Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/7e8e6e76-d223-4a7d-aeab-640c3c16e4b4.roa
File: 7e8e6e76-d223-4a7d-aeab-640c3c16e4b4.roa (raw, json)
Hash identifier: sruV57n746hcI/ISoFqooUKgGSkjc7Kyx66dxOg96/g=
Subject key identifier: 32:6E:FE:9C:BD:05:BD:BC:D7:A2:80:1C:D8:17:FB:94:0C:44:BC:20
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 4712E03B6657C2988C223BD90D14E90AEB64F276
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/7e8e6e76-d223-4a7d-aeab-640c3c16e4b4.roa
Signing time: Fri 24 Mar 2023 00:00:00 +0000
ROA not before: Fri 24 Mar 2023 00:00:00 +0000
ROA not after: Mon 27 Mar 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
47:12:e0:3b:66:57:c2:98:8c:22:3b:d9:0d:14:e9:0a:eb:64:f2:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Mar 24 00:00:00 2023 GMT
Not After : Mar 27 23:59:59 2023 GMT
Subject: serialNumber=c411d0fd983c377cb81e55cd81bb0c77c676b7645668603fd447a89d29903b78, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:37:95:f1:90:44:56:13:f6:74:01:e7:7e:64:
82:dc:91:37:15:71:75:57:0c:60:be:17:aa:2d:4e:
27:a5:98:67:80:a8:76:a5:3e:92:53:12:d7:dc:0c:
1e:3c:a3:80:9f:ff:23:de:db:b9:64:79:52:8d:d7:
7d:43:ce:2c:6c:8a:dd:41:75:a5:90:64:c8:a8:ec:
47:ce:d8:ae:47:24:c7:ba:b6:ae:80:2c:8f:27:43:
76:43:f4:b1:fe:24:b2:e4:e3:0b:7f:2e:f3:bf:bb:
0a:7b:fa:4c:0c:0a:fb:bc:db:5f:00:38:36:ee:3f:
fd:e0:2c:f3:11:ab:15:fc:e7:27:11:6f:18:e3:cd:
69:fa:00:15:97:a5:84:0d:27:a7:03:52:9f:cd:8b:
aa:c1:98:e5:a1:f1:3c:c7:61:d5:8d:dd:a8:ba:52:
57:22:9c:8d:c7:72:0d:c5:a7:18:b0:81:93:1f:b4:
16:6c:4d:0b:9c:e9:f6:b2:c4:59:80:65:46:86:29:
73:50:0a:be:56:39:a4:6d:78:44:74:4e:62:14:27:
6c:b8:ae:2b:b4:57:ff:51:97:77:45:0b:b9:e1:e8:
df:59:bf:81:62:2a:35:88:18:bd:b6:e4:bc:8f:74:
e9:04:a0:84:a7:cb:a7:9e:b5:a9:fb:68:93:a1:e5:
c5:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:6E:FE:9C:BD:05:BD:BC:D7:A2:80:1C:D8:17:FB:94:0C:44:BC:20
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/7e8e6e76-d223-4a7d-aeab-640c3c16e4b4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
53:06:f9:80:2d:95:b1:88:1b:36:7a:b7:7a:5d:08:2f:75:8b:
1c:17:20:74:d1:24:f3:aa:a6:b7:3b:21:66:8a:86:fe:cc:43:
dc:d2:c9:8d:ed:9f:23:96:01:96:6d:5d:da:06:27:98:bc:fc:
03:48:40:95:0c:22:b9:84:c3:db:39:64:4a:61:2d:f0:cc:d7:
96:95:6a:6e:da:c4:31:d9:49:5f:48:9d:7a:81:42:88:26:f1:
55:36:be:ea:ca:b4:c2:95:a4:7c:88:d0:69:6b:1b:1a:d7:fb:
a1:ac:ae:81:2e:6f:35:dd:27:da:08:c8:42:fd:09:ae:2f:17:
a4:2d:41:42:15:21:82:76:1c:cb:49:78:65:21:1f:8b:8e:0e:
95:41:ff:35:3b:1c:e3:8d:4d:fd:ad:1d:29:ca:3b:3e:21:21:
22:74:5e:a9:82:3b:a8:83:29:1e:0f:a5:58:8a:8a:34:5a:bb:
fa:fd:5c:62:d3:41:a9:74:d1:56:5f:8c:d4:38:42:a7:51:f4:
c1:22:5f:fc:39:ed:c1:49:2c:f7:09:ee:e5:c1:0e:80:36:45:
a5:0d:0d:96:55:66:4e:bb:7e:6f:26:01:2c:ee:8b:03:1e:96:
95:06:13:fe:3b:63:c3:dd:c7:df:cb:0e:97:1f:e7:8e:f8:b0:
6d:96:98:1f
-----BEGIN CERTIFICATE-----
MIIGMTCCBRmgAwIBAgIURxLgO2ZXwpiMIjvZDRTpCutk8nYwDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyMjc4YWFiODc4ZjI4MzFiYjE4MjNiNTg3OTRiMDkyZDg2
ZmIxZDdhMGY3NGUyODE2MTEwHhcNMjMwMzI0MDAwMDAwWhcNMjMwMzI3MjM1OTU5
WjCBpTFJMEcGA1UEBRNAYzQxMWQwZmQ5ODNjMzc3Y2I4MWU1NWNkODFiYjBjNzdj
Njc2Yjc2NDU2Njg2MDNmZDQ0N2E4OWQyOTkwM2I3ODEtMCsGA1UEAxMkNmFlNGU1
NjctNjM0OC00YzRmLTk4YTgtMDQyMmM0YzUyZmYzMRQwEgYDVQQLEwtBbWF6b24g
UlBLSTETMBEGA1UEChMKQW1hem9uLmNvbTCCASIwDQYJKoZIhvcNAQEBBQADggEP
ADCCAQoCggEBAMM3lfGQRFYT9nQB535kgtyRNxVxdVcMYL4Xqi1OJ6WYZ4CodqU+
klMS19wMHjyjgJ//I97buWR5Uo3XfUPOLGyK3UF1pZBkyKjsR87Yrkckx7q2roAs
jydDdkP0sf4ksuTjC38u87+7Cnv6TAwK+7zbXwA4Nu4//eAs8xGrFfznJxFvGOPN
afoAFZelhA0npwNSn82LqsGY5aHxPMdh1Y3dqLpSVyKcjcdyDcWnGLCBkx+0FmxN
C5zp9rLEWYBlRoYpc1AKvlY5pG14RHROYhQnbLiuK7RX/1GXd0ULueHo31m/gWIq
NYgYvbbkvI906QSghKfLp561qftok6HlxSsCAwEAAaOCAr4wggK6MB0GA1UdDgQW
BBQybv6cvQW9vNeigBzYF/uUDES8IDAfBgNVHSMEGDAWgBSRRO3HpA7pkLf6Nm/2
4X15rcSDlzAOBgNVHQ8BAf8EBAMCB4AwgfMGCCsGAQUFBwEBBIHmMIHjMIHgBggr
BgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2FyaW4t
cnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMvMDM1
NzI3MmMtYTc5YS00NWJmLTk1ODYtOTJkZDQ5ZWYzMjIzLzczZjIxYzJiLTg4MjMt
NGMyNC1iMjViLTQzYzgwY2I2ZDFiYi8yNzhhYWI4NzhmMjgzMWJiMTgyM2I1ODc5
NGIwOTJkODZmYjFkN2EwZjc0ZTI4MTYxMS5jZXIwgZ4GCCsGAQUFBwELBIGRMIGO
MIGLBggrBgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6
b25hd3MuY29tL3ZvbHVtZS9iNjhhMzJlZS00NTVkLTQ4M2EtOTQzZC0xYTViZTc0
OGJmZWEvN2U4ZTZlNzYtZDIyMy00YTdkLWFlYWItNjQwYzNjMTZlNGI0LnJvYTCB
lQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I2OGEzMmVlLTQ1NWQtNDgzYS05NDNk
LTFhNWJlNzQ4YmZlYS80YmI4YWU1Yy0xMjRjLTQyZjMtODdmYi00ZjM0ZTc0ZTNk
YTIuY3JsMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8E
EDAOMAwEAgABMAYDBADHJHgwDQYJKoZIhvcNAQELBQADggEBAFMG+YAtlbGIGzZ6
t3pdCC91ixwXIHTRJPOqprc7IWaKhv7MQ9zSyY3tnyOWAZZtXdoGJ5i8/ANIQJUM
IrmEw9s5ZEphLfDM15aVam7axDHZSV9InXqBQogm8VU2vurKtMKVpHyI0GlrGxrX
+6GsroEubzXdJ9oIyEL9Ca4vF6QtQUIVIYJ2HMtJeGUhH4uODpVB/zU7HOONTf2t
HSnKOz4hISJ0XqmCO6iDKR4PpViKijRau/r9XGLTQal00VZfjNQ4QqdR9MEiX/w5
7cFJLPcJ7uXBDoA2RaUNDZZVZk67fm8mASzuiwMelpUGE/47Y8Pdx9/LDpcf5474
sG2WmB8=
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:47 2023 by rpki-client on console-fra.rpki-client.org