Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/7732e49d-6611-4796-8eac-269d981af31b.roa
File: 7732e49d-6611-4796-8eac-269d981af31b.roa (raw, json)
Hash identifier: nwuzMyfEl3sWxFiLKQJ/sVcn8q3rtppJB1LpviCGgRY=
Subject key identifier: 63:55:49:3F:9E:B5:33:79:EE:F9:22:10:2F:CE:39:8C:66:8D:55:63
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 5799FF50AFE0C2105FB6003DAC42058113F7D629
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/7732e49d-6611-4796-8eac-269d981af31b.roa
Signing time: Wed 07 Dec 2022 00:00:00 +0000
ROA not before: Wed 07 Dec 2022 00:00:00 +0000
ROA not after: Sat 10 Dec 2022 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
57:99:ff:50:af:e0:c2:10:5f:b6:00:3d:ac:42:05:81:13:f7:d6:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Dec 7 00:00:00 2022 GMT
Not After : Dec 10 23:59:59 2022 GMT
Subject: serialNumber=a07fce9ce827353dfbc947ccc7aee2b2039be48c15c383130d7db23d7918af63, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f8:6a:b5:71:5f:93:60:af:0a:b4:b4:3a:74:fe:
eb:e9:4b:9a:a8:2d:49:31:66:80:e1:10:a9:75:48:
67:cf:d2:d8:54:1d:95:5c:17:41:19:f1:f4:7c:b5:
8f:d9:da:0d:90:70:e6:49:0d:a5:2d:e2:6b:9d:86:
8d:64:d0:db:a0:8c:d2:75:82:88:ac:ca:aa:1b:12:
e0:bf:6d:9b:45:38:62:ec:1c:88:b9:b0:e9:5f:ec:
44:d7:97:0c:a2:33:81:ff:ea:cf:8c:b8:90:0b:eb:
4d:95:bf:56:92:73:d1:1e:37:16:b7:20:76:a6:0e:
81:fd:51:20:4f:27:f4:c7:97:eb:81:8a:05:fe:1c:
f0:2f:3d:bc:3d:4d:11:4f:ec:5a:a4:78:9c:73:4c:
1e:57:44:c1:8b:4b:13:30:18:dc:31:4e:e4:b6:0e:
df:8b:da:5e:b1:ed:bc:83:e0:ac:5e:a1:73:0b:df:
2b:f3:4e:97:0b:e6:6a:b2:e3:cf:28:52:31:c8:75:
5c:cf:c7:4c:e8:5e:84:51:ea:eb:91:c8:ba:50:6c:
77:c9:32:6d:0b:92:20:aa:a0:c8:43:e0:29:33:a6:
bd:fe:81:d7:c7:2b:92:49:01:f5:aa:83:d7:a2:06:
9d:f7:00:7e:86:62:72:35:20:2c:34:a5:62:3a:e9:
90:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:55:49:3F:9E:B5:33:79:EE:F9:22:10:2F:CE:39:8C:66:8D:55:63
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/7732e49d-6611-4796-8eac-269d981af31b.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
2d:f3:2b:5a:04:a7:cd:62:d6:3c:3d:dc:06:42:5d:35:33:02:
6d:48:b0:69:16:a1:08:68:4e:8c:47:95:ac:9b:9b:27:e2:22:
8e:a0:32:bd:c3:77:88:1b:67:31:7d:32:aa:35:72:e4:c4:75:
f1:f9:10:28:32:87:b0:c7:98:7c:b1:11:b5:66:92:f5:09:c4:
df:4f:9b:c2:d6:33:29:b1:15:a9:6a:46:5c:5e:1b:9f:ad:1e:
2e:c8:b0:93:a5:d0:01:05:7b:ba:4d:9c:bf:4e:da:a9:e8:71:
88:d3:bc:0b:f3:27:b0:2e:6b:a9:0c:80:a0:e6:bd:be:93:24:
cf:1e:72:e4:69:a3:b4:50:b6:1f:a0:b5:83:6b:f7:fc:46:6d:
dd:9d:10:bd:e0:1f:1a:dd:d5:3a:7b:1e:b1:ce:ee:8d:bc:ab:
