Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/771be51d-c6fa-45d1-9e2e-4e2fee739bd9.roa
File: 771be51d-c6fa-45d1-9e2e-4e2fee739bd9.roa (raw, json)
Hash identifier: DDRGUlHZmyyURXzufrelH/Yqw+jfiNJio0rfgeL90pg=
Subject key identifier: 8A:F6:A5:F1:3B:28:F0:01:B9:B9:03:DD:BD:B6:15:0C:89:E1:FA:5C
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 48B65DFFD79C8CEBE04D70082D281A56CCFF3A5E
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/771be51d-c6fa-45d1-9e2e-4e2fee739bd9.roa
Signing time: Tue 20 Dec 2022 00:00:00 +0000
ROA not before: Tue 20 Dec 2022 00:00:00 +0000
ROA not after: Fri 23 Dec 2022 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
48:b6:5d:ff:d7:9c:8c:eb:e0:4d:70:08:2d:28:1a:56:cc:ff:3a:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Dec 20 00:00:00 2022 GMT
Not After : Dec 23 23:59:59 2022 GMT
Subject: serialNumber=ba3de0ae27e917ad286e7c88ce2b5254c9c0d584383cd5ffaefbdfdea2c653c9, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:91:34:9b:8c:c5:33:68:0c:08:12:b4:b1:ac:
4c:c7:56:5d:0a:12:f9:38:df:96:0b:28:c6:ab:81:
4e:91:dc:4d:9b:47:1b:ef:11:f8:71:32:bb:19:79:
64:35:a7:a1:f5:11:95:92:2b:fc:b0:17:19:73:48:
5b:9c:0a:9b:4a:7a:3c:29:1b:38:9d:8b:71:6e:e1:
d9:5a:7d:2b:00:a9:2a:ff:0f:cd:fe:96:7d:4c:3e:
fd:14:73:df:88:35:62:51:80:93:ab:ae:3d:15:5d:
84:b7:ad:e1:d1:65:6d:6d:2d:7a:a6:af:56:9e:d2:
56:a7:e8:da:e5:64:39:60:5d:c6:da:31:e4:22:0b:
1d:dc:68:7d:c0:be:d6:10:b2:3f:90:82:83:91:8a:
b1:db:63:eb:37:84:69:67:a4:c4:9a:cb:6d:38:47:
c8:52:7e:e5:1f:90:67:bb:ca:4d:e5:b0:dd:8a:76:
30:14:a9:23:35:3f:9b:66:e3:47:1f:27:9d:87:38:
d9:8f:f4:d2:7f:ce:01:9f:fc:ce:6b:09:73:98:ff:
5e:f3:85:ef:3b:ee:47:c4:66:0c:79:30:c2:56:fe:
88:6b:15:e7:d7:ae:51:a5:b9:ad:72:ab:85:d8:a6:
ce:35:68:58:12:01:f6:fb:7b:17:f8:d4:03:b1:15:
51:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:F6:A5:F1:3B:28:F0:01:B9:B9:03:DD:BD:B6:15:0C:89:E1:FA:5C
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/771be51d-c6fa-45d1-9e2e-4e2fee739bd9.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
6d:08:42:fb:f5:7f:3b:db:a2:d8:05:0d:9b:cb:57:0c:dc:9a:
32:33:4a:7a:ef:ad:c2:d1:e6:b2:7b:49:05:ba:fa:ed:a1:89:
d2:2f:6e:1f:a6:1c:31:4f:14:17:ee:9e:5b:25:8d:44:71:08:
a2:87:5e:58:7b:f1:09:be:63:60:b3:94:fc:7b:d6:bb:4a:d6:
17:1d:5e:24:5a:0c:75:58:4f:2d:73:f9:07:c0:c9:ab:b3:d0:
a6:e6:24:56:25:c8:ee:e3:11:72:5b:22:41:ed:1c:69:da:c5:
70:38:7f:36:37:42:1f:0f:fc:02:a1:15:20:fa:cf:0b:50:c2:
11:d0:fd:0a:44:16:48:34:5e:38:2d:69:f3:b5:03:f1:43:75:
92:21:ea:d4:76:08:ad:7e:a0:59:e9:2d:b9:95:b2:63:d0:eb:
