Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/7b56cf7e-6e17-4817-8bea-12dcf861300e.roa
File: 7b56cf7e-6e17-4817-8bea-12dcf861300e.roa (raw, json)
Hash identifier: J3uhs9swV2pJJlX7ChsRghOu8oqD7IE8i5Oei7ZjldU=
Subject key identifier: 34:2F:42:A3:3C:D7:76:7A:60:80:58:11:F6:A0:F4:71:C9:8E:69:3C
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 09B36B2F6FC0AF33058C8B9DDCDF660864A07256
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/7b56cf7e-6e17-4817-8bea-12dcf861300e.roa
Signing time: Sat 31 Dec 2022 00:00:00 +0000
ROA not before: Sat 31 Dec 2022 00:00:00 +0000
ROA not after: Tue 03 Jan 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
09:b3:6b:2f:6f:c0:af:33:05:8c:8b:9d:dc:df:66:08:64:a0:72:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Dec 31 00:00:00 2022 GMT
Not After : Jan 3 23:59:59 2023 GMT
Subject: serialNumber=7d132cf5006f55ca212ffb8ef3fcab5e51dc6896fc7ba5a3899ce8498dff1199, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:fe:c2:0b:d8:10:49:05:05:0b:ee:b5:a6:88:
f0:08:db:0f:69:a0:6b:20:ce:30:5d:df:5c:5f:54:
d3:2a:5e:c0:30:4f:e2:9e:dc:58:cc:b3:6c:94:14:
85:61:a8:e7:9f:5e:c9:7b:96:af:4a:68:2b:85:e2:
e7:ab:b1:04:43:b8:ab:6e:76:f6:cd:fb:fc:61:8b:
01:61:1a:d9:d1:1f:5e:b2:0f:bd:b2:16:74:d2:51:
c8:a9:75:dc:ea:72:6b:fc:c6:5e:33:94:64:e6:a4:
41:0c:66:5b:cd:0a:92:ba:56:e9:0d:f6:b9:fd:ff:
49:30:d0:0f:91:cf:9e:be:47:83:a5:74:16:22:f3:
ad:7f:a6:92:f3:3b:00:16:04:a2:50:e3:25:b4:b5:
55:1a:c2:74:75:cf:cb:ed:29:a6:bf:77:1f:9f:49:
2c:aa:e0:35:fa:4c:90:34:8d:bf:c1:24:15:08:8f:
74:5b:27:4b:26:a7:fa:19:44:c8:83:7a:bc:62:30:
42:0b:cb:a4:0f:fd:20:ed:52:46:cb:f1:ad:48:bb:
bf:32:b1:13:70:24:ca:cf:aa:6c:5c:66:05:b2:65:
75:c0:46:88:b7:3a:d5:ff:23:64:04:b1:ef:ec:ae:
19:1e:87:5d:24:81:23:ad:9c:33:f4:34:5a:21:72:
67:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:2F:42:A3:3C:D7:76:7A:60:80:58:11:F6:A0:F4:71:C9:8E:69:3C
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/7b56cf7e-6e17-4817-8bea-12dcf861300e.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
be:e8:b1:aa:04:01:92:11:81:3e:3b:ee:14:fb:d5:8c:43:98:
e2:66:f1:5b:b1:d6:05:f5:a1:fb:96:c2:ce:b1:79:79:e2:e5:
5a:b3:85:6a:b3:3a:68:6c:87:8d:9e:e5:43:a2:8c:2e:3b:21:
d4:4f:8b:f9:65:b1:3f:7e:a1:12:54:78:40:d3:bf:46:ef:37:
32:3d:59:54:fe:c1:31:90:99:e1:21:04:fb:9e:0e:15:cc:f6:
c6:b1:ab:7e:25:cf:c7:f8:ac:f6:31:d4:20:5a:ee:d9:a1:39:
69:1e:68:7b:c6:ab:73:13:ac:c8:b6:d0:0c:e0:1e:44:99:6d:
38:da:b1:09:40:0f:73:f9:8a:20:bc:58:a8:b6:7b:a1:b1:97:
39:a5:c2:a9:9a:6b:1e:07:5d:4d:05:85:63:90:1e:79:c8:ee:
d6:cb:2d:d7:96:e1:4d:3f:97:a2:7f:3b:80:11:98:01:c1:30:
a7:b1:7b:7a:f5:03:b6:f4:9f:93:09:30:b9:96:b8:4d:1d:24:
39:18:f8:25:62:f7:f9:df:ca:95:f8:b5:d7:39:2b:69:c5:d7:
d4:65:21:33:a0:60:ec:cc:7e:69:f0:20:0a:bb:b7:88:d3:29:
53:48:2c:4e:6d:9f:5b:03:d9:4c:d1:ba:43:5e:83:a8:62:75:
8b:43:7e:2a
-----BEGIN CERTIFICATE-----
MIIGMTCCBRmgAwIBAgIUCbNrL2/ArzMFjIud3N9mCGSgclYwDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyMjc4YWFiODc4ZjI4MzFiYjE4MjNiNTg3OTRiMDkyZDg2
ZmIxZDdhMGY3NGUyODE2MTEwHhcNMjIxMjMxMDAwMDAwWhcNMjMwMTAzMjM1OTU5
WjCBpTFJMEcGA1UEBRNAN2QxMzJjZjUwMDZmNTVjYTIxMmZmYjhlZjNmY2FiNWU1
MWRjNjg5NmZjN2JhNWEzODk5Y2U4NDk4ZGZmMTE5OTEtMCsGA1UEAxMkNmFlNGU1
NjctNjM0OC00YzRmLTk4YTgtMDQyMmM0YzUyZmYzMRQwEgYDVQQLEwtBbWF6b24g
UlBLSTETMBEGA1UEChMKQW1hem9uLmNvbTCCASIwDQYJKoZIhvcNAQEBBQADggEP
ADCCAQoCggEBAMr+wgvYEEkFBQvutaaI8AjbD2mgayDOMF3fXF9U0ypewDBP4p7c
WMyzbJQUhWGo559eyXuWr0poK4Xi56uxBEO4q2529s37/GGLAWEa2dEfXrIPvbIW
dNJRyKl13Opya/zGXjOUZOakQQxmW80KkrpW6Q32uf3/STDQD5HPnr5Hg6V0FiLz
rX+mkvM7ABYEolDjJbS1VRrCdHXPy+0ppr93H59JLKrgNfpMkDSNv8EkFQiPdFsn
Syan+hlEyIN6vGIwQgvLpA/9IO1SRsvxrUi7vzKxE3Akys+qbFxmBbJldcBGiLc6
1f8jZASx7+yuGR6HXSSBI62cM/Q0WiFyZ/0CAwEAAaOCAr4wggK6MB0GA1UdDgQW
BBQ0L0KjPNd2emCAWBH2oPRxyY5pPDAfBgNVHSMEGDAWgBSRRO3HpA7pkLf6Nm/2
4X15rcSDlzAOBgNVHQ8BAf8EBAMCB4AwgfMGCCsGAQUFBwEBBIHmMIHjMIHgBggr
BgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2FyaW4t
cnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMvMDM1
NzI3MmMtYTc5YS00NWJmLTk1ODYtOTJkZDQ5ZWYzMjIzLzczZjIxYzJiLTg4MjMt
NGMyNC1iMjViLTQzYzgwY2I2ZDFiYi8yNzhhYWI4NzhmMjgzMWJiMTgyM2I1ODc5
NGIwOTJkODZmYjFkN2EwZjc0ZTI4MTYxMS5jZXIwgZ4GCCsGAQUFBwELBIGRMIGO
MIGLBggrBgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6
b25hd3MuY29tL3ZvbHVtZS9iNjhhMzJlZS00NTVkLTQ4M2EtOTQzZC0xYTViZTc0
OGJmZWEvN2I1NmNmN2UtNmUxNy00ODE3LThiZWEtMTJkY2Y4NjEzMDBlLnJvYTCB
lQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I2OGEzMmVlLTQ1NWQtNDgzYS05NDNk
LTFhNWJlNzQ4YmZlYS80YmI4YWU1Yy0xMjRjLTQyZjMtODdmYi00ZjM0ZTc0ZTNk
YTIuY3JsMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8E
EDAOMAwEAgABMAYDBADHJHgwDQYJKoZIhvcNAQELBQADggEBAL7osaoEAZIRgT47
7hT71YxDmOJm8Vux1gX1ofuWws6xeXni5VqzhWqzOmhsh42e5UOijC47IdRPi/ll
sT9+oRJUeEDTv0bvNzI9WVT+wTGQmeEhBPueDhXM9saxq34lz8f4rPYx1CBa7tmh
OWkeaHvGq3MTrMi20AzgHkSZbTjasQlAD3P5iiC8WKi2e6Gxlzmlwqmaax4HXU0F
hWOQHnnI7tbLLdeW4U0/l6J/O4ARmAHBMKexe3r1A7b0n5MJMLmWuE0dJDkY+CVi
9/nfypX4tdc5K2nF19RlITOgYOzMfmnwIAq7t4jTKVNILE5tn1sD2UzRukNeg6hi
dYtDfio=
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:47 2023 by rpki-client on console-ams.rpki-client.org