0b:39:75:42:b7:52:5e:c0:50:cc:bc:53:c7:7f:80:f3:b2:2d:
b9:0f:dc:cc:c4:13:d7:0b:8b:c1:a9:8e:f8:c6:29:4c:d9:aa:
b5:5d:41:73:e6:1d:48:61:ea:ea:f5:bb:07:74:ee:e3:22:d8:
9b:f3:c2:ed:08:22:32:af:a7:18:e5:80:e1:a9:7e:1f:b0:ee:
c0:a6:1b:fd:cb:a8:98:ed:7b:b1:44:dd:b7:d0:eb:cc:7d:98:
47:57:08:4c
-----BEGIN CERTIFICATE-----
MIIGMTCCBRmgAwIBAgIUV5n/UK/gwhBftgA9rEIFgRP31ikwDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyMjc4YWFiODc4ZjI4MzFiYjE4MjNiNTg3OTRiMDkyZDg2
ZmIxZDdhMGY3NGUyODE2MTEwHhcNMjIxMjA3MDAwMDAwWhcNMjIxMjEwMjM1OTU5
WjCBpTFJMEcGA1UEBRNAYTA3ZmNlOWNlODI3MzUzZGZiYzk0N2NjYzdhZWUyYjIw
MzliZTQ4YzE1YzM4MzEzMGQ3ZGIyM2Q3OTE4YWY2MzEtMCsGA1UEAxMkNmFlNGU1
NjctNjM0OC00YzRmLTk4YTgtMDQyMmM0YzUyZmYzMRQwEgYDVQQLEwtBbWF6b24g
UlBLSTETMBEGA1UEChMKQW1hem9uLmNvbTCCASIwDQYJKoZIhvcNAQEBBQADggEP
ADCCAQoCggEBAPhqtXFfk2CvCrS0OnT+6+lLmqgtSTFmgOEQqXVIZ8/S2FQdlVwX
QRnx9Hy1j9naDZBw5kkNpS3ia52GjWTQ26CM0nWCiKzKqhsS4L9tm0U4YuwciLmw
6V/sRNeXDKIzgf/qz4y4kAvrTZW/VpJz0R43FrcgdqYOgf1RIE8n9MeX64GKBf4c
8C89vD1NEU/sWqR4nHNMHldEwYtLEzAY3DFO5LYO34vaXrHtvIPgrF6hcwvfK/NO
lwvmarLjzyhSMch1XM/HTOhehFHq65HIulBsd8kybQuSIKqgyEPgKTOmvf6B18cr
kkkB9aqD16IGnfcAfoZicjUgLDSlYjrpkKMCAwEAAaOCAr4wggK6MB0GA1UdDgQW
BBRjVUk/nrUzee75IhAvzjmMZo1VYzAfBgNVHSMEGDAWgBSRRO3HpA7pkLf6Nm/2
4X15rcSDlzAOBgNVHQ8BAf8EBAMCB4AwgfMGCCsGAQUFBwEBBIHmMIHjMIHgBggr
BgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2FyaW4t
cnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMvMDM1
NzI3MmMtYTc5YS00NWJmLTk1ODYtOTJkZDQ5ZWYzMjIzLzczZjIxYzJiLTg4MjMt
NGMyNC1iMjViLTQzYzgwY2I2ZDFiYi8yNzhhYWI4NzhmMjgzMWJiMTgyM2I1ODc5
NGIwOTJkODZmYjFkN2EwZjc0ZTI4MTYxMS5jZXIwgZ4GCCsGAQUFBwELBIGRMIGO
MIGLBggrBgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6
b25hd3MuY29tL3ZvbHVtZS9iNjhhMzJlZS00NTVkLTQ4M2EtOTQzZC0xYTViZTc0
OGJmZWEvNzczMmU0OWQtNjYxMS00Nzk2LThlYWMtMjY5ZDk4MWFmMzFiLnJvYTCB
lQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I2OGEzMmVlLTQ1NWQtNDgzYS05NDNk
LTFhNWJlNzQ4YmZlYS80YmI4YWU1Yy0xMjRjLTQyZjMtODdmYi00ZjM0ZTc0ZTNk
YTIuY3JsMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8E
EDAOMAwEAgABMAYDBADHJHgwDQYJKoZIhvcNAQELBQADggEBAC3zK1oEp81i1jw9
3AZCXTUzAm1IsGkWoQhoToxHlaybmyfiIo6gMr3Dd4gbZzF9Mqo1cuTEdfH5ECgy
h7DHmHyxEbVmkvUJxN9Pm8LWMymxFalqRlxeG5+tHi7IsJOl0AEFe7pNnL9O2qno
cYjTvAvzJ7Aua6kMgKDmvb6TJM8ecuRpo7RQth+gtYNr9/xGbd2dEL3gHxrd1Tp7
HrHO7o28qws5dUK3Ul7AUMy8U8d/gPOyLbkP3MzEE9cLi8GpjvjGKUzZqrVdQXPm
HUhh6ur1uwd07uMi2Jvzwu0IIjKvpxjlgOGpfh+w7sCmG/3LqJjte7FE3bfQ68x9
mEdXCEw=
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:47 2023 by rpki-client on console-fra.rpki-client.org