Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/a1cb4d13-0fb0-41cb-99c4-17f52df97276.roa
File: a1cb4d13-0fb0-41cb-99c4-17f52df97276.roa (raw, json)
Hash identifier: DILZr1SRonhqm3xIRV1iSm8fpoWoj+wN4KuukEuyNVE=
Subject key identifier: A1:C9:AE:AB:37:12:00:48:1B:14:88:3A:F8:47:84:90:5E:6E:2B:8C
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 32FAB64698F9529B01689E0F3AE92AC86156913A
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/a1cb4d13-0fb0-41cb-99c4-17f52df97276.roa
Signing time: Mon 22 May 2023 00:00:00 +0000
ROA not before: Mon 22 May 2023 00:00:00 +0000
ROA not after: Thu 25 May 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
32:fa:b6:46:98:f9:52:9b:01:68:9e:0f:3a:e9:2a:c8:61:56:91:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: May 22 00:00:00 2023 GMT
Not After : May 25 23:59:59 2023 GMT
Subject: serialNumber=6d2ecde079546f50e84bf1a6cad686572bde5343d78d24ae73c6fee509eb4771, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:36:0b:42:07:da:64:4a:44:2c:6d:0b:1b:c4:
9c:c0:91:7d:d3:5a:5e:fe:f8:8c:de:c1:88:eb:7e:
0b:c2:35:1c:5c:29:7c:21:a2:3d:cf:29:d8:06:8e:
ff:1b:e4:24:5d:a4:48:53:16:2e:5c:68:2b:78:1a:
98:b7:89:b9:96:78:76:16:72:99:c0:12:f6:16:ce:
20:f5:fd:18:15:50:bf:78:ec:26:b6:1a:be:24:3e:
9d:0b:ad:74:06:a7:73:e8:20:a5:b3:7a:44:81:a6:
7d:0f:99:c3:c8:16:5d:4b:da:33:44:3e:ec:91:5a:
4d:4a:d2:7c:58:d6:cf:5f:20:b8:23:a2:cc:1a:0e:
0f:05:55:a7:18:a2:0f:70:65:0c:92:b6:80:9a:75:
69:2b:2a:ca:90:18:ba:b5:c6:c8:36:c9:3d:58:65:
59:fa:8e:df:e9:2c:4e:a1:c1:35:ff:86:84:ec:d6:
a0:66:a5:70:1f:37:07:bc:48:10:a9:1e:7a:8a:e7:
dc:b5:e7:56:59:d6:81:00:f2:59:46:b1:20:d9:4c:
5d:d2:98:66:6d:91:28:c2:2e:0b:4e:59:34:19:28:
51:07:b4:9d:b5:3f:f4:03:6e:43:b9:3a:ed:28:5b:
f2:00:83:f3:81:8d:3e:29:3c:38:69:6d:11:d6:6c:
ea:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:C9:AE:AB:37:12:00:48:1B:14:88:3A:F8:47:84:90:5E:6E:2B:8C
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/a1cb4d13-0fb0-41cb-99c4-17f52df97276.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
77:c0:1e:a5:25:a0:8a:aa:92:6f:5c:7d:bf:fc:07:ce:c4:0a:
9e:f3:53:e2:e3:52:26:70:de:7a:93:86:a6:6d:c5:c4:77:23:
71:39:b5:38:fe:67:f9:10:16:68:65:56:1b:2e:31:b4:71:3e:
82:a8:86:3d:6b:bf:30:5c:67:37:6d:0c:55:e8:42:c1:ce:26:
7e:3c:8f:60:8b:91:2f:d9:85:69:19:24:f3:c8:ea:38:09:64:
03:b1:3d:30:8b:7b:99:cc:cb:fb:0c:34:19:a2:5f:89:2a:4b:
2d:9b:89:61:53:fe:e3:20:1d:ee:c2:8f:41:3c:f8:e7:1f:2c:
c3:16:87:16:a0:cc:98:56:d6:2f:29:c6:e4:f6:26:88:1e:ac:
34:a7:4a:c1:46:a6:24:a8:17:f5:19:72:ad:91:1e:fb:a3:fa:
