Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/a5f0c294-40c3-46eb-9912-a990b50149d7.roa
File: a5f0c294-40c3-46eb-9912-a990b50149d7.roa (raw, json)
Hash identifier: sKxMRnVOxaCApKo2jEiH087PIODL8wB6IaQZDRQfeKQ=
Subject key identifier: 66:9D:E2:06:D1:C2:97:91:EB:5D:53:C1:A4:B7:B6:AA:16:F7:15:15
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 049F6D98CCAF05970932BE75099B56C0EE9B522F
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/a5f0c294-40c3-46eb-9912-a990b50149d7.roa
Signing time: Fri 02 Sep 2022 00:00:00 +0000
ROA not before: Fri 02 Sep 2022 00:00:00 +0000
ROA not after: Mon 05 Sep 2022 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
04:9f:6d:98:cc:af:05:97:09:32:be:75:09:9b:56:c0:ee:9b:52:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Sep 2 00:00:00 2022 GMT
Not After : Sep 5 23:59:59 2022 GMT
Subject: serialNumber=0141f4c3ccc2b0abae76b28bd3bf5f857c38845064d1888c2c72bd8da77f7c9d, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:57:41:0f:30:74:26:ec:ab:8f:52:e9:70:e0:
c6:e6:35:2a:bc:b2:1f:ba:46:ee:a6:f6:86:99:7e:
67:50:d1:ed:cf:ff:bd:bd:6e:b5:19:c1:2b:70:d5:
be:7e:17:72:a9:eb:02:ff:a7:65:f3:df:8d:1b:12:
07:77:17:60:dd:0a:71:80:d1:7e:cc:d1:5e:37:61:
61:4b:ef:3b:f9:5e:f0:fd:e7:2f:5e:6a:44:0e:4d:
50:09:07:7b:02:e5:e6:ba:d8:e3:f8:18:0c:a1:38:
91:72:45:83:3a:df:fa:6b:e1:22:90:fd:66:1f:1d:
72:ee:76:49:9f:18:97:ca:94:a7:3d:34:72:c8:dc:
eb:ec:a8:ba:2a:4c:e0:e0:17:58:69:b9:2f:d3:d9:
da:0d:87:0c:88:20:63:00:77:5d:54:f7:09:af:79:
ea:d9:ef:9e:94:83:8c:38:a4:14:85:cb:d5:e0:b1:
79:8e:60:52:f0:55:90:48:34:66:ba:33:5f:70:85:
9a:dc:83:92:8b:4d:5e:e1:87:36:38:3c:04:b2:f5:
c0:d2:15:db:c6:df:15:3d:df:0b:a5:1f:37:aa:85:
39:74:9a:b7:1e:d2:61:9e:b8:6a:90:67:4b:01:e3:
a6:aa:7e:42:78:b0:76:be:74:5f:56:fc:2e:23:5d:
01:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:9D:E2:06:D1:C2:97:91:EB:5D:53:C1:A4:B7:B6:AA:16:F7:15:15
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/a5f0c294-40c3-46eb-9912-a990b50149d7.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
4c:38:7c:81:c7:6e:72:dc:7b:62:02:f3:c6:e6:5e:d1:33:e1:
86:37:98:e9:89:9d:12:67:a4:9d:7d:17:b1:bb:c7:36:c5:bb:
8a:a8:98:83:f6:cf:17:4f:02:3e:c0:78:74:c6:8c:ea:b7:cd:
e8:ea:e3:b6:88:a6:e8:98:1e:43:03:82:e8:63:92:9b:a2:b0:
d3:70:2f:a8:82:9c:f8:cf:a6:1a:a8:8f:60:16:ab:a3:89:d6:
a3:53:b5:c8:78:28:40:7a:9d:e6:b5:dd:e5:d4:e1:ae:92:95:
70:b6:ce:c6:a4:6e:2b:09:0d:2b:f4:74:86:33:ce:a1:ca:f9:
68:6c:f4:64:33:54:57:6e:97:13:32:06:49:a9:38:9b:be:5d:
05:09:83:28:c3:9a:58:86:4f:a7:a9:dc:30:fb:16:cd:bd:60:
