Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/5445c814-684d-4f6e-9b34-c8f1fd754eb6.roa
File: 5445c814-684d-4f6e-9b34-c8f1fd754eb6.roa (raw, json)
Hash identifier: jQzSPdGtGpJ64OWFbbTum8l48UPzH9rMeu+qlKPpDq8=
Subject key identifier: CF:C3:1E:2E:7B:3B:1C:45:B9:C8:4D:BB:93:E2:CB:B0:2C:E9:D9:59
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 4CBDBCBE9FCE5B6F853217239946EE4798A96A06
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/5445c814-684d-4f6e-9b34-c8f1fd754eb6.roa
Signing time: Mon 04 Jul 2022 00:00:00 +0000
ROA not before: Mon 04 Jul 2022 00:00:00 +0000
ROA not after: Thu 07 Jul 2022 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4c:bd:bc:be:9f:ce:5b:6f:85:32:17:23:99:46:ee:47:98:a9:6a:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Jul 4 00:00:00 2022 GMT
Not After : Jul 7 23:59:59 2022 GMT
Subject: serialNumber=4f79724bc07fbd30dff4d0152f0850e96615d7880712b40b40f90ae7b76e7eac, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:48:65:fc:0d:ea:46:a2:86:a8:a1:3b:bc:cf:
0a:5a:56:4e:1b:83:ad:91:40:b2:ef:3b:26:88:75:
5b:59:ae:94:79:7e:2e:c9:5c:e3:ee:be:d1:4a:52:
95:f4:01:de:21:7d:bb:6e:a6:fe:2d:a6:cf:59:b4:
88:ef:e2:96:98:cb:76:22:c0:04:c8:54:e7:9d:d2:
7e:9c:a9:d9:ff:83:03:91:b0:8f:fd:d3:ea:95:b8:
23:3b:54:1c:2a:73:31:e9:89:54:8e:0c:70:dd:1a:
eb:0c:3f:a2:51:37:88:08:2d:f7:65:c5:c0:d9:44:
65:92:0f:ea:c5:d0:40:ee:19:8b:49:da:95:f4:70:
9d:3f:d2:94:d9:e4:c2:66:33:32:ad:9b:02:a2:b1:
fa:95:33:6f:b0:52:9a:61:b9:29:be:49:cf:ba:8c:
26:2b:c3:8f:7e:bb:d8:7f:c6:8d:0d:a5:c8:d2:3c:
5b:91:98:ed:b5:05:34:2e:70:96:99:7b:02:e9:74:
f0:6d:b9:0b:42:b3:d4:0f:6c:71:ec:a6:6c:8d:d0:
71:bc:c3:e3:15:22:cb:d3:bb:da:20:4e:d4:5d:27:
07:15:0b:e2:ba:a9:14:c1:75:3b:4c:b4:de:8f:4c:
c9:71:f9:99:be:d9:13:d1:7e:28:7e:43:bc:57:15:
5c:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:C3:1E:2E:7B:3B:1C:45:B9:C8:4D:BB:93:E2:CB:B0:2C:E9:D9:59
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/5445c814-684d-4f6e-9b34-c8f1fd754eb6.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
1a:b8:27:f8:55:d4:f1:a1:48:7f:cc:34:cf:51:b8:88:32:08:
6c:de:f5:7a:0d:dc:32:dd:26:76:ab:93:79:fb:7b:6d:e3:8c:
df:3a:c2:77:30:d6:09:36:e5:5a:3d:7d:e5:91:f1:c4:94:ac:
08:f1:56:b4:d2:a1:fb:fe:da:b4:70:3f:45:ce:04:53:ae:3f:
05:8b:ac:aa:54:c0:1b:47:53:c7:e3:9b:14:ea:fa:25:80:18:
66:7b:b8:11:41:c1:70:d1:79:20:97:b3:9c:a7:dc:ec:69:9e:
ad:2f:97:b8:d9:ec:52:a9:7f:26:82:b6:a4:55:cb:a2:3a:01:
42:fc:4c:b4:03:1b:b6:60:0b:51:ce:8b:11:b7:e1:45:58:8f:
66:8d:89:1d:49:d7:d2:d5:3f:94:ce:b4:46:a4:70:16:8e:4a:
b4:8f:c5:2d:54:69:a3:e1:bc:7f:75:d5:01:59:9a:2c:5a:c9:
6e:95:55:46:d3:41:e8:8f:e7:7f:6a:27:27:5d:a2:9a:c0:38:
3d:4d:04:b9:b9:ef:36:b5:c4:51:34:44:7e:0b:da:07:91:b9:
38:d3:98:51:1c:5f:16:2a:1b:f5:e1:28:85:de:d8:f9:e3:b4:
cb:61:40:25:f3:86:2f:48:30:35:49:fa:b8:eb:92:a0:80:56:
20:4e:23:2f
-----BEGIN CERTIFICATE-----
MIIGMTCCBRmgAwIBAgIUTL28vp/OW2+FMhcjmUbuR5ipagYwDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyMjc4YWFiODc4ZjI4MzFiYjE4MjNiNTg3OTRiMDkyZDg2
ZmIxZDdhMGY3NGUyODE2MTEwHhcNMjIwNzA0MDAwMDAwWhcNMjIwNzA3MjM1OTU5
WjCBpTFJMEcGA1UEBRNANGY3OTcyNGJjMDdmYmQzMGRmZjRkMDE1MmYwODUwZTk2
NjE1ZDc4ODA3MTJiNDBiNDBmOTBhZTdiNzZlN2VhYzEtMCsGA1UEAxMkNmFlNGU1
NjctNjM0OC00YzRmLTk4YTgtMDQyMmM0YzUyZmYzMRQwEgYDVQQLEwtBbWF6b24g
UlBLSTETMBEGA1UEChMKQW1hem9uLmNvbTCCASIwDQYJKoZIhvcNAQEBBQADggEP
ADCCAQoCggEBAK9IZfwN6kaihqihO7zPClpWThuDrZFAsu87Joh1W1mulHl+Lslc
4+6+0UpSlfQB3iF9u26m/i2mz1m0iO/ilpjLdiLABMhU553Sfpyp2f+DA5Gwj/3T
6pW4IztUHCpzMemJVI4McN0a6ww/olE3iAgt92XFwNlEZZIP6sXQQO4Zi0nalfRw
nT/SlNnkwmYzMq2bAqKx+pUzb7BSmmG5Kb5Jz7qMJivDj3672H/GjQ2lyNI8W5GY
7bUFNC5wlpl7Aul08G25C0Kz1A9sceymbI3QcbzD4xUiy9O72iBO1F0nBxUL4rqp
FMF1O0y03o9MyXH5mb7ZE9F+KH5DvFcVXA0CAwEAAaOCAr4wggK6MB0GA1UdDgQW
BBTPwx4uezscRbnITbuT4suwLOnZWTAfBgNVHSMEGDAWgBSRRO3HpA7pkLf6Nm/2
4X15rcSDlzAOBgNVHQ8BAf8EBAMCB4AwgfMGCCsGAQUFBwEBBIHmMIHjMIHgBggr
BgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2FyaW4t
cnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMvMDM1
NzI3MmMtYTc5YS00NWJmLTk1ODYtOTJkZDQ5ZWYzMjIzLzczZjIxYzJiLTg4MjMt
NGMyNC1iMjViLTQzYzgwY2I2ZDFiYi8yNzhhYWI4NzhmMjgzMWJiMTgyM2I1ODc5
NGIwOTJkODZmYjFkN2EwZjc0ZTI4MTYxMS5jZXIwgZ4GCCsGAQUFBwELBIGRMIGO
MIGLBggrBgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6
b25hd3MuY29tL3ZvbHVtZS9iNjhhMzJlZS00NTVkLTQ4M2EtOTQzZC0xYTViZTc0
OGJmZWEvNTQ0NWM4MTQtNjg0ZC00ZjZlLTliMzQtYzhmMWZkNzU0ZWI2LnJvYTCB
lQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I2OGEzMmVlLTQ1NWQtNDgzYS05NDNk
LTFhNWJlNzQ4YmZlYS80YmI4YWU1Yy0xMjRjLTQyZjMtODdmYi00ZjM0ZTc0ZTNk
YTIuY3JsMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8E
EDAOMAwEAgABMAYDBADHJHgwDQYJKoZIhvcNAQELBQADggEBABq4J/hV1PGhSH/M
NM9RuIgyCGze9XoN3DLdJnark3n7e23jjN86wncw1gk25Vo9feWR8cSUrAjxVrTS
ofv+2rRwP0XOBFOuPwWLrKpUwBtHU8fjmxTq+iWAGGZ7uBFBwXDReSCXs5yn3Oxp
nq0vl7jZ7FKpfyaCtqRVy6I6AUL8TLQDG7ZgC1HOixG34UVYj2aNiR1J19LVP5TO
tEakcBaOSrSPxS1UaaPhvH911QFZmixayW6VVUbTQeiP539qJyddoprAOD1NBLm5
7za1xFE0RH4L2geRuTjTmFEcXxYqG/XhKIXe2PnjtMthQCXzhi9IMDVJ+rjrkqCA
ViBOIy8=
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:42 2023 by rpki-client on console-ams.rpki-client.org