Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/6df2eb5e-5178-4672-ac34-71fa1eb66cc1.roa
File: 6df2eb5e-5178-4672-ac34-71fa1eb66cc1.roa (raw, json)
Hash identifier: 2r9wZ+YzCxB/jKwnvdYN31yt+cVFJ0ykdypzCNH+BYs=
Subject key identifier: DE:2E:36:B7:9A:28:59:E5:09:FE:A7:32:4E:B4:A6:02:43:5F:16:60
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 4ABC5F352B7B587A5A1C6F44BC178840DF0E4B44
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/6df2eb5e-5178-4672-ac34-71fa1eb66cc1.roa
Signing time: Sun 26 Feb 2023 00:00:00 +0000
ROA not before: Sun 26 Feb 2023 00:00:00 +0000
ROA not after: Wed 01 Mar 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4a:bc:5f:35:2b:7b:58:7a:5a:1c:6f:44:bc:17:88:40:df:0e:4b:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Feb 26 00:00:00 2023 GMT
Not After : Mar 1 23:59:59 2023 GMT
Subject: serialNumber=a6e44e0538874cc6ab97cfae4f653ee80cd7a89fbf94f9f9f556f11d0a2cd80e, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fc:ab:5f:12:85:2e:fa:ce:77:70:b6:41:ec:78:
71:f4:ad:eb:aa:b1:f4:c4:15:89:e7:3b:8f:69:f3:
4b:48:59:17:e3:38:eb:26:89:49:07:93:e9:db:46:
47:2f:73:ae:6f:ee:65:fc:48:75:12:e7:eb:60:84:
e6:1c:75:5e:01:b7:6d:d9:f1:b4:90:0d:c2:be:a5:
f7:2f:16:88:a6:dc:c2:af:7b:cd:79:ef:ed:61:a3:
c8:a4:f0:42:23:cc:bd:9d:c7:51:88:57:75:7b:43:
64:a2:b2:ac:fa:e0:b2:d6:e0:f2:3b:cc:51:61:48:
95:69:5a:fa:8c:f5:38:ee:b3:da:4e:b2:b8:90:7c:
c1:09:6c:7f:0b:e0:31:a3:c3:88:af:97:08:eb:6f:
23:f2:70:15:a6:b9:38:5e:c4:0c:26:c6:c1:37:28:
e2:02:9a:84:8b:57:e9:91:a7:c1:be:6f:1e:43:ff:
6c:44:c5:6a:0d:6f:6d:26:fc:7c:62:33:7f:ad:fa:
03:57:ef:ef:8b:be:ad:81:4b:d3:b8:46:e1:5b:d5:
53:8a:29:b4:1e:9d:aa:f7:76:29:bd:a7:35:b3:a1:
2d:58:2d:e2:22:b5:52:e8:58:86:d2:68:2b:95:d3:
47:a2:9b:ef:1f:91:79:7c:52:55:47:e8:28:44:97:
2a:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:2E:36:B7:9A:28:59:E5:09:FE:A7:32:4E:B4:A6:02:43:5F:16:60
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/6df2eb5e-5178-4672-ac34-71fa1eb66cc1.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
23:54:48:15:48:eb:15:a3:9a:9e:b8:cd:d2:68:a5:a6:ce:fe:
c2:b2:04:d3:e7:d1:9e:7d:68:8a:b1:07:d7:03:aa:42:4f:43:
da:81:e0:f1:59:74:f9:16:71:73:e7:62:e2:3c:25:4e:0d:70:
66:e7:cd:d4:39:16:de:36:7a:07:eb:7d:44:97:60:c2:ca:af:
20:45:a6:85:c6:5c:28:e4:83:35:1c:44:1d:64:45:77:8d:64:
e8:1d:d8:94:6a:06:70:fd:04:6c:b1:15:e2:f7:b6:cb:42:5a:
f0:0e:0b:1a:19:3d:97:45:9a:9a:5b:84:28:f1:5a:1b:92:ca:
5e:c8:5c:d1:b2:3e:0a:2b:54:93:b7:79:a6:60:e7:d0:1a:c6:
0d:f4:18:15:22:2c:bf:de:07:94:c3:9a:49:42:54:10:1f:43:
e2:75:ae:64:41:2d:47:64:a1:bd:74:57:6e:a9:17:0c:30:c6:
33:11:fa:e5:e9:c4:1d:30:3a:aa:c1:22:12:39:60:76:ee:be:
6b:3b:0f:0d:07:90:5b:59:ac:b5:ba:8a:ca:4f:8a:ec:2a:dd:
a3:15:e9:b6:c7:54:41:8b:66:5e:29:c1:31:28:45:c1:25:b1:
ad:49:21:30:46:1b:19:e1:0b:1c:70:a8:7d:cf:fb:d3:48:5b:
08:73:09:62
-----BEGIN CERTIFICATE-----
MIIGMTCCBRmgAwIBAgIUSrxfNSt7WHpaHG9EvBeIQN8OS0QwDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyMjc4YWFiODc4ZjI4MzFiYjE4MjNiNTg3OTRiMDkyZDg2
ZmIxZDdhMGY3NGUyODE2MTEwHhcNMjMwMjI2MDAwMDAwWhcNMjMwMzAxMjM1OTU5
WjCBpTFJMEcGA1UEBRNAYTZlNDRlMDUzODg3NGNjNmFiOTdjZmFlNGY2NTNlZTgw
Y2Q3YTg5ZmJmOTRmOWY5ZjU1NmYxMWQwYTJjZDgwZTEtMCsGA1UEAxMkNmFlNGU1
NjctNjM0OC00YzRmLTk4YTgtMDQyMmM0YzUyZmYzMRQwEgYDVQQLEwtBbWF6b24g
UlBLSTETMBEGA1UEChMKQW1hem9uLmNvbTCCASIwDQYJKoZIhvcNAQEBBQADggEP
ADCCAQoCggEBAPyrXxKFLvrOd3C2Qex4cfSt66qx9MQViec7j2nzS0hZF+M46yaJ
SQeT6dtGRy9zrm/uZfxIdRLn62CE5hx1XgG3bdnxtJANwr6l9y8WiKbcwq97zXnv
7WGjyKTwQiPMvZ3HUYhXdXtDZKKyrPrgstbg8jvMUWFIlWla+oz1OO6z2k6yuJB8
wQlsfwvgMaPDiK+XCOtvI/JwFaa5OF7EDCbGwTco4gKahItX6ZGnwb5vHkP/bETF
ag1vbSb8fGIzf636A1fv74u+rYFL07hG4VvVU4optB6dqvd2Kb2nNbOhLVgt4iK1
UuhYhtJoK5XTR6Kb7x+ReXxSVUfoKESXKgUCAwEAAaOCAr4wggK6MB0GA1UdDgQW
BBTeLja3mihZ5Qn+pzJOtKYCQ18WYDAfBgNVHSMEGDAWgBSRRO3HpA7pkLf6Nm/2
4X15rcSDlzAOBgNVHQ8BAf8EBAMCB4AwgfMGCCsGAQUFBwEBBIHmMIHjMIHgBggr
BgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2FyaW4t
cnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMvMDM1
NzI3MmMtYTc5YS00NWJmLTk1ODYtOTJkZDQ5ZWYzMjIzLzczZjIxYzJiLTg4MjMt
NGMyNC1iMjViLTQzYzgwY2I2ZDFiYi8yNzhhYWI4NzhmMjgzMWJiMTgyM2I1ODc5
NGIwOTJkODZmYjFkN2EwZjc0ZTI4MTYxMS5jZXIwgZ4GCCsGAQUFBwELBIGRMIGO
MIGLBggrBgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6
b25hd3MuY29tL3ZvbHVtZS9iNjhhMzJlZS00NTVkLTQ4M2EtOTQzZC0xYTViZTc0
OGJmZWEvNmRmMmViNWUtNTE3OC00NjcyLWFjMzQtNzFmYTFlYjY2Y2MxLnJvYTCB
lQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I2OGEzMmVlLTQ1NWQtNDgzYS05NDNk
LTFhNWJlNzQ4YmZlYS80YmI4YWU1Yy0xMjRjLTQyZjMtODdmYi00ZjM0ZTc0ZTNk
YTIuY3JsMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8E
EDAOMAwEAgABMAYDBADHJHgwDQYJKoZIhvcNAQELBQADggEBACNUSBVI6xWjmp64
zdJopabO/sKyBNPn0Z59aIqxB9cDqkJPQ9qB4PFZdPkWcXPnYuI8JU4NcGbnzdQ5
Ft42egfrfUSXYMLKryBFpoXGXCjkgzUcRB1kRXeNZOgd2JRqBnD9BGyxFeL3tstC
WvAOCxoZPZdFmppbhCjxWhuSyl7IXNGyPgorVJO3eaZg59Aaxg30GBUiLL/eB5TD
mklCVBAfQ+J1rmRBLUdkob10V26pFwwwxjMR+uXpxB0wOqrBIhI5YHbuvms7Dw0H
kFtZrLW6ispPiuwq3aMV6bbHVEGLZl4pwTEoRcElsa1JITBGGxnhCxxwqH3P+9NI
WwhzCWI=
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:46 2023 by rpki-client on console-fra.rpki-client.org