f8:59:40:43:f4:7d:3a:99:12:86:fd:ea:46:c2:60:5e:92:ec:
d6:7f:ca:a9:65:c1:9b:1b:99:3a:e3:f4:c8:e1:60:57:3c:f0:
dc:7b:8a:e0:b1:f5:65:e4:c3:33:a0:4c:ff:24:25:23:c0:ed:
b4:60:b1:ec:00:f3:94:ff:5f:c0:bb:8b:1e:45:08:1f:65:48:
53:b7:59:33:8e:77:3f:15:2e:69:5f:63:05:58:d6:b7:5d:de:
27:97:09:4b
-----BEGIN CERTIFICATE-----
MIIGMTCCBRmgAwIBAgIUBJ9tmMyvBZcJMr51CZtWwO6bUi8wDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyMjc4YWFiODc4ZjI4MzFiYjE4MjNiNTg3OTRiMDkyZDg2
ZmIxZDdhMGY3NGUyODE2MTEwHhcNMjIwOTAyMDAwMDAwWhcNMjIwOTA1MjM1OTU5
WjCBpTFJMEcGA1UEBRNAMDE0MWY0YzNjY2MyYjBhYmFlNzZiMjhiZDNiZjVmODU3
YzM4ODQ1MDY0ZDE4ODhjMmM3MmJkOGRhNzdmN2M5ZDEtMCsGA1UEAxMkNmFlNGU1
NjctNjM0OC00YzRmLTk4YTgtMDQyMmM0YzUyZmYzMRQwEgYDVQQLEwtBbWF6b24g
UlBLSTETMBEGA1UEChMKQW1hem9uLmNvbTCCASIwDQYJKoZIhvcNAQEBBQADggEP
ADCCAQoCggEBAMRXQQ8wdCbsq49S6XDgxuY1KryyH7pG7qb2hpl+Z1DR7c//vb1u
tRnBK3DVvn4XcqnrAv+nZfPfjRsSB3cXYN0KcYDRfszRXjdhYUvvO/le8P3nL15q
RA5NUAkHewLl5rrY4/gYDKE4kXJFgzrf+mvhIpD9Zh8dcu52SZ8Yl8qUpz00csjc
6+youipM4OAXWGm5L9PZ2g2HDIggYwB3XVT3Ca956tnvnpSDjDikFIXL1eCxeY5g
UvBVkEg0ZrozX3CFmtyDkotNXuGHNjg8BLL1wNIV28bfFT3fC6UfN6qFOXSatx7S
YZ64apBnSwHjpqp+Qniwdr50X1b8LiNdASkCAwEAAaOCAr4wggK6MB0GA1UdDgQW
BBRmneIG0cKXketdU8Gkt7aqFvcVFTAfBgNVHSMEGDAWgBSRRO3HpA7pkLf6Nm/2
4X15rcSDlzAOBgNVHQ8BAf8EBAMCB4AwgfMGCCsGAQUFBwEBBIHmMIHjMIHgBggr
BgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2FyaW4t
cnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMvMDM1
NzI3MmMtYTc5YS00NWJmLTk1ODYtOTJkZDQ5ZWYzMjIzLzczZjIxYzJiLTg4MjMt
NGMyNC1iMjViLTQzYzgwY2I2ZDFiYi8yNzhhYWI4NzhmMjgzMWJiMTgyM2I1ODc5
NGIwOTJkODZmYjFkN2EwZjc0ZTI4MTYxMS5jZXIwgZ4GCCsGAQUFBwELBIGRMIGO
MIGLBggrBgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6
b25hd3MuY29tL3ZvbHVtZS9iNjhhMzJlZS00NTVkLTQ4M2EtOTQzZC0xYTViZTc0
OGJmZWEvYTVmMGMyOTQtNDBjMy00NmViLTk5MTItYTk5MGI1MDE0OWQ3LnJvYTCB
lQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I2OGEzMmVlLTQ1NWQtNDgzYS05NDNk
LTFhNWJlNzQ4YmZlYS80YmI4YWU1Yy0xMjRjLTQyZjMtODdmYi00ZjM0ZTc0ZTNk
YTIuY3JsMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8E
EDAOMAwEAgABMAYDBADHJHgwDQYJKoZIhvcNAQELBQADggEBAEw4fIHHbnLce2IC
88bmXtEz4YY3mOmJnRJnpJ19F7G7xzbFu4qomIP2zxdPAj7AeHTGjOq3zejq47aI
puiYHkMDguhjkpuisNNwL6iCnPjPphqoj2AWq6OJ1qNTtch4KEB6nea13eXU4a6S
lXC2zsakbisJDSv0dIYzzqHK+Whs9GQzVFdulxMyBkmpOJu+XQUJgyjDmliGT6ep
3DD7Fs29YPhZQEP0fTqZEob96kbCYF6S7NZ/yqllwZsbmTrj9MjhYFc88Nx7iuCx
9WXkwzOgTP8kJSPA7bRgsewA85T/X8C7ix5FCB9lSFO3WTOOdz8VLmlfYwVY1rdd
3ieXCUs=
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:49 2023 by rpki-client on console-fra.rpki-client.org