Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4ca69ff6-3f11-4b95-8d7e-b201cad7139d.roa
File: 4ca69ff6-3f11-4b95-8d7e-b201cad7139d.roa (raw, json)
Hash identifier: YOcxNGudCpW82651HGnx+3TqOXwi4PhpYBScIdvz6gQ=
Subject key identifier: 43:53:A0:BC:70:71:BE:DE:67:4A:E5:3F:29:3C:20:13:43:D9:86:F0
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 447CDBEDD9AB0E25E73125E945851D7910B87981
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4ca69ff6-3f11-4b95-8d7e-b201cad7139d.roa
Signing time: Wed 29 Mar 2023 00:00:00 +0000
ROA not before: Wed 29 Mar 2023 00:00:00 +0000
ROA not after: Sat 01 Apr 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
44:7c:db:ed:d9:ab:0e:25:e7:31:25:e9:45:85:1d:79:10:b8:79:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Mar 29 00:00:00 2023 GMT
Not After : Apr 1 23:59:59 2023 GMT
Subject: serialNumber=6a52e34ae3ae9554a5755f500df38eec9d939c30ba84ea3beaa6c8dae6f4271c, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:99:2c:fa:c0:bb:47:08:75:c8:a4:f6:1b:a1:
e1:04:6b:a2:52:2e:c5:40:67:b2:37:51:d8:08:27:
c9:e5:8c:21:58:50:49:f4:1f:a7:16:c1:97:79:e2:
51:d7:78:7b:f3:93:d7:9a:14:1b:e6:36:36:f8:e2:
47:01:cb:b6:16:b0:17:f2:e2:29:40:63:06:aa:3d:
f9:16:1b:91:28:cc:88:27:5f:a4:40:8c:e2:23:4e:
ac:89:71:46:b2:03:d3:9a:7e:c4:b5:b6:3d:b2:e6:
04:03:30:d4:c0:96:10:5f:f1:7e:51:0d:5c:51:af:
a6:e6:3a:6c:53:f3:36:00:ec:20:91:e0:53:a1:d1:
f6:28:c8:f9:2d:0e:a2:d4:b0:e4:a8:be:b2:b4:b7:
ee:64:2f:f4:c9:89:66:d5:fa:17:21:74:31:19:55:
cf:0f:f7:0e:c5:d2:7d:7a:b5:47:d5:a5:87:d7:47:
2b:ef:ab:b7:e5:62:a2:4e:96:e2:63:37:03:06:07:
89:76:0b:7e:45:5a:4f:f5:4d:e5:15:fd:09:15:77:
f3:f8:4c:1a:a8:5a:86:29:29:78:5b:0c:52:42:95:
bd:af:48:3c:14:28:49:df:53:bd:0f:1d:40:8f:15:
5d:6c:87:77:e9:3f:ea:e2:51:19:bd:69:c8:27:7f:
73:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:53:A0:BC:70:71:BE:DE:67:4A:E5:3F:29:3C:20:13:43:D9:86:F0
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4ca69ff6-3f11-4b95-8d7e-b201cad7139d.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
34:89:36:1e:39:2e:29:d6:00:fd:42:85:a4:82:3c:65:a6:ca:
28:9f:ae:e7:91:b5:24:53:53:08:fc:93:50:fa:ea:94:2c:62:
7e:51:3d:eb:50:b3:f4:54:43:3b:3b:9e:4d:1d:6f:52:60:ed:
2c:ae:68:2d:1e:a6:76:3d:f9:29:4d:6b:f6:07:3f:ff:d1:04:
2b:80:e9:f3:c1:48:9a:f6:f0:57:20:97:cc:53:75:4a:db:39:
20:7d:f3:e5:99:05:07:77:0e:57:20:22:a0:d8:e2:c1:24:a6:
98:42:f3:2f:3a:7a:c9:ff:2a:ee:7b:35:13:96:cb:60:91:a8:
d7:c9:35:6c:9a:63:d0:f0:89:da:30:d1:be:6d:2e:12:a7:bb:
ec:9a:8c:3d:4c:ac:1e:e3:2c:af:a5:58:73:72:7d:8f:74:b7:
fa:f7:98:77:05:8e:1d:90:93:3e:ce:ca:a9:8e:ea:ba:3e:a5:
1e:79:68:cc:f8:07:72:dc:0c:70:8d:f9:de:e8:c7:9f:f4:73:
fc:bb:00:d0:db:92:67:5f:2b:c0:e5:55:01:83:84:af:ba:16:
cc:46:5d:fb:39:a9:b9:fa:c4:23:49:2a:b5:e1:46:af:42:fb:
7f:7b:2d:5d:cd:0d:2f:58:65:eb:6b:32:47:4b:19:63:51:5b:
fd:2a:4c:f5
-----BEGIN CERTIFICATE-----
MIIGMTCCBRmgAwIBAgIURHzb7dmrDiXnMSXpRYUdeRC4eYEwDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyMjc4YWFiODc4ZjI4MzFiYjE4MjNiNTg3OTRiMDkyZDg2
ZmIxZDdhMGY3NGUyODE2MTEwHhcNMjMwMzI5MDAwMDAwWhcNMjMwNDAxMjM1OTU5
WjCBpTFJMEcGA1UEBRNANmE1MmUzNGFlM2FlOTU1NGE1NzU1ZjUwMGRmMzhlZWM5
ZDkzOWMzMGJhODRlYTNiZWFhNmM4ZGFlNmY0MjcxYzEtMCsGA1UEAxMkNmFlNGU1
NjctNjM0OC00YzRmLTk4YTgtMDQyMmM0YzUyZmYzMRQwEgYDVQQLEwtBbWF6b24g
UlBLSTETMBEGA1UEChMKQW1hem9uLmNvbTCCASIwDQYJKoZIhvcNAQEBBQADggEP
ADCCAQoCggEBAJmZLPrAu0cIdcik9huh4QRrolIuxUBnsjdR2AgnyeWMIVhQSfQf
pxbBl3niUdd4e/OT15oUG+Y2NvjiRwHLthawF/LiKUBjBqo9+RYbkSjMiCdfpECM
4iNOrIlxRrID05p+xLW2PbLmBAMw1MCWEF/xflENXFGvpuY6bFPzNgDsIJHgU6HR
9ijI+S0OotSw5Ki+srS37mQv9MmJZtX6FyF0MRlVzw/3DsXSfXq1R9Wlh9dHK++r
t+Viok6W4mM3AwYHiXYLfkVaT/VN5RX9CRV38/hMGqhahikpeFsMUkKVva9IPBQo
Sd9TvQ8dQI8VXWyHd+k/6uJRGb1pyCd/c6MCAwEAAaOCAr4wggK6MB0GA1UdDgQW
BBRDU6C8cHG+3mdK5T8pPCATQ9mG8DAfBgNVHSMEGDAWgBSRRO3HpA7pkLf6Nm/2
4X15rcSDlzAOBgNVHQ8BAf8EBAMCB4AwgfMGCCsGAQUFBwEBBIHmMIHjMIHgBggr
BgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2FyaW4t
cnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMvMDM1
NzI3MmMtYTc5YS00NWJmLTk1ODYtOTJkZDQ5ZWYzMjIzLzczZjIxYzJiLTg4MjMt
NGMyNC1iMjViLTQzYzgwY2I2ZDFiYi8yNzhhYWI4NzhmMjgzMWJiMTgyM2I1ODc5
NGIwOTJkODZmYjFkN2EwZjc0ZTI4MTYxMS5jZXIwgZ4GCCsGAQUFBwELBIGRMIGO
MIGLBggrBgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6
b25hd3MuY29tL3ZvbHVtZS9iNjhhMzJlZS00NTVkLTQ4M2EtOTQzZC0xYTViZTc0
OGJmZWEvNGNhNjlmZjYtM2YxMS00Yjk1LThkN2UtYjIwMWNhZDcxMzlkLnJvYTCB
lQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I2OGEzMmVlLTQ1NWQtNDgzYS05NDNk
LTFhNWJlNzQ4YmZlYS80YmI4YWU1Yy0xMjRjLTQyZjMtODdmYi00ZjM0ZTc0ZTNk
YTIuY3JsMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8E
EDAOMAwEAgABMAYDBADHJHgwDQYJKoZIhvcNAQELBQADggEBADSJNh45LinWAP1C
haSCPGWmyiifrueRtSRTUwj8k1D66pQsYn5RPetQs/RUQzs7nk0db1Jg7SyuaC0e
pnY9+SlNa/YHP//RBCuA6fPBSJr28Fcgl8xTdUrbOSB98+WZBQd3DlcgIqDY4sEk
pphC8y86esn/Ku57NROWy2CRqNfJNWyaY9Dwidow0b5tLhKnu+yajD1MrB7jLK+l
WHNyfY90t/r3mHcFjh2Qkz7OyqmO6ro+pR55aMz4B3LcDHCN+d7ox5/0c/y7ANDb
kmdfK8DlVQGDhK+6FsxGXfs5qbn6xCNJKrXhRq9C+397LV3NDS9YZetrMkdLGWNR
W/0qTPU=
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:36 2023 by rpki-client on console-fra.rpki-client.org