Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/b447b873-11cc-4842-86e6-cd44b1bfff41.roa
File: b447b873-11cc-4842-86e6-cd44b1bfff41.roa (raw, json)
Hash identifier: WCxGcLIpI9aQOQU5nKBS5Ls298l+HF+WPaaWYMMCP8w=
Subject key identifier: DE:BB:5C:71:02:95:EE:B5:C5:C2:AE:63:4B:91:32:EE:B9:66:43:7B
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 1A2D833E5733A13909D15363532914D199D4115E
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/b447b873-11cc-4842-86e6-cd44b1bfff41.roa
Signing time: Mon 05 Jun 2023 00:00:00 +0000
ROA not before: Mon 05 Jun 2023 00:00:00 +0000
ROA not after: Thu 08 Jun 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1a:2d:83:3e:57:33:a1:39:09:d1:53:63:53:29:14:d1:99:d4:11:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Jun 5 00:00:00 2023 GMT
Not After : Jun 8 23:59:59 2023 GMT
Subject: serialNumber=28a1b0ce972d47d536eed3e221797ec018dde299445a3af082f6bf0b46a7916f, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:cb:d3:71:55:6c:78:57:ce:6e:42:e0:37:1c:
a5:b5:f7:91:84:77:fc:2d:3c:57:91:06:3b:0a:ad:
f3:90:6e:b2:e6:05:9f:7d:56:cc:af:d8:a1:ef:5f:
dd:b6:da:a8:d1:11:f9:67:00:c0:39:25:63:31:c9:
3b:60:3a:fa:14:f7:ca:44:15:b7:66:c2:90:7a:e9:
36:5b:ff:20:d5:2f:7e:4e:b3:39:c2:fa:ac:e5:b7:
22:6e:ab:35:21:73:bf:da:d8:92:e3:5d:53:6e:71:
de:2e:a7:4f:7e:c3:5d:1a:a9:de:28:68:0a:70:c5:
5d:b4:c6:ca:97:5d:00:e3:ff:63:64:6d:ab:e1:0b:
39:39:f2:ce:2a:f9:ce:66:69:de:43:10:e6:a2:ae:
a1:82:32:62:c2:32:8a:a5:ec:ca:74:8f:c9:96:7b:
31:c3:73:0a:df:df:3b:e4:51:39:e4:e2:21:53:f7:
31:c8:f0:43:db:16:5b:be:25:55:3e:0a:e4:74:e6:
66:e2:ba:fe:8b:37:2f:7a:b7:45:e1:4d:0e:1d:d1:
14:11:54:a2:07:ec:fc:51:e8:4c:29:57:bd:b8:5b:
89:8d:41:c8:a6:61:04:26:50:0d:44:90:29:86:f0:
ea:ac:9e:22:a2:72:c7:59:8f:bb:6c:fb:27:9a:d7:
44:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:BB:5C:71:02:95:EE:B5:C5:C2:AE:63:4B:91:32:EE:B9:66:43:7B
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/b447b873-11cc-4842-86e6-cd44b1bfff41.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
52:3a:33:e0:65:65:0c:c9:ff:a4:e7:fe:13:9a:ab:0a:74:8f:
dc:35:f1:9b:d3:ec:60:da:a4:28:8e:a8:b5:b0:59:a1:8b:dd:
4d:53:bb:ad:ea:0e:c8:b0:d3:43:dd:28:8b:40:73:c7:e2:61:
2b:d4:ff:1f:aa:aa:20:d2:3b:17:c4:d7:d7:e6:db:39:bf:f2:
36:26:0f:8b:80:56:a1:e4:f8:11:ad:82:78:7e:ff:35:92:bf:
1e:8d:18:24:d3:c6:44:69:6d:dd:15:0f:67:00:9b:37:52:53:
c8:17:04:e4:63:d1:62:fd:b0:ac:d1:6a:90:4d:e7:42:fd:15:
e0:25:81:f3:df:4e:34:b3:27:66:05:92:70:f6:4e:8d:fb:44:
cf:94:de:54:09:54:fe:8f:60:30:bc:2d:ab:62:e5:02:c4:b6:
84:53:f5:48:f0:d4:92:7d:b9:2d:ef:93:f8:f7:ea:29:d8:eb:
98:12:d4:e7:36:96:e6:ec:ac:1d:0f:e9:d1:72:e8:8f:76:9a:
94:07:d6:b6:f7:e8:90:1a:81:21:ee:9a:2c:e4:50:79:21:0e:
87:dd:7f:f5:7d:03:cd:1c:7d:e7:c2:14:ed:ee:c9:a7:53:df:
24:6e:0b:8d:84:59:a6:45:e0:85:7b:17:79:e8:3f:8a:58:f6:
a4:ed:55:ef
-----BEGIN CERTIFICATE-----
MIIGMTCCBRmgAwIBAgIUGi2DPlczoTkJ0VNjUykU0ZnUEV4wDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyMjc4YWFiODc4ZjI4MzFiYjE4MjNiNTg3OTRiMDkyZDg2
ZmIxZDdhMGY3NGUyODE2MTEwHhcNMjMwNjA1MDAwMDAwWhcNMjMwNjA4MjM1OTU5
WjCBpTFJMEcGA1UEBRNAMjhhMWIwY2U5NzJkNDdkNTM2ZWVkM2UyMjE3OTdlYzAx
OGRkZTI5OTQ0NWEzYWYwODJmNmJmMGI0NmE3OTE2ZjEtMCsGA1UEAxMkNmFlNGU1
NjctNjM0OC00YzRmLTk4YTgtMDQyMmM0YzUyZmYzMRQwEgYDVQQLEwtBbWF6b24g
UlBLSTETMBEGA1UEChMKQW1hem9uLmNvbTCCASIwDQYJKoZIhvcNAQEBBQADggEP
ADCCAQoCggEBALnL03FVbHhXzm5C4DccpbX3kYR3/C08V5EGOwqt85BusuYFn31W
zK/Yoe9f3bbaqNER+WcAwDklYzHJO2A6+hT3ykQVt2bCkHrpNlv/INUvfk6zOcL6
rOW3Im6rNSFzv9rYkuNdU25x3i6nT37DXRqp3ihoCnDFXbTGypddAOP/Y2Rtq+EL
OTnyzir5zmZp3kMQ5qKuoYIyYsIyiqXsynSPyZZ7McNzCt/fO+RROeTiIVP3Mcjw
Q9sWW74lVT4K5HTmZuK6/os3L3q3ReFNDh3RFBFUogfs/FHoTClXvbhbiY1ByKZh
