, json)
Hash identifier: ptFrrRMjk9VFLAsXMgmzOo0Gee21OOLDXuXoJUm82+c=
Subject key identifier: 21:C1:64:88:7C:21:20:8A:98:3D:86:08:64:DE:57:1A:40:25:DF:F5
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 369AF6AF94C8FB814592745731975FC553B755B8
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/2ed5f243-f30f-4349-b208-edeea502675c.roa
Signing time: Fri 30 Dec 2022 00:00:00 +0000
ROA not before: Fri 30 Dec 2022 00:00:00 +0000
ROA not after: Mon 02 Jan 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
36:9a:f6:af:94:c8:fb:81:45:92:74:57:31:97:5f:c5:53:b7:55:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Dec 30 00:00:00 2022 GMT
Not After : Jan 2 23:59:59 2023 GMT
Subject: serialNumber=58fb5710410d9f2595b27cd0bb7f41805b4b5ebf816bd61794bab145e3376e07, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:50:91:1d:d9:0f:1e:94:10:b1:11:40:fd:ad:
ca:9f:e7:be:b2:00:e5:37:af:f1:5e:5e:08:6a:e8:
36:48:b2:5f:92:c1:90:ed:08:85:42:f8:90:83:c4:
b8:44:41:ef:e8:95:0b:0d:6d:26:6d:04:52:4c:be:
7b:8c:84:88:13:04:ad:ae:26:a6:51:a2:e8:9d:1b:
c5:cb:5c:d0:a8:3d:5e:5f:f0:50:df:e6:52:93:b1:
50:4c:cd:9d:a4:db:d1:8c:13:18:ef:12:ce:94:c0:
60:c9:fc:d7:61:95:70:24:58:a9:86:1b:53:a5:f4:
1b:5f:21:f8:32:d7:2e:14:d4:62:a5:69:92:7b:01:
0a:4e:42:13:4f:f3:fe:f2:9a:18:cc:ef:90:8e:b8:
83:60:f6:30:86:92:01:2d:bf:28:e3:aa:ee:6c:92:
8d:25:5e:4a:c8:4f:61:36:0d:0f:5d:61:b7:37:68:
45:8a:43:17:3c:56:14:28:25:e9:83:22:4f:26:67:
15:9e:36:35:09:59:fc:c8:1a:4d:9c:b9:55:ea:25:
c0:80:b5:4c:40:6d:eb:c7:3e:b7:b5:4b:25:35:23:
e1:53:1a:2c:cf:13:f0:24:18:e2:96:9b:96:50:08:
3b:5b:49:40:4d:c3:61:72:c6:ef:1e:f3:b8:b3:62:
cb:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:C1:64:88:7C:21:20:8A:98:3D:86:08:64:DE:57:1A:40:25:DF:F5
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/2ed5f243-f30f-4349-b208-edeea502675c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
c9:54:d1:61:d9:23:1a:c0:da:1f:ac:a6:a8:e1:9d:7d:88:86:
bd:a7:89:a0:19:d5:cf:44:14:4e:f9:1d:b4:fe:57:74:88:fe:
53:d2:ff:5a:16:fc:dd:81:24:a6:85:4b:54:b0:6f:be:1d:b6:
78:92:cc:7c:39:d2:4c:c0:cf:c4:43:83:bc:a8:65:b4:ea:4e:
1f:4a:20:4b:a0:34:b5:64:83:3f:90:22:51:f9:68:41:6d:7d:
d3:73:f4:9e:da:71:09:6f:d8:79:ab:0a:83:c1:3b:81:68:f6:
00:f7:16:9e:e3:91:9d:74:92:1a:ba:8d:10:8a:16:91:a0:8c:
d4:98:bb:31:c2:7d:f0:32:79:e1:e4:44:d4:cc:28:0c:ff:96:
2e:3a:f4:4c:3a:71:94:4b:41:38:c3:4d:eb:0b:31:94:a8:a8:
6e:f5:87:37:14:ea:35:12:af:65:0b:9f:4f:42:00:ee:98:b3:
fd:59:a2:25:da:f9:7d:42:28:5c:ff:1f:5c:27:db:f6:7a:9a:
fe:a6:60:ac:0b:dd:a7:4c:3e:85:46:ee:a7:4c:aa:ba:ee:03:
d1:77:8c:61:00:c5:70:9b:18:52:83:3b:8e:60:c0:f2:61:dd:
ce:a5:f2:7c:2a:02:71:c3:e9:e3:a2:9d:eb:0a:22:dd:38:3d:
20:fa:9e:2f
-----BEGIN CERTIFICATE-----
MIIGMTCCBRmgAwIBAgIUNpr2r5TI+4FFknRXMZdfxVO3VbgwDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyMjc4YWFiODc4ZjI4MzFiYjE4MjNiNTg3OTRiMDkyZDg2
ZmIxZDdhMGY3NGUyODE2MTEwHhcNMjIxMjMwMDAwMDAwWhcNMjMwMTAyMjM1OTU5
WjCBpTFJMEcGA1UEBRNANThmYjU3MTA0MTBkOWYyNTk1YjI3Y2QwYmI3ZjQxODA1
YjRiNWViZjgxNmJkNjE3OTRiYWIxNDVlMzM3NmUwNzEtMCsGA1UEAxMkNmFlNGU1
NjctNjM0OC00YzRmLTk4YTgtMDQyMmM0YzUyZmYzMRQwEgYDVQQLEwtBbWF6b24g
UlBLSTETMBEGA1UEChMKQW1hem9uLmNvbTCCASIwDQYJKoZIhvcNAQEBBQADggEP
ADCCAQoCggEBANRQkR3ZDx6UELERQP2typ/nvrIA5Tev8V5eCGroNkiyX5LBkO0I
hUL4kIPEuERB7+iVCw1tJm0EUky+e4yEiBMEra4mplGi6J0bxctc0Kg9Xl/wUN/m
UpOxUEzNnaTb0YwTGO8SzpTAYMn812GVcCRYqYYbU6X0G18h+DLXLhTUYqVpknsB
Ck5CE0/z/vKaGMzvkI64g2D2MIaSAS2/KOOq7mySjSVeSshPYTYND11htzdoRYpD
FzxWFCgl6YMiTyZnFZ42NQlZ/MgaTZy5VeolwIC1TEBt68c+t7VLJTUj4VMaLM8T
8CQY4pabllAIO1tJQE3DYXLG7x7zuLNiyyMCAwEAAaOCAr4wggK6MB0GA1UdDgQW
BBQhwWSIfCEgipg9hghk3lcaQCXf9TAfBgNVHSMEGDAWgBSRRO3HpA7pkLf6Nm/2
4X15rcSDlzAOBgNVHQ8BAf8EBAMCB4AwgfMGCCsGAQUFBwEBBIHmMIHjMIHgBggr
BgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2FyaW4t
cnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMvMDM1
NzI3MmMtYTc5YS00NWJmLTk1ODYtOTJkZDQ5ZWYzMjIzLzczZjIxYzJiLTg4MjMt
NGMyNC1iMjViLTQzYzgwY2I2ZDFiYi8yNzhhYWI4NzhmMjgzMWJiMTgyM2I1ODc5
NGIwOTJkODZmYjFkN2EwZjc0ZTI4MTYxMS5jZXIwgZ4GCCsGAQUFBwELBIGRMIGO
MIGLBggrBgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6
b25hd3MuY29tL3ZvbHVtZS9iNjhhMzJlZS00NTVkLTQ4M2EtOTQzZC0xYTViZTc0
OGJmZWEvMmVkNWYyNDMtZjMwZi00MzQ5LWIyMDgtZWRlZWE1MDI2NzVjLnJvYTCB
lQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I2OGEzMmVlLTQ1NWQtNDgzYS05NDNk
LTFhNWJlNzQ4YmZlYS80YmI4YWU1Yy0xMjRjLTQyZjMtODdmYi00ZjM0ZTc0ZTNk
YTIuY3JsMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8E
EDAOMAwEAgABMAYDBADHJHgwDQYJKoZIhvcNAQELBQADggEBAMlU0WHZIxrA2h+s
pqjhnX2Ihr2niaAZ1c9EFE75HbT+V3SI/lPS/1oW/N2BJKaFS1Swb74dtniSzHw5
0kzAz8RDg7yoZbTqTh9KIEugNLVkgz+QIlH5aEFtfdNz9J7acQlv2HmrCoPBO4Fo
9gD3Fp7jkZ10khq6jRCKFpGgjNSYuzHCffAyeeHkRNTMKAz/li469Ew6cZRLQTjD
TesLMZSoqG71hzcU6jUSr2ULn09CAO6Ys/1ZoiXa+X1CKFz/H1wn2/Z6mv6mYKwL
3adMPoVG7qdMqrruA9F3jGEAxXCbGFKDO45gwPJh3c6l8nwqAnHD6eOinesKIt04
PSD6ni8=
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:34 2023 by rpki-client on console-fra.rpki-client.org