Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/3eaea8cd-f97e-4922-9678-d1cffb3df468.roa
File: 3eaea8cd-f97e-4922-9678-d1cffb3df468.roa (raw, json)
Hash identifier: K+Am8ADsyLsiV2bX+LKzjGP2l3BWIdgUB0xE84k4Irg=
Subject key identifier: 01:31:97:D5:BF:B6:53:64:D3:36:79:16:88:49:68:7E:6F:7F:F9:EB
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 375E203D529BC9AAD9790C4E50C8F529DC8DD19A
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/3eaea8cd-f97e-4922-9678-d1cffb3df468.roa
Signing time: Tue 30 May 2023 00:00:00 +0000
ROA not before: Tue 30 May 2023 00:00:00 +0000
ROA not after: Fri 02 Jun 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
37:5e:20:3d:52:9b:c9:aa:d9:79:0c:4e:50:c8:f5:29:dc:8d:d1:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: May 30 00:00:00 2023 GMT
Not After : Jun 2 23:59:59 2023 GMT
Subject: serialNumber=33cc7a96f0e7747eb12658be65df5afab8ac998d977070da7e42c0809f8521d8, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:0c:d7:bf:d6:9c:10:9a:43:11:06:3d:e6:43:
dd:5b:fc:6d:3a:87:d8:e0:da:ae:d7:94:28:7e:67:
c2:0a:ce:38:db:13:91:47:08:bb:cb:73:c0:ea:0f:
0c:b2:f2:b1:44:aa:72:f9:5d:52:db:b9:7b:25:da:
20:48:4d:c7:35:5b:02:5e:27:7d:1e:75:cf:af:f2:
8e:fd:bf:fd:8a:04:46:97:be:2d:0c:ed:91:f6:58:
4a:5d:17:55:08:45:0b:08:26:bb:88:12:8c:8c:ed:
f5:0c:1e:e1:29:12:0f:b6:4c:16:3f:c2:a0:d0:6a:
ca:27:39:12:e1:39:b0:26:ee:43:6a:76:43:39:e1:
a2:c0:81:05:fb:51:09:c0:9b:dd:bd:7f:a3:96:fd:
34:a3:49:2c:06:45:b3:8b:3e:f8:17:c5:b8:61:a2:
af:ec:17:2d:9e:74:46:f6:6a:a6:42:28:9e:1d:0e:
8d:9c:2f:db:55:b0:af:79:83:82:e3:08:af:ce:92:
48:6f:c1:ad:33:03:8e:d5:34:4d:5c:17:b4:ee:a2:
5a:7e:5e:92:c5:86:4e:31:a5:50:a4:a0:6e:93:96:
e8:d2:13:d3:49:7f:fc:38:96:9f:92:a4:09:1a:06:
2c:fd:44:bd:e7:92:5e:87:cd:40:9f:da:70:f4:37:
57:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:31:97:D5:BF:B6:53:64:D3:36:79:16:88:49:68:7E:6F:7F:F9:EB
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/3eaea8cd-f97e-4922-9678-d1cffb3df468.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
58:b6:32:f8:c9:99:88:41:41:9a:19:11:24:8e:2a:a1:87:2a:
42:6d:89:c5:2d:53:61:58:db:bd:2a:6b:47:55:2c:60:75:78:
a7:a1:e7:52:4b:73:81:7d:73:e3:2b:c4:61:58:5c:9e:91:e5:
91:1d:e8:13:1c:e2:ab:1b:18:39:f3:01:26:e9:06:85:e0:cf:
c4:17:61:01:0a:1f:43:7f:10:f0:c9:92:b1:1b:4c:1d:d6:0a:
75:59:2b:9e:b0:52:25:d5:55:d4:24:53:71:fb:2f:49:fe:91:
3c:42:20:91:1e:64:36:22:10:30:01:91:8f:c5:30:b3:a1:f0:
3d:dc:1e:d0:1a:5f:09:d3:1f:b7:ac:07:54:cc:be:c8:a4:c7:
df:1a:32:cc:26:60:ca:99:91:d5:b9:80:17:f7:7f:4b:5d:77:
91:f4:c9:33:d9:4d:7d:6a:a6:c6:9f:a1:28:ff:5b:2a:e1:48:
32:87:10:db:5b:a8:17:d4:f4:c3:e1:9a:13:04:de:b0:a9:5d:
e8:ad:b3:24:95:21:bb:09:06:b7:ac:53:57:1b:61:bb:b9:6e:
39:23:69:b6:a1:0a:00:6a:f1:11:4e:80:15:d4:83:dd:73:c2:
e2:4e:b1:dc:31:58:98:77:b4:a2:1c:21:65:e9:84:f0:aa:ca:
0c:d8:f1:7e
-----BEGIN CERTIFICATE-----
MIIGMTCCBRmgAwIBAgIUN14gPVKbyarZeQxOUMj1KdyN0ZowDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyMjc4YWFiODc4ZjI4MzFiYjE4MjNiNTg3OTRiMDkyZDg2
ZmIxZDdhMGY3NGUyODE2MTEwHhcNMjMwNTMwMDAwMDAwWhcNMjMwNjAyMjM1OTU5
WjCBpTFJMEcGA1UEBRNAMzNjYzdhOTZmMGU3NzQ3ZWIxMjY1OGJlNjVkZjVhZmFi
OGFjOTk4ZDk3NzA3MGRhN2U0MmMwODA5Zjg1MjFkODEtMCsGA1UEAxMkNmFlNGU1
NjctNjM0OC00YzRmLTk4YTgtMDQyMmM0YzUyZmYzMRQwEgYDVQQLEwtBbWF6b24g
UlBLSTETMBEGA1UEChMKQW1hem9uLmNvbTCCASIwDQYJKoZIhvcNAQEBBQADggEP
ADCCAQoCggEBAKYM17/WnBCaQxEGPeZD3Vv8bTqH2ODarteUKH5nwgrOONsTkUcI
u8tzwOoPDLLysUSqcvldUtu5eyXaIEhNxzVbAl4nfR51z6/yjv2//YoERpe+LQzt
kfZYSl0XVQhFCwgmu4gSjIzt9Qwe4SkSD7ZMFj/CoNBqyic5EuE5sCbuQ2p2Qznh
osCBBftRCcCb3b1/o5b9NKNJLAZFs4s++BfFuGGir+wXLZ50RvZqpkIonh0OjZwv
21Wwr3mDguMIr86SSG/BrTMDjtU0TVwXtO6iWn5eksWGTjGlUKSgbpOW6NIT00l/
/DiWn5KkCRoGLP1EveeSXofNQJ/acPQ3V6MCAwEAAaOCAr4wggK6MB0GA1UdDgQW
BBQBMZfVv7ZTZNM2eRaISWh+b3/56zAfBgNVHSMEGDAWgBSRRO3HpA7pkLf6Nm/2
4X15rcSDlzAOBgNVHQ8BAf8EBAMCB4AwgfMGCCsGAQUFBwEBBIHmMIHjMIHgBggr
BgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2FyaW4t
cnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMvMDM1
NzI3MmMtYTc5YS00NWJmLTk1ODYtOTJkZDQ5ZWYzMjIzLzczZjIxYzJiLTg4MjMt
NGMyNC1iMjViLTQzYzgwY2I2ZDFiYi8yNzhhYWI4NzhmMjgzMWJiMTgyM2I1ODc5
NGIwOTJkODZmYjFkN2EwZjc0ZTI4MTYxMS5jZXIwgZ4GCCsGAQUFBwELBIGRMIGO
MIGLBggrBgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6
b25hd3MuY29tL3ZvbHVtZS9iNjhhMzJlZS00NTVkLTQ4M2EtOTQzZC0xYTViZTc0
OGJmZWEvM2VhZWE4Y2QtZjk3ZS00OTIyLTk2NzgtZDFjZmZiM2RmNDY4LnJvYTCB
lQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I2OGEzMmVlLTQ1NWQtNDgzYS05NDNk
LTFhNWJlNzQ4YmZlYS80YmI4YWU1Yy0xMjRjLTQyZjMtODdmYi00ZjM0ZTc0ZTNk
YTIuY3JsMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8E
EDAOMAwEAgABMAYDBADHJHgwDQYJKoZIhvcNAQELBQADggEBAFi2MvjJmYhBQZoZ
ESSOKqGHKkJticUtU2FY270qa0dVLGB1eKeh51JLc4F9c+MrxGFYXJ6R5ZEd6BMc
4qsbGDnzASbpBoXgz8QXYQEKH0N/EPDJkrEbTB3WCnVZK56wUiXVVdQkU3H7L0n+
kTxCIJEeZDYiEDABkY/FMLOh8D3cHtAaXwnTH7esB1TMvsikx98aMswmYMqZkdW5
gBf3f0tdd5H0yTPZTX1qpsafoSj/WyrhSDKHENtbqBfU9MPhmhME3rCpXeitsySV
IbsJBresU1cbYbu5bjkjabahCgBq8RFOgBXUg91zwuJOsdwxWJh3tKIcIWXphPCq
ygzY8X4=
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:40 2023 by rpki-client on console-ams.rpki-client.org