Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/7900621e-f589-43ee-9a38-6e7fb54581e4.roa
File: 7900621e-f589-43ee-9a38-6e7fb54581e4.roa (raw, json)
Hash identifier: AuPo912LGw/9NOwloC/jFPxO92jeIQjxTR2xTkT9UJQ=
Subject key identifier: EA:99:E3:71:26:CF:B0:2F:65:F2:9D:5A:92:B4:52:AB:D1:9B:90:6B
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 296AC795809D2413D3C2155923D3E27CE01A9A15
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/7900621e-f589-43ee-9a38-6e7fb54581e4.roa
Signing time: Fri 03 Feb 2023 00:00:00 +0000
ROA not before: Fri 03 Feb 2023 00:00:00 +0000
ROA not after: Mon 06 Feb 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
29:6a:c7:95:80:9d:24:13:d3:c2:15:59:23:d3:e2:7c:e0:1a:9a:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Feb 3 00:00:00 2023 GMT
Not After : Feb 6 23:59:59 2023 GMT
Subject: serialNumber=363d696ea84adf51091c510f6b699ae6e50d5bf45a43f47b93867bb0fb2bf656, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:e9:80:16:57:68:fb:9f:c1:0c:5e:c0:64:e6:
7e:3d:35:8f:1d:6e:9a:f1:89:4a:cc:56:b2:ca:e9:
a4:33:76:1c:cd:7b:51:d0:db:b1:54:ef:de:c7:b3:
c3:0c:18:2e:06:7b:fc:15:b7:17:f8:08:a8:fc:3b:
f7:72:40:d8:e3:a9:e1:99:1b:2b:8b:80:7a:d9:17:
a4:dc:3b:e0:5d:c6:ef:e7:51:f5:b6:c0:d2:7e:6b:
bc:b3:59:67:79:61:9b:a1:86:29:5b:40:f5:13:96:
62:37:8d:e9:d8:d3:73:28:12:73:e5:5e:a6:28:e5:
f6:d8:fd:8b:fd:80:17:ae:81:2f:3d:80:87:00:8f:
b3:72:07:33:19:a2:4d:39:0f:19:e8:d0:a5:d7:d4:
77:2d:38:3c:36:d3:46:b7:d0:20:08:4f:dd:82:6e:
e5:14:c1:3f:45:de:60:de:c9:e0:2f:6f:8c:ff:38:
25:03:f9:1a:21:2d:30:bc:60:9a:db:3b:64:6f:89:
2c:0d:90:7b:d4:4b:b4:a2:bd:0c:ba:69:45:03:a8:
ec:93:7d:1e:fd:c6:97:52:61:88:73:26:76:e3:cb:
69:a6:7d:23:23:c5:8d:a9:49:2f:87:f1:3e:6b:98:
1e:ff:01:ca:b8:6b:6b:92:62:ed:fb:36:82:41:b7:
ac:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:99:E3:71:26:CF:B0:2F:65:F2:9D:5A:92:B4:52:AB:D1:9B:90:6B
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/7900621e-f589-43ee-9a38-6e7fb54581e4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
3e:ed:8f:79:6b:72:7d:0f:f9:e6:01:93:93:27:76:b6:34:41:
55:04:e7:ca:19:76:42:82:83:70:68:75:2b:db:9a:0f:35:86:
7b:e7:cd:7d:47:01:7a:9c:57:28:e4:e4:02:85:8d:d7:95:fe:
e5:7b:ab:77:65:b4:4b:75:1c:d6:8e:1e:09:38:1f:c8:88:f5:
30:d1:e5:e2:8b:2a:64:be:3e:3c:7f:4c:36:09:df:ed:df:03:
4d:aa:c8:7a:4e:a4:cf:cf:60:3f:21:49:c3:33:63:90:eb:c6:
ae:7e:54:5c:c9:84:13:57:d3:fd:f8:35:32:93:56:1e:c5:6e:
21:d4:ff:7d:56:a3:62:e8:c5:03:42:21:63:fd:b5:31:0f:d0:
63:50:07:ff:20:ba:9f:77:8f:6a:f0:32:c6:42:6f:6e:cd:08:
4e:34:b9:17:bc:1a:b0:71:f0:b7:82:62:8b:ab:9e:d9:9c:6b:
a1:98:ef:86:b9:da:8d:4c:c2:55:a8:57:a4:cf:25:fc:fa:b5:
c3:16:0d:21:d1:a5:ba:f3:7a:61:84:c9:c2:42:cd:72:f2:f2:
c1:96:b9:ea:97:cf:46:c1:c5:e9:22:39:de:aa:32:20:c2:19:
aa:a4:e6:63:9b:12:b0:d4:da:8d:8a:02:13:15:de:54:af:6e:
8c:79:29:3e
-----BEGIN CERTIFICATE-----
MIIGMTCCBRmgAwIBAgIUKWrHlYCdJBPTwhVZI9PifOAamhUwDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyMjc4YWFiODc4ZjI4MzFiYjE4MjNiNTg3OTRiMDkyZDg2
ZmIxZDdhMGY3NGUyODE2MTEwHhcNMjMwMjAzMDAwMDAwWhcNMjMwMjA2MjM1OTU5
WjCBpTFJMEcGA1UEBRNAMzYzZDY5NmVhODRhZGY1MTA5MWM1MTBmNmI2OTlhZTZl
NTBkNWJmNDVhNDNmNDdiOTM4NjdiYjBmYjJiZjY1NjEtMCsGA1UEAxMkNmFlNGU1
NjctNjM0OC00YzRmLTk4YTgtMDQyMmM0YzUyZmYzMRQwEgYDVQQLEwtBbWF6b24g
UlBLSTETMBEGA1UEChMKQW1hem9uLmNvbTCCASIwDQYJKoZIhvcNAQEBBQADggEP
ADCCAQoCggEBAODpgBZXaPufwQxewGTmfj01jx1umvGJSsxWssrppDN2HM17UdDb
sVTv3sezwwwYLgZ7/BW3F/gIqPw793JA2OOp4ZkbK4uAetkXpNw74F3G7+dR9bbA
0n5rvLNZZ3lhm6GGKVtA9ROWYjeN6djTcygSc+Vepijl9tj9i/2AF66BLz2AhwCP
s3IHMxmiTTkPGejQpdfUdy04PDbTRrfQIAhP3YJu5RTBP0XeYN7J4C9vjP84JQP5
GiEtMLxgmts7ZG+JLA2Qe9RLtKK9DLppRQOo7JN9Hv3Gl1JhiHMmduPLaaZ9IyPF
jalJL4fxPmuYHv8Byrhra5Ji7fs2gkG3rL8CAwEAAaOCAr4wggK6MB0GA1UdDgQW
BBTqmeNxJs+wL2XynVqStFKr0ZuQazAfBgNVHSMEGDAWgBSRRO3HpA7pkLf6Nm/2
4X15rcSDlzAOBgNVHQ8BAf8EBAMCB4AwgfMGCCsGAQUFBwEBBIHmMIHjMIHgBggr
BgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2FyaW4t
cnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMvMDM1
NzI3MmMtYTc5YS00NWJmLTk1ODYtOTJkZDQ5ZWYzMjIzLzczZjIxYzJiLTg4MjMt
NGMyNC1iMjViLTQzYzgwY2I2ZDFiYi8yNzhhYWI4NzhmMjgzMWJiMTgyM2I1ODc5
NGIwOTJkODZmYjFkN2EwZjc0ZTI4MTYxMS5jZXIwgZ4GCCsGAQUFBwELBIGRMIGO
MIGLBggrBgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6
b25hd3MuY29tL3ZvbHVtZS9iNjhhMzJlZS00NTVkLTQ4M2EtOTQzZC0xYTViZTc0
OGJmZWEvNzkwMDYyMWUtZjU4OS00M2VlLTlhMzgtNmU3ZmI1NDU4MWU0LnJvYTCB
lQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I2OGEzMmVlLTQ1NWQtNDgzYS05NDNk
LTFhNWJlNzQ4YmZlYS80YmI4YWU1Yy0xMjRjLTQyZjMtODdmYi00ZjM0ZTc0ZTNk
YTIuY3JsMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8E
EDAOMAwEAgABMAYDBADHJHgwDQYJKoZIhvcNAQELBQADggEBAD7tj3lrcn0P+eYB
k5MndrY0QVUE58oZdkKCg3BodSvbmg81hnvnzX1HAXqcVyjk5AKFjdeV/uV7q3dl
tEt1HNaOHgk4H8iI9TDR5eKLKmS+Pjx/TDYJ3+3fA02qyHpOpM/PYD8hScMzY5Dr
xq5+VFzJhBNX0/34NTKTVh7FbiHU/31Wo2LoxQNCIWP9tTEP0GNQB/8gup93j2rw
MsZCb27NCE40uRe8GrBx8LeCYourntmca6GY74a52o1MwlWoV6TPJfz6tcMWDSHR
pbrzemGEycJCzXLy8sGWueqXz0bBxekiOd6qMiDCGaqk5mObErDU2o2KAhMV3lSv
box5KT4=
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:47 2023 by rpki-client on console-fra.rpki-client.org