Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/75943167-004f-498d-a3dc-b6e067b4aedc.roa
File: 75943167-004f-498d-a3dc-b6e067b4aedc.roa (raw, json)
Hash identifier: gbAVUTSq0tJ0tfqdNYe6XstKbZszEyyMGjPlgPJuBqE=
Subject key identifier: F1:D6:37:0B:C5:16:08:CA:88:97:E0:01:0D:D5:C2:B9:89:6D:BB:BC
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 3FBED8257B50ADDF08119CC7E0B37A79C5671773
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/75943167-004f-498d-a3dc-b6e067b4aedc.roa
Signing time: Mon 27 Feb 2023 00:00:00 +0000
ROA not before: Mon 27 Feb 2023 00:00:00 +0000
ROA not after: Thu 02 Mar 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3f:be:d8:25:7b:50:ad:df:08:11:9c:c7:e0:b3:7a:79:c5:67:17:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Feb 27 00:00:00 2023 GMT
Not After : Mar 2 23:59:59 2023 GMT
Subject: serialNumber=1b86198858f716ff91f20c936e3afe7680f675d55ce5892f4a5ce6962dc50623, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:8c:a4:90:22:44:b7:7a:e5:d0:f2:11:f6:20:
ef:46:6d:b6:ec:01:9e:7c:ae:e6:28:81:9b:6f:75:
c8:3f:b8:28:e4:b1:8e:19:0f:5d:96:6f:a9:18:0a:
d8:8c:56:58:2f:18:de:fa:7c:d9:93:ad:04:ad:d4:
64:5f:5f:ef:87:5f:69:0e:a3:54:03:ff:29:1b:f0:
98:9b:24:84:16:a9:ab:89:87:d9:f4:77:40:5f:77:
8d:25:06:63:f2:f8:6e:7e:54:fe:5a:62:a1:8a:06:
31:6b:be:db:12:7c:37:5b:d4:c0:77:82:e3:a3:27:
e9:69:dd:95:59:25:b4:c6:c2:24:4d:26:36:8d:f7:
aa:11:36:16:b7:17:9f:25:81:9e:47:d7:7e:b2:88:
59:b9:e7:38:f8:8c:ba:b5:9d:85:86:11:87:76:a2:
40:c9:71:f6:21:92:4f:6e:bd:7b:ca:c1:64:10:de:
2c:27:7a:45:7d:8f:59:ed:bf:ed:22:55:f1:0c:8e:
2b:5b:6f:21:fe:30:e5:ec:d5:8d:f1:7b:6f:c2:0d:
3e:64:1f:1d:1d:b7:ab:a1:0f:62:59:9a:22:a1:80:
9c:5b:be:83:41:29:46:d2:8e:91:5e:d2:1e:33:b9:
9a:32:93:0c:53:96:da:26:18:99:25:ba:bc:ae:cc:
7c:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:D6:37:0B:C5:16:08:CA:88:97:E0:01:0D:D5:C2:B9:89:6D:BB:BC
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/75943167-004f-498d-a3dc-b6e067b4aedc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
2d:f3:4a:79:68:f8:6c:16:f5:3a:ab:40:26:40:5c:14:ca:15:
34:a1:16:37:b8:c7:e1:26:57:aa:8a:0f:72:e3:54:96:00:63:
77:a9:bd:b5:07:68:ff:92:50:77:ce:a4:dc:47:4d:24:1a:f2:
19:a2:07:f4:5a:df:c0:ce:b1:66:58:dc:54:0d:23:eb:f6:fe:
44:1f:39:0b:ec:fb:57:58:e8:f0:04:32:14:43:75:c4:4d:92:
17:61:af:88:56:d1:f0:f8:b1:18:a8:c0:f0:29:65:4b:94:0d:
3e:cd:1b:2b:2b:31:29:e8:0d:38:02:fd:fa:9a:c0:98:14:08:
2a:75:1e:3d:8b:58:3e:af:eb:1e:3d:2a:0c:a3:a4:ba:36:4f:
ce:2d:ff:ab:3f:aa:3d:9e:c3:af:9a:b9:a2:b3:cf:2b:82:29:
7e:08:d3:22:a7:57:d7:f5:6a:7f:e5:75:23:98:de:59:8b:22:
59:00:c4:82:8a:e0:bd:c3:24:42:15:c1:9c:5b:f3:a0:ad:23:
a6:35:31:a4:e9:5d:d1:7e:a1:cf:b8:45:11:f5:7f:42:e8:ae:
31:7c:82:87:21:6c:a0:1e:7c:f6:77:3c:64:04:34:2f:01:9d:
e7:14:bf:19:b2:cc:e9:13:8e:b0:03:db:84:da:93:e9:7a:31:
72:f3:81:b6
-----BEGIN CERTIFICATE-----
MIIGMTCCBRmgAwIBAgIUP77YJXtQrd8IEZzH4LN6ecVnF3MwDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyMjc4YWFiODc4ZjI4MzFiYjE4MjNiNTg3OTRiMDkyZDg2
ZmIxZDdhMGY3NGUyODE2MTEwHhcNMjMwMjI3MDAwMDAwWhcNMjMwMzAyMjM1OTU5
WjCBpTFJMEcGA1UEBRNAMWI4NjE5ODg1OGY3MTZmZjkxZjIwYzkzNmUzYWZlNzY4
MGY2NzVkNTVjZTU4OTJmNGE1Y2U2OTYyZGM1MDYyMzEtMCsGA1UEAxMkNmFlNGU1
NjctNjM0OC00YzRmLTk4YTgtMDQyMmM0YzUyZmYzMRQwEgYDVQQLEwtBbWF6b24g
UlBLSTETMBEGA1UEChMKQW1hem9uLmNvbTCCASIwDQYJKoZIhvcNAQEBBQADggEP
ADCCAQoCggEBAJmMpJAiRLd65dDyEfYg70ZttuwBnnyu5iiBm291yD+4KOSxjhkP
XZZvqRgK2IxWWC8Y3vp82ZOtBK3UZF9f74dfaQ6jVAP/KRvwmJskhBapq4mH2fR3
QF93jSUGY/L4bn5U/lpioYoGMWu+2xJ8N1vUwHeC46Mn6WndlVkltMbCJE0mNo33
qhE2FrcXnyWBnkfXfrKIWbnnOPiMurWdhYYRh3aiQMlx9iGST269e8rBZBDeLCd6
RX2PWe2/7SJV8QyOK1tvIf4w5ezVjfF7b8INPmQfHR23q6EPYlmaIqGAnFu+g0Ep
RtKOkV7SHjO5mjKTDFOW2iYYmSW6vK7MfH0CAwEAAaOCAr4wggK6MB0GA1UdDgQW
BBTx1jcLxRYIyoiX4AEN1cK5iW27vDAfBgNVHSMEGDAWgBSRRO3HpA7pkLf6Nm/2
4X15rcSDlzAOBgNVHQ8BAf8EBAMCB4AwgfMGCCsGAQUFBwEBBIHmMIHjMIHgBggr
BgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2FyaW4t
cnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMvMDM1
NzI3MmMtYTc5YS00NWJmLTk1ODYtOTJkZDQ5ZWYzMjIzLzczZjIxYzJiLTg4MjMt
NGMyNC1iMjViLTQzYzgwY2I2ZDFiYi8yNzhhYWI4NzhmMjgzMWJiMTgyM2I1ODc5
NGIwOTJkODZmYjFkN2EwZjc0ZTI4MTYxMS5jZXIwgZ4GCCsGAQUFBwELBIGRMIGO
MIGLBggrBgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6
b25hd3MuY29tL3ZvbHVtZS9iNjhhMzJlZS00NTVkLTQ4M2EtOTQzZC0xYTViZTc0
OGJmZWEvNzU5NDMxNjctMDA0Zi00OThkLWEzZGMtYjZlMDY3YjRhZWRjLnJvYTCB
lQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I2OGEzMmVlLTQ1NWQtNDgzYS05NDNk
LTFhNWJlNzQ4YmZlYS80YmI4YWU1Yy0xMjRjLTQyZjMtODdmYi00ZjM0ZTc0ZTNk
YTIuY3JsMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8E
EDAOMAwEAgABMAYDBADHJHgwDQYJKoZIhvcNAQELBQADggEBAC3zSnlo+GwW9Tqr
QCZAXBTKFTShFje4x+EmV6qKD3LjVJYAY3epvbUHaP+SUHfOpNxHTSQa8hmiB/Ra
38DOsWZY3FQNI+v2/kQfOQvs+1dY6PAEMhRDdcRNkhdhr4hW0fD4sRiowPApZUuU
DT7NGysrMSnoDTgC/fqawJgUCCp1Hj2LWD6v6x49KgyjpLo2T84t/6s/qj2ew6+a
uaKzzyuCKX4I0yKnV9f1an/ldSOY3lmLIlkAxIKK4L3DJEIVwZxb86CtI6Y1MaTp
XdF+oc+4RRH1f0LorjF8gochbKAefPZ3PGQENC8BnecUvxmyzOkTjrAD24Tak+l6
MXLzgbY=
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:47 2023 by rpki-client on console-fra.rpki-client.org