a2:e7:6d:a7:63:97:3b:56:78:e0:88:e6:be:d8:ac:50:c5:36:
f5:9c:6d:39:52:c7:0e:ff:b6:f1:3a:08:0a:5c:0e:a5:7d:5e:
38:9d:00:e0:a9:3c:7a:b8:bf:91:96:39:32:2a:60:71:6b:05:
17:38:96:bd:29:05:59:f2:f0:98:88:44:f3:c3:e3:04:9e:f3:
ad:a6:3e:ea:37:d7:56:5f:24:0a:45:aa:2c:d5:fe:58:b3:e5:
3c:bc:9e:d1
-----BEGIN CERTIFICATE-----
MIIGMTCCBRmgAwIBAgIUSLZd/9ecjOvgTXAILSgaVsz/Ol4wDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyMjc4YWFiODc4ZjI4MzFiYjE4MjNiNTg3OTRiMDkyZDg2
ZmIxZDdhMGY3NGUyODE2MTEwHhcNMjIxMjIwMDAwMDAwWhcNMjIxMjIzMjM1OTU5
WjCBpTFJMEcGA1UEBRNAYmEzZGUwYWUyN2U5MTdhZDI4NmU3Yzg4Y2UyYjUyNTRj
OWMwZDU4NDM4M2NkNWZmYWVmYmRmZGVhMmM2NTNjOTEtMCsGA1UEAxMkNmFlNGU1
NjctNjM0OC00YzRmLTk4YTgtMDQyMmM0YzUyZmYzMRQwEgYDVQQLEwtBbWF6b24g
UlBLSTETMBEGA1UEChMKQW1hem9uLmNvbTCCASIwDQYJKoZIhvcNAQEBBQADggEP
ADCCAQoCggEBAKuRNJuMxTNoDAgStLGsTMdWXQoS+TjflgsoxquBTpHcTZtHG+8R
+HEyuxl5ZDWnofURlZIr/LAXGXNIW5wKm0p6PCkbOJ2LcW7h2Vp9KwCpKv8Pzf6W
fUw+/RRz34g1YlGAk6uuPRVdhLet4dFlbW0teqavVp7SVqfo2uVkOWBdxtox5CIL
HdxofcC+1hCyP5CCg5GKsdtj6zeEaWekxJrLbThHyFJ+5R+QZ7vKTeWw3Yp2MBSp
IzU/m2bjRx8nnYc42Y/00n/OAZ/8zmsJc5j/XvOF7zvuR8RmDHkwwlb+iGsV59eu
UaW5rXKrhdimzjVoWBIB9vt7F/jUA7EVUX0CAwEAAaOCAr4wggK6MB0GA1UdDgQW
BBSK9qXxOyjwAbm5A929thUMieH6XDAfBgNVHSMEGDAWgBSRRO3HpA7pkLf6Nm/2
4X15rcSDlzAOBgNVHQ8BAf8EBAMCB4AwgfMGCCsGAQUFBwEBBIHmMIHjMIHgBggr
BgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2FyaW4t
cnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMvMDM1
NzI3MmMtYTc5YS00NWJmLTk1ODYtOTJkZDQ5ZWYzMjIzLzczZjIxYzJiLTg4MjMt
NGMyNC1iMjViLTQzYzgwY2I2ZDFiYi8yNzhhYWI4NzhmMjgzMWJiMTgyM2I1ODc5
NGIwOTJkODZmYjFkN2EwZjc0ZTI4MTYxMS5jZXIwgZ4GCCsGAQUFBwELBIGRMIGO
MIGLBggrBgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6
b25hd3MuY29tL3ZvbHVtZS9iNjhhMzJlZS00NTVkLTQ4M2EtOTQzZC0xYTViZTc0
OGJmZWEvNzcxYmU1MWQtYzZmYS00NWQxLTllMmUtNGUyZmVlNzM5YmQ5LnJvYTCB
lQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I2OGEzMmVlLTQ1NWQtNDgzYS05NDNk
LTFhNWJlNzQ4YmZlYS80YmI4YWU1Yy0xMjRjLTQyZjMtODdmYi00ZjM0ZTc0ZTNk
YTIuY3JsMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8E
EDAOMAwEAgABMAYDBADHJHgwDQYJKoZIhvcNAQELBQADggEBAG0IQvv1fzvbotgF
DZvLVwzcmjIzSnrvrcLR5rJ7SQW6+u2hidIvbh+mHDFPFBfunlsljURxCKKHXlh7
8Qm+Y2CzlPx71rtK1hcdXiRaDHVYTy1z+QfAyauz0KbmJFYlyO7jEXJbIkHtHGna
xXA4fzY3Qh8P/AKhFSD6zwtQwhHQ/QpEFkg0XjgtafO1A/FDdZIh6tR2CK1+oFnp
LbmVsmPQ66LnbadjlztWeOCI5r7YrFDFNvWcbTlSxw7/tvE6CApcDqV9XjidAOCp
PHq4v5GWOTIqYHFrBRc4lr0pBVny8JiIRPPD4wSe862mPuo311ZfJApFqizV/liz
5Ty8ntE=
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:47 2023 by rpki-client on console-fra.rpki-client.org