49:24:f6:9a:b0:c3:34:97:b6:3f:fe:65:58:27:67:49:08:bb:
9f:9a:37:35:d6:b5:db:9f:0d:5f:00:ef:9e:47:8c:97:50:37:
ee:44:94:81:4c:7c:f8:09:6d:a7:7d:1b:ec:79:60:ce:3a:6c:
bd:af:80:a3:a3:8e:6f:47:05:67:f1:96:39:65:d1:eb:7e:6b:
65:e6:13:62:fa:08:09:c3:ea:39:fb:f6:4f:ec:41:d5:fb:39:
e3:eb:74:fe
-----BEGIN CERTIFICATE-----
MIIGMTCCBRmgAwIBAgIUMvq2Rpj5UpsBaJ4POukqyGFWkTowDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyMjc4YWFiODc4ZjI4MzFiYjE4MjNiNTg3OTRiMDkyZDg2
ZmIxZDdhMGY3NGUyODE2MTEwHhcNMjMwNTIyMDAwMDAwWhcNMjMwNTI1MjM1OTU5
WjCBpTFJMEcGA1UEBRNANmQyZWNkZTA3OTU0NmY1MGU4NGJmMWE2Y2FkNjg2NTcy
YmRlNTM0M2Q3OGQyNGFlNzNjNmZlZTUwOWViNDc3MTEtMCsGA1UEAxMkNmFlNGU1
NjctNjM0OC00YzRmLTk4YTgtMDQyMmM0YzUyZmYzMRQwEgYDVQQLEwtBbWF6b24g
UlBLSTETMBEGA1UEChMKQW1hem9uLmNvbTCCASIwDQYJKoZIhvcNAQEBBQADggEP
ADCCAQoCggEBAM42C0IH2mRKRCxtCxvEnMCRfdNaXv74jN7BiOt+C8I1HFwpfCGi
Pc8p2AaO/xvkJF2kSFMWLlxoK3gamLeJuZZ4dhZymcAS9hbOIPX9GBVQv3jsJrYa
viQ+nQutdAanc+ggpbN6RIGmfQ+Zw8gWXUvaM0Q+7JFaTUrSfFjWz18guCOizBoO
DwVVpxiiD3BlDJK2gJp1aSsqypAYurXGyDbJPVhlWfqO3+ksTqHBNf+GhOzWoGal
cB83B7xIEKkeeorn3LXnVlnWgQDyWUaxINlMXdKYZm2RKMIuC05ZNBkoUQe0nbU/
9ANuQ7k67Shb8gCD84GNPik8OGltEdZs6gsCAwEAAaOCAr4wggK6MB0GA1UdDgQW
BBShya6rNxIASBsUiDr4R4SQXm4rjDAfBgNVHSMEGDAWgBSRRO3HpA7pkLf6Nm/2
4X15rcSDlzAOBgNVHQ8BAf8EBAMCB4AwgfMGCCsGAQUFBwEBBIHmMIHjMIHgBggr
BgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2FyaW4t
cnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMvMDM1
NzI3MmMtYTc5YS00NWJmLTk1ODYtOTJkZDQ5ZWYzMjIzLzczZjIxYzJiLTg4MjMt
NGMyNC1iMjViLTQzYzgwY2I2ZDFiYi8yNzhhYWI4NzhmMjgzMWJiMTgyM2I1ODc5
NGIwOTJkODZmYjFkN2EwZjc0ZTI4MTYxMS5jZXIwgZ4GCCsGAQUFBwELBIGRMIGO
MIGLBggrBgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6
b25hd3MuY29tL3ZvbHVtZS9iNjhhMzJlZS00NTVkLTQ4M2EtOTQzZC0xYTViZTc0
OGJmZWEvYTFjYjRkMTMtMGZiMC00MWNiLTk5YzQtMTdmNTJkZjk3Mjc2LnJvYTCB
lQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I2OGEzMmVlLTQ1NWQtNDgzYS05NDNk
LTFhNWJlNzQ4YmZlYS80YmI4YWU1Yy0xMjRjLTQyZjMtODdmYi00ZjM0ZTc0ZTNk
YTIuY3JsMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8E
EDAOMAwEAgABMAYDBADHJHgwDQYJKoZIhvcNAQELBQADggEBAHfAHqUloIqqkm9c
fb/8B87ECp7zU+LjUiZw3nqThqZtxcR3I3E5tTj+Z/kQFmhlVhsuMbRxPoKohj1r
vzBcZzdtDFXoQsHOJn48j2CLkS/ZhWkZJPPI6jgJZAOxPTCLe5nMy/sMNBmiX4kq
Sy2biWFT/uMgHe7Cj0E8+OcfLMMWhxagzJhW1i8pxuT2JogerDSnSsFGpiSoF/UZ
cq2RHvuj+kkk9pqwwzSXtj/+ZVgnZ0kIu5+aNzXWtdufDV8A755HjJdQN+5ElIFM
fPgJbad9G+x5YM46bL2vgKOjjm9HBWfxljll0et+a2XmE2L6CAnD6jn79k/sQdX7
OePrdP4=
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:49 2023 by rpki-client on console-fra.rpki-client.org