Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/a16fd5b2-d3d4-4a8f-97aa-eeac23f2d460.roa
File: a16fd5b2-d3d4-4a8f-97aa-eeac23f2d460.roa (raw, json)
Hash identifier: c/eaomii2UVy/eNOY7tKVBF2NCOPl6w7yauRR+gCGtE=
Subject key identifier: FB:63:3F:88:86:BD:D7:2A:49:4D:43:69:D3:63:22:01:CD:B3:75:B9
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 04AC11A51BBE759F061F8C1419121391DADC0527
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/a16fd5b2-d3d4-4a8f-97aa-eeac23f2d460.roa
Signing time: Sat 03 Dec 2022 00:00:00 +0000
ROA not before: Sat 03 Dec 2022 00:00:00 +0000
ROA not after: Tue 06 Dec 2022 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
04:ac:11:a5:1b:be:75:9f:06:1f:8c:14:19:12:13:91:da:dc:05:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Dec 3 00:00:00 2022 GMT
Not After : Dec 6 23:59:59 2022 GMT
Subject: serialNumber=48f7d34b774487586b897d9f12acb589dbcad5949c9ef167b6b255169348a9bc, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:c4:b9:04:47:4e:27:f0:d5:2d:e7:d3:5b:d6:
28:5d:48:d3:51:7e:1d:79:0a:4b:5d:7c:9e:c2:93:
ac:30:ca:55:a2:9d:a1:4f:e4:48:9e:fc:d6:e3:82:
16:d4:e8:65:e1:3c:7b:dd:ba:9b:32:d5:bc:57:bc:
a7:8d:64:86:76:2e:d5:ac:6a:62:67:6f:82:06:5e:
b4:d6:8a:1d:04:f1:6b:f9:4a:51:d9:67:06:d1:fd:
5e:ca:57:75:3b:e0:87:ba:f3:db:3a:ca:d5:4c:60:
99:8d:50:07:e6:c8:2d:37:8b:fe:ce:78:29:17:22:
ae:c1:62:76:06:a7:95:79:a3:4b:1a:48:4a:b0:98:
8e:5f:d4:43:ea:1c:f6:dc:56:4f:09:ca:60:65:25:
f1:46:1f:9f:2f:42:27:2d:9a:64:29:f2:fd:2a:92:
b5:07:dd:9f:ac:97:4b:79:ca:2a:fb:0b:4a:9c:01:
b3:ff:81:c8:6b:d4:00:3a:39:4b:76:89:d6:e2:69:
75:89:a6:a3:9c:8f:4c:93:ea:66:19:49:6d:e7:2c:
73:13:b2:2c:3a:a7:27:8a:3a:60:c5:d1:e1:3b:1c:
2f:7e:6e:2f:c5:56:fc:b3:09:0a:1b:9d:29:ed:74:
38:3b:39:84:7e:03:ad:91:5d:9c:67:02:e7:ba:6f:
d7:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:63:3F:88:86:BD:D7:2A:49:4D:43:69:D3:63:22:01:CD:B3:75:B9
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/a16fd5b2-d3d4-4a8f-97aa-eeac23f2d460.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
61:56:a8:ab:d8:2f:67:47:bb:09:a5:c5:03:bc:e5:42:21:f3:
35:37:63:ea:39:f8:56:ac:fb:18:ce:22:b8:8d:a2:7b:66:1a:
a7:5c:75:38:06:48:7f:13:08:42:e7:a4:f3:6f:c2:ca:03:71:
c1:44:3d:e7:f4:4a:86:a6:7a:40:f2:3f:0f:a4:1e:4a:bb:69:
07:36:02:8c:de:50:dc:bb:3d:a4:dc:15:fe:f1:ef:90:74:5d:
70:5a:49:26:51:c9:40:15:ee:2b:8e:6e:67:e5:d4:20:c9:c2:
c5:2d:e2:8a:e1:c4:bf:56:05:e9:dd:03:8b:ad:d0:e8:22:0a:
76:70:ee:92:fe:86:74:12:b8:31:cf:7c:1c:6e:d2:53:17:e1:
b6:05:98:b8:b1:79:d0:63:d9:e6:82:0e:23:ea:c8:f6:72:fa:
3a:f3:8b:4b:45:47:12:04:b4:cc:46:5a:2b:88:53:c5:dd:19:
ff:a9:d2:52:13:00:17:9e:60:3b:f1:1e:6d:10:88:3a:26:52:
bb:01:79:97:28:92:ed:86:5f:c2:63:2c:d0:38:97:b0:7c:ef:
59:b2:1f:a8:b4:8b:b0:32:94:2a:ba:b1:92:af:35:ca:b5:8b:
e3:92:9c:44:c5:8f:3e:3d:68:1c:cc:39:46:9b:d6:54:46:e3:
05:f6:b5:36
-----BEGIN CERTIFICATE-----
MIIGMTCCBRmgAwIBAgIUBKwRpRu+dZ8GH4wUGRITkdrcBScwDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyMjc4YWFiODc4ZjI4MzFiYjE4MjNiNTg3OTRiMDkyZDg2
ZmIxZDdhMGY3NGUyODE2MTEwHhcNMjIxMjAzMDAwMDAwWhcNMjIxMjA2MjM1OTU5
WjCBpTFJMEcGA1UEBRNANDhmN2QzNGI3NzQ0ODc1ODZiODk3ZDlmMTJhY2I1ODlk
YmNhZDU5NDljOWVmMTY3YjZiMjU1MTY5MzQ4YTliYzEtMCsGA1UEAxMkNmFlNGU1
NjctNjM0OC00YzRmLTk4YTgtMDQyMmM0YzUyZmYzMRQwEgYDVQQLEwtBbWF6b24g
UlBLSTETMBEGA1UEChMKQW1hem9uLmNvbTCCASIwDQYJKoZIhvcNAQEBBQADggEP
ADCCAQoCggEBAOTEuQRHTifw1S3n01vWKF1I01F+HXkKS118nsKTrDDKVaKdoU/k
SJ781uOCFtToZeE8e926mzLVvFe8p41khnYu1axqYmdvggZetNaKHQTxa/lKUdln
BtH9XspXdTvgh7rz2zrK1UxgmY1QB+bILTeL/s54KRcirsFidganlXmjSxpISrCY
jl/UQ+oc9txWTwnKYGUl8UYfny9CJy2aZCny/SqStQfdn6yXS3nKKvsLSpwBs/+B
yGvUADo5S3aJ1uJpdYmmo5yPTJPqZhlJbecscxOyLDqnJ4o6YMXR4TscL35uL8VW
/LMJChudKe10ODs5hH4DrZFdnGcC57pv1zECAwEAAaOCAr4wggK6MB0GA1UdDgQW
BBT7Yz+Ihr3XKklNQ2nTYyIBzbN1uTAfBgNVHSMEGDAWgBSRRO3HpA7pkLf6Nm/2
4X15rcSDlzAOBgNVHQ8BAf8EBAMCB4AwgfMGCCsGAQUFBwEBBIHmMIHjMIHgBggr
BgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2FyaW4t
cnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMvMDM1
NzI3MmMtYTc5YS00NWJmLTk1ODYtOTJkZDQ5ZWYzMjIzLzczZjIxYzJiLTg4MjMt
NGMyNC1iMjViLTQzYzgwY2I2ZDFiYi8yNzhhYWI4NzhmMjgzMWJiMTgyM2I1ODc5
NGIwOTJkODZmYjFkN2EwZjc0ZTI4MTYxMS5jZXIwgZ4GCCsGAQUFBwELBIGRMIGO
MIGLBggrBgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6
b25hd3MuY29tL3ZvbHVtZS9iNjhhMzJlZS00NTVkLTQ4M2EtOTQzZC0xYTViZTc0
OGJmZWEvYTE2ZmQ1YjItZDNkNC00YThmLTk3YWEtZWVhYzIzZjJkNDYwLnJvYTCB
lQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I2OGEzMmVlLTQ1NWQtNDgzYS05NDNk
LTFhNWJlNzQ4YmZlYS80YmI4YWU1Yy0xMjRjLTQyZjMtODdmYi00ZjM0ZTc0ZTNk
YTIuY3JsMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8E
EDAOMAwEAgABMAYDBADHJHgwDQYJKoZIhvcNAQELBQADggEBAGFWqKvYL2dHuwml
xQO85UIh8zU3Y+o5+Fas+xjOIriNontmGqdcdTgGSH8TCELnpPNvwsoDccFEPef0
SoamekDyPw+kHkq7aQc2AozeUNy7PaTcFf7x75B0XXBaSSZRyUAV7iuObmfl1CDJ
wsUt4orhxL9WBendA4ut0OgiCnZw7pL+hnQSuDHPfBxu0lMX4bYFmLixedBj2eaC
DiPqyPZy+jrzi0tFRxIEtMxGWiuIU8XdGf+p0lITABeeYDvxHm0QiDomUrsBeZco
ku2GX8JjLNA4l7B871myH6i0i7AylCq6sZKvNcq1i+OSnETFjz49aBzMOUab1lRG
4wX2tTY=
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:49 2023 by rpki-client on console-ams.rpki-client.org