Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/93669d91-3b17-451b-b297-1c3a30556db4.roa
File: 93669d91-3b17-451b-b297-1c3a30556db4.roa (raw, json)
Hash identifier: S/vAJY7DWADjj6FMCI/xlD4Vw/hZZjdgv16A8nvYNZ4=
Subject key identifier: 75:5A:85:7E:88:6D:39:1E:EC:04:B7:86:0D:56:1D:4A:CF:55:83:53
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 0B1C80E9BCDDF83EA339FA675A8521EF1A4C8FD9
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/93669d91-3b17-451b-b297-1c3a30556db4.roa
Signing time: Thu 30 Mar 2023 00:00:00 +0000
ROA not before: Thu 30 Mar 2023 00:00:00 +0000
ROA not after: Sun 02 Apr 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0b:1c:80:e9:bc:dd:f8:3e:a3:39:fa:67:5a:85:21:ef:1a:4c:8f:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Mar 30 00:00:00 2023 GMT
Not After : Apr 2 23:59:59 2023 GMT
Subject: serialNumber=a7c87460b7f944645f462e27ad70860314da66e6b26711f7e677e2083241421a, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:60:80:31:f6:4c:1a:54:a2:83:10:72:60:59:
bc:f5:0a:f6:04:78:92:0e:27:af:6a:13:7d:59:22:
75:16:4d:95:2a:0a:14:9e:54:cb:84:91:a3:f3:e0:
69:69:f2:02:48:97:75:27:af:ae:bc:38:a8:fb:cb:
66:e3:06:bd:86:e9:bc:a0:95:43:77:b7:95:85:8a:
54:a0:d2:cf:eb:09:05:b5:f6:ef:be:bd:4b:1d:2f:
81:db:fb:a4:73:69:43:6f:ea:61:d6:d3:b9:fc:49:
ab:a8:d1:62:4d:2c:7f:64:0c:09:05:0d:d8:77:f8:
03:26:0c:d2:d2:87:84:69:5a:4e:75:5d:8a:6e:d7:
ac:90:1b:92:70:f2:ef:30:c9:dd:e4:93:0f:9e:34:
ba:c2:a7:5f:f4:7b:84:c4:0e:d9:9f:e5:e4:b2:e2:
0e:02:c5:a3:cb:e5:66:b6:42:b0:ef:0d:0c:aa:4f:
d6:34:ff:45:3c:2e:00:6c:c7:56:2c:cd:e9:a0:b7:
40:de:8e:d5:6e:76:6d:65:1a:93:dd:e6:5c:dd:ea:
d0:59:42:ba:f4:91:99:f8:77:a1:4b:60:21:cd:60:
3c:df:92:3f:6c:0c:63:fd:bb:8c:fe:9a:c9:08:12:
7e:d4:65:c7:40:31:27:ca:58:aa:0e:4e:af:db:02:
1e:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:5A:85:7E:88:6D:39:1E:EC:04:B7:86:0D:56:1D:4A:CF:55:83:53
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/93669d91-3b17-451b-b297-1c3a30556db4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
c1:23:20:63:b6:e4:a1:78:12:29:48:90:04:a0:e2:1c:ce:03:
c4:e4:ad:44:36:3d:b8:17:6e:d0:f1:dc:a0:af:05:5f:48:b9:
d9:44:c3:ec:8f:ad:36:1f:0f:90:7d:ea:11:97:64:ff:0a:a9:
26:1b:b9:50:77:c6:2e:68:31:b7:b7:dd:b0:30:98:9f:10:55:
b5:9e:9d:64:a4:47:9f:be:34:84:28:06:70:09:3d:32:17:7f:
1f:66:06:a2:a3:d3:a9:6c:30:ff:dd:0a:eb:4d:e1:50:db:6c:
dd:5a:4a:1c:51:54:eb:62:54:ef:92:f2:bf:a5:7b:0b:dd:40:
5f:32:de:35:0e:1b:e2:71:a4:c9:4e:20:a0:da:26:58:69:cb:
89:c4:9a:54:87:76:60:81:61:a5:95:9b:5c:8e:ea:15:e0:69:
9c:2f:27:54:63:0b:d4:d0:f6:24:4f:1a:f9:5c:0d:40:c8:22:
28:09:97:11:e5:a0:8b:fb:b3:fb:38:a6:6e:c7:a3:13:b6:9d:
36:6d:1e:8e:73:cc:55:c9:be:90:9f:3a:d7:03:3c:cc:ea:79:
c4:54:24:58:93:67:c5:79:5a:76:c7:88:6e:35:9c:47:b8:44:
69:f9:e6:72:42:36:e5:bf:9b:6a:25:b0:10:bf:29:10:4d:0c:
38:43:90:eb
-----BEGIN CERTIFICATE-----
MIIGMTCCBRmgAwIBAgIUCxyA6bzd+D6jOfpnWoUh7xpMj9kwDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyMjc4YWFiODc4ZjI4MzFiYjE4MjNiNTg3OTRiMDkyZDg2
ZmIxZDdhMGY3NGUyODE2MTEwHhcNMjMwMzMwMDAwMDAwWhcNMjMwNDAyMjM1OTU5
WjCBpTFJMEcGA1UEBRNAYTdjODc0NjBiN2Y5NDQ2NDVmNDYyZTI3YWQ3MDg2MDMx
NGRhNjZlNmIyNjcxMWY3ZTY3N2UyMDgzMjQxNDIxYTEtMCsGA1UEAxMkNmFlNGU1
NjctNjM0OC00YzRmLTk4YTgtMDQyMmM0YzUyZmYzMRQwEgYDVQQLEwtBbWF6b24g
UlBLSTETMBEGA1UEChMKQW1hem9uLmNvbTCCASIwDQYJKoZIhvcNAQEBBQADggEP
ADCCAQoCggEBAOVggDH2TBpUooMQcmBZvPUK9gR4kg4nr2oTfVkidRZNlSoKFJ5U
y4SRo/PgaWnyAkiXdSevrrw4qPvLZuMGvYbpvKCVQ3e3lYWKVKDSz+sJBbX27769
Sx0vgdv7pHNpQ2/qYdbTufxJq6jRYk0sf2QMCQUN2Hf4AyYM0tKHhGlaTnVdim7X
rJAbknDy7zDJ3eSTD540usKnX/R7hMQO2Z/l5LLiDgLFo8vlZrZCsO8NDKpP1jT/
RTwuAGzHVizN6aC3QN6O1W52bWUak93mXN3q0FlCuvSRmfh3oUtgIc1gPN+SP2wM
Y/27jP6ayQgSftRlx0AxJ8pYqg5Or9sCHg0CAwEAAaOCAr4wggK6MB0GA1UdDgQW
BBR1WoV+iG05HuwEt4YNVh1Kz1WDUzAfBgNVHSMEGDAWgBSRRO3HpA7pkLf6Nm/2
4X15rcSDlzAOBgNVHQ8BAf8EBAMCB4AwgfMGCCsGAQUFBwEBBIHmMIHjMIHgBggr
BgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2FyaW4t
cnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMvMDM1
NzI3MmMtYTc5YS00NWJmLTk1ODYtOTJkZDQ5ZWYzMjIzLzczZjIxYzJiLTg4MjMt
NGMyNC1iMjViLTQzYzgwY2I2ZDFiYi8yNzhhYWI4NzhmMjgzMWJiMTgyM2I1ODc5
NGIwOTJkODZmYjFkN2EwZjc0ZTI4MTYxMS5jZXIwgZ4GCCsGAQUFBwELBIGRMIGO
MIGLBggrBgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6
b25hd3MuY29tL3ZvbHVtZS9iNjhhMzJlZS00NTVkLTQ4M2EtOTQzZC0xYTViZTc0
OGJmZWEvOTM2NjlkOTEtM2IxNy00NTFiLWIyOTctMWMzYTMwNTU2ZGI0LnJvYTCB
lQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I2OGEzMmVlLTQ1NWQtNDgzYS05NDNk
LTFhNWJlNzQ4YmZlYS80YmI4YWU1Yy0xMjRjLTQyZjMtODdmYi00ZjM0ZTc0ZTNk
YTIuY3JsMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8E
EDAOMAwEAgABMAYDBADHJHgwDQYJKoZIhvcNAQELBQADggEBAMEjIGO25KF4EilI
kASg4hzOA8TkrUQ2PbgXbtDx3KCvBV9IudlEw+yPrTYfD5B96hGXZP8KqSYbuVB3
xi5oMbe33bAwmJ8QVbWenWSkR5++NIQoBnAJPTIXfx9mBqKj06lsMP/dCutN4VDb
bN1aShxRVOtiVO+S8r+lewvdQF8y3jUOG+JxpMlOIKDaJlhpy4nEmlSHdmCBYaWV
m1yO6hXgaZwvJ1RjC9TQ9iRPGvlcDUDIIigJlxHloIv7s/s4pm7HoxO2nTZtHo5z
zFXJvpCfOtcDPMzqecRUJFiTZ8V5WnbHiG41nEe4RGn55nJCNuW/m2olsBC/KRBN
DDhDkOs=
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:48 2023 by rpki-client on console-ams.rpki-client.org