Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/9d1e9dda-1e51-4e3c-8bc5-378f62b4ee41.roa
File: 9d1e9dda-1e51-4e3c-8bc5-378f62b4ee41.roa (raw, json)
Hash identifier: Il0Fl+vKxmCNce/mlkvSVyPXGa3MJwKjZrujWPFZE6g=
Subject key identifier: 7C:A6:06:9F:BE:79:5B:D9:B2:5D:DF:17:E6:1B:FB:20:1E:95:2F:19
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 73F2B936FDA07DD3CCE7140BFF5D20E30D86EEE9
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/9d1e9dda-1e51-4e3c-8bc5-378f62b4ee41.roa
Signing time: Sun 26 Feb 2023 00:00:00 +0000
ROA not before: Sun 26 Feb 2023 00:00:00 +0000
ROA not after: Wed 01 Mar 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
73:f2:b9:36:fd:a0:7d:d3:cc:e7:14:0b:ff:5d:20:e3:0d:86:ee:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Feb 26 00:00:00 2023 GMT
Not After : Mar 1 23:59:59 2023 GMT
Subject: serialNumber=36757a5bfcbc97ab3ff111f63bb6a6239423f67818a53d135f4cad74dd2345ce, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:fb:49:7f:17:d1:cd:58:d1:a9:df:4e:41:62:
33:6c:da:e1:e8:44:bd:0f:0b:23:52:96:49:e3:4a:
b4:ed:7a:a8:81:41:7a:02:c0:5f:42:ed:f1:5b:d7:
82:80:16:7a:83:bf:91:1a:f5:c1:76:c3:fd:91:27:
f4:bf:b2:e0:d6:84:ce:11:90:6c:ea:4e:d4:ec:1f:
d3:51:56:24:65:a1:01:08:ea:92:f9:69:4f:cf:77:
20:26:63:b9:08:f7:2c:36:aa:6c:08:48:6a:6b:d3:
9c:39:52:fe:bd:41:6e:b5:11:6f:3a:1a:91:7e:64:
90:90:1c:57:7c:32:d9:37:04:ab:88:6d:07:5d:42:
11:ae:7b:42:bc:5d:8b:8d:25:20:64:29:a4:ee:1c:
ed:36:d3:c1:80:ff:68:eb:a7:ef:e3:64:e3:5b:e0:
cc:ff:85:4f:3d:a6:9a:e9:81:de:96:ac:32:4b:a0:
d7:b9:b0:bb:e8:e9:4d:bf:e0:23:e2:bb:e2:3a:79:
f5:ea:a1:14:e8:09:e9:ed:86:0c:69:9a:a2:9f:46:
08:5a:46:82:17:a1:fc:b2:1f:55:e2:4d:9e:57:71:
7d:ab:80:db:57:49:a3:3d:49:e3:8e:ed:08:34:ba:
e1:56:5a:ac:c8:1e:18:46:0b:b1:84:a2:55:02:2c:
90:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:A6:06:9F:BE:79:5B:D9:B2:5D:DF:17:E6:1B:FB:20:1E:95:2F:19
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/9d1e9dda-1e51-4e3c-8bc5-378f62b4ee41.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
53:a6:c7:fd:71:d2:31:db:7b:bf:96:93:59:8d:33:b2:ca:4b:
ec:c3:63:1d:d3:5e:8d:2f:1e:c5:da:26:a6:d0:2e:bf:48:78:
6d:87:aa:34:08:27:86:c0:c5:2f:55:d2:29:1d:ca:3e:42:76:
57:dd:80:0d:02:dd:e3:5b:5f:e2:3f:57:15:e5:14:12:8c:1e:
ae:b9:cd:ff:18:91:1a:18:04:4f:db:13:1b:10:97:3f:f1:ff:
fa:9e:9d:42:0c:30:04:f3:79:1b:b8:44:86:48:b4:ce:0f:dc:
96:a2:9d:70:65:a8:ad:54:58:cb:4c:20:97:d2:a3:4f:dd:08:
10:a4:8f:ba:46:90:fb:2c:ad:1f:6c:9d:77:b3:ec:16:15:b4:
e9:22:3e:15:f9:f9:78:4a:15:b0:9e:8f:65:b4:ca:52:0f:09:
c3:c2:70:2e:f8:d5:59:17:9c:7e:87:9e:57:78:eb:06:d4:16:
1d:46:61:31:73:33:e3:11:4f:49:ca:d9:0f:47:32:d5:fc:14:
aa:b7:20:06:60:f1:b4:6b:61:ec:16:00:66:36:88:10:80:90:
28:23:92:8e:b7:ac:1e:a3:84:22:e1:f7:ad:73:5f:52:de:53:
6a:c1:f5:3f:8b:a3:25:bd:10:a4:38:b8:09:d7:10:d3:01:f2:
a6:87:6f:bf
-----BEGIN CERTIFICATE-----
MIIGMTCCBRmgAwIBAgIUc/K5Nv2gfdPM5xQL/10g4w2G7ukwDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyMjc4YWFiODc4ZjI4MzFiYjE4MjNiNTg3OTRiMDkyZDg2
ZmIxZDdhMGY3NGUyODE2MTEwHhcNMjMwMjI2MDAwMDAwWhcNMjMwMzAxMjM1OTU5
WjCBpTFJMEcGA1UEBRNAMzY3NTdhNWJmY2JjOTdhYjNmZjExMWY2M2JiNmE2MjM5
NDIzZjY3ODE4YTUzZDEzNWY0Y2FkNzRkZDIzNDVjZTEtMCsGA1UEAxMkNmFlNGU1
NjctNjM0OC00YzRmLTk4YTgtMDQyMmM0YzUyZmYzMRQwEgYDVQQLEwtBbWF6b24g
UlBLSTETMBEGA1UEChMKQW1hem9uLmNvbTCCASIwDQYJKoZIhvcNAQEBBQADggEP
ADCCAQoCggEBAIP7SX8X0c1Y0anfTkFiM2za4ehEvQ8LI1KWSeNKtO16qIFBegLA
X0Lt8VvXgoAWeoO/kRr1wXbD/ZEn9L+y4NaEzhGQbOpO1Owf01FWJGWhAQjqkvlp
T893ICZjuQj3LDaqbAhIamvTnDlS/r1BbrURbzoakX5kkJAcV3wy2TcEq4htB11C
Ea57Qrxdi40lIGQppO4c7TbTwYD/aOun7+Nk41vgzP+FTz2mmumB3pasMkug17mw
u+jpTb/gI+K74jp59eqhFOgJ6e2GDGmaop9GCFpGgheh/LIfVeJNnldxfauA21dJ
oz1J447tCDS64VZarMgeGEYLsYSiVQIskMUCAwEAAaOCAr4wggK6MB0GA1UdDgQW
BBR8pgafvnlb2bJd3xfmG/sgHpUvGTAfBgNVHSMEGDAWgBSRRO3HpA7pkLf6Nm/2
4X15rcSDlzAOBgNVHQ8BAf8EBAMCB4AwgfMGCCsGAQUFBwEBBIHmMIHjMIHgBggr
BgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2FyaW4t
cnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMvMDM1
NzI3MmMtYTc5YS00NWJmLTk1ODYtOTJkZDQ5ZWYzMjIzLzczZjIxYzJiLTg4MjMt
NGMyNC1iMjViLTQzYzgwY2I2ZDFiYi8yNzhhYWI4NzhmMjgzMWJiMTgyM2I1ODc5
NGIwOTJkODZmYjFkN2EwZjc0ZTI4MTYxMS5jZXIwgZ4GCCsGAQUFBwELBIGRMIGO
MIGLBggrBgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6
b25hd3MuY29tL3ZvbHVtZS9iNjhhMzJlZS00NTVkLTQ4M2EtOTQzZC0xYTViZTc0
OGJmZWEvOWQxZTlkZGEtMWU1MS00ZTNjLThiYzUtMzc4ZjYyYjRlZTQxLnJvYTCB
lQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I2OGEzMmVlLTQ1NWQtNDgzYS05NDNk
LTFhNWJlNzQ4YmZlYS80YmI4YWU1Yy0xMjRjLTQyZjMtODdmYi00ZjM0ZTc0ZTNk
YTIuY3JsMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8E
EDAOMAwEAgABMAYDBADHJHgwDQYJKoZIhvcNAQELBQADggEBAFOmx/1x0jHbe7+W
k1mNM7LKS+zDYx3TXo0vHsXaJqbQLr9IeG2HqjQIJ4bAxS9V0ikdyj5CdlfdgA0C
3eNbX+I/VxXlFBKMHq65zf8YkRoYBE/bExsQlz/x//qenUIMMATzeRu4RIZItM4P
3JainXBlqK1UWMtMIJfSo0/dCBCkj7pGkPssrR9snXez7BYVtOkiPhX5+XhKFbCe
j2W0ylIPCcPCcC741VkXnH6Hnld46wbUFh1GYTFzM+MRT0nK2Q9HMtX8FKq3IAZg
8bRrYewWAGY2iBCAkCgjko63rB6jhCLh961zX1LeU2rB9T+LoyW9EKQ4uAnXENMB
8qaHb78=
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:49 2023 by rpki-client on console-fra.rpki-client.org