Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/7d2a8903-27dc-4900-acdd-43f440736ab1.roa
File: 7d2a8903-27dc-4900-acdd-43f440736ab1.roa (raw, json)
Hash identifier: tZsM+Ko4qp3pAdheb+xGBDjOUdT1bnanXOmSq5v0Zao=
Subject key identifier: BD:3C:49:49:C6:46:AF:7E:27:7E:73:34:97:51:2E:95:02:DA:E6:40
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 341552BCA5E4B3A067C6316933501D2A481D3A33
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/7d2a8903-27dc-4900-acdd-43f440736ab1.roa
Signing time: Wed 17 May 2023 00:00:00 +0000
ROA not before: Wed 17 May 2023 00:00:00 +0000
ROA not after: Sat 20 May 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
34:15:52:bc:a5:e4:b3:a0:67:c6:31:69:33:50:1d:2a:48:1d:3a:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: May 17 00:00:00 2023 GMT
Not After : May 20 23:59:59 2023 GMT
Subject: serialNumber=bc5867c2d238e8b5dbec3cdcf51c5659b5d0a3b755283abeb5d338dbc016f846, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:59:4a:f4:76:50:6a:d3:23:23:14:1d:d2:00:
bd:35:8d:2a:6d:18:f9:45:b8:e3:07:b8:bd:b7:11:
4b:59:b3:79:f0:02:76:3b:f8:52:85:9f:76:db:f6:
e0:72:3d:41:5d:f7:cd:a1:14:c9:1d:fc:73:55:0f:
66:70:e3:65:0b:31:2d:aa:82:84:be:ce:96:cd:71:
94:51:d9:17:8f:92:31:97:23:be:7d:4d:75:8a:da:
23:9e:0c:b3:94:41:c1:c9:04:26:7d:9b:e4:bb:0a:
da:21:26:5d:0b:79:2c:50:28:74:69:86:02:2a:29:
18:2a:8a:ab:59:f0:cf:44:91:d5:be:01:5c:9d:6c:
51:e4:f1:00:14:91:fd:14:3f:05:98:50:db:21:4b:
33:23:52:aa:2c:14:b5:29:56:e7:b5:0b:74:71:0a:
66:69:0d:dc:53:18:dd:1f:29:33:e8:54:a2:ab:f3:
1e:05:93:cc:ff:dd:54:a6:10:4d:20:8a:e4:94:8e:
c9:2d:62:59:4a:bb:2e:3b:db:a3:f1:86:b4:73:ca:
99:df:0f:e3:e2:d8:4b:48:ad:d8:8c:a7:d0:1f:d3:
ce:f7:a5:13:d0:a4:ed:95:8e:e8:cc:ea:2a:a5:80:
7b:82:28:3b:da:29:96:4d:cc:04:76:bd:f9:84:d6:
d0:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:3C:49:49:C6:46:AF:7E:27:7E:73:34:97:51:2E:95:02:DA:E6:40
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/7d2a8903-27dc-4900-acdd-43f440736ab1.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
a1:b1:ef:e1:70:75:50:02:9e:1e:4f:17:d8:2c:99:0e:8f:55:
da:e0:3e:b0:80:6c:b2:85:c7:f7:23:a0:c6:67:23:e0:c8:81:
7d:be:de:e4:32:21:c3:5a:f5:fd:99:9c:4c:ab:7c:56:78:af:
75:93:7e:73:f8:bd:9b:f0:d7:b6:a1:d5:fd:b3:f4:9c:e4:01:
d1:ed:27:9a:04:dd:f2:41:5e:3c:a4:9a:f4:da:7c:b8:d4:80:
fe:79:a3:e0:9a:e0:cb:7a:6b:0b:e3:ca:ad:33:21:e6:fc:bc:
17:e6:d0:3f:e0:e2:6f:32:f4:3a:ce:a6:27:74:48:61:c2:f5:
3f:6e:02:47:ad:6a:24:6a:68:64:78:f5:97:26:85:4e:23:c7:
ad:e1:21:d6:84:4f:38:55:68:d2:11:8d:c2:08:91:a8:81:70:
03:4f:bc:1b:18:41:b1:2a:47:74:13:a7:c6:69:4e:95:76:9a:
9f:e4:bf:b0:48:24:6d:23:6e:cc:7b:4f:0e:65:c5:f5:6d:eb:
43:0a:90:13:55:61:e5:3a:1d:05:bf:62:c0:18:6c:54:0a:aa:
d1:91:12:08:8e:c8:30:76:90:e5:35:6b:94:7d:35:b6:31:d5:
62:1e:e9:be:0f:a8:f7:1b:82:dc:44:2a:8b:0d:a6:ab:66:e2:
24:ab:9e:5c
-----BEGIN CERTIFICATE-----
MIIGMTCCBRmgAwIBAgIUNBVSvKXks6BnxjFpM1AdKkgdOjMwDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyMjc4YWFiODc4ZjI4MzFiYjE4MjNiNTg3OTRiMDkyZDg2
ZmIxZDdhMGY3NGUyODE2MTEwHhcNMjMwNTE3MDAwMDAwWhcNMjMwNTIwMjM1OTU5
WjCBpTFJMEcGA1UEBRNAYmM1ODY3YzJkMjM4ZThiNWRiZWMzY2RjZjUxYzU2NTli
NWQwYTNiNzU1MjgzYWJlYjVkMzM4ZGJjMDE2Zjg0NjEtMCsGA1UEAxMkNmFlNGU1
NjctNjM0OC00YzRmLTk4YTgtMDQyMmM0YzUyZmYzMRQwEgYDVQQLEwtBbWF6b24g
UlBLSTETMBEGA1UEChMKQW1hem9uLmNvbTCCASIwDQYJKoZIhvcNAQEBBQADggEP
ADCCAQoCggEBAJ5ZSvR2UGrTIyMUHdIAvTWNKm0Y+UW44we4vbcRS1mzefACdjv4
UoWfdtv24HI9QV33zaEUyR38c1UPZnDjZQsxLaqChL7Ols1xlFHZF4+SMZcjvn1N
dYraI54Ms5RBwckEJn2b5LsK2iEmXQt5LFAodGmGAiopGCqKq1nwz0SR1b4BXJ1s
UeTxABSR/RQ/BZhQ2yFLMyNSqiwUtSlW57ULdHEKZmkN3FMY3R8pM+hUoqvzHgWT
zP/dVKYQTSCK5JSOyS1iWUq7Ljvbo/GGtHPKmd8P4+LYS0it2Iyn0B/TzvelE9Ck
7ZWO6MzqKqWAe4IoO9oplk3MBHa9+YTW0HkCAwEAAaOCAr4wggK6MB0GA1UdDgQW
BBS9PElJxkavfid+czSXUS6VAtrmQDAfBgNVHSMEGDAWgBSRRO3HpA7pkLf6Nm/2
4X15rcSDlzAOBgNVHQ8BAf8EBAMCB4AwgfMGCCsGAQUFBwEBBIHmMIHjMIHgBggr
BgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2FyaW4t
cnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMvMDM1
NzI3MmMtYTc5YS00NWJmLTk1ODYtOTJkZDQ5ZWYzMjIzLzczZjIxYzJiLTg4MjMt
NGMyNC1iMjViLTQzYzgwY2I2ZDFiYi8yNzhhYWI4NzhmMjgzMWJiMTgyM2I1ODc5
NGIwOTJkODZmYjFkN2EwZjc0ZTI4MTYxMS5jZXIwgZ4GCCsGAQUFBwELBIGRMIGO
MIGLBggrBgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6
b25hd3MuY29tL3ZvbHVtZS9iNjhhMzJlZS00NTVkLTQ4M2EtOTQzZC0xYTViZTc0
OGJmZWEvN2QyYTg5MDMtMjdkYy00OTAwLWFjZGQtNDNmNDQwNzM2YWIxLnJvYTCB
lQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I2OGEzMmVlLTQ1NWQtNDgzYS05NDNk
LTFhNWJlNzQ4YmZlYS80YmI4YWU1Yy0xMjRjLTQyZjMtODdmYi00ZjM0ZTc0ZTNk
YTIuY3JsMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8E
EDAOMAwEAgABMAYDBADHJHgwDQYJKoZIhvcNAQELBQADggEBAKGx7+FwdVACnh5P
F9gsmQ6PVdrgPrCAbLKFx/cjoMZnI+DIgX2+3uQyIcNa9f2ZnEyrfFZ4r3WTfnP4
vZvw17ah1f2z9JzkAdHtJ5oE3fJBXjykmvTafLjUgP55o+Ca4Mt6awvjyq0zIeb8
vBfm0D/g4m8y9DrOpid0SGHC9T9uAketaiRqaGR49ZcmhU4jx63hIdaETzhVaNIR
jcIIkaiBcANPvBsYQbEqR3QTp8ZpTpV2mp/kv7BIJG0jbsx7Tw5lxfVt60MKkBNV
YeU6HQW/YsAYbFQKqtGREgiOyDB2kOU1a5R9NbYx1WIe6b4PqPcbgtxEKosNpqtm
4iSrnlw=
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:47 2023 by rpki-client on console-fra.rpki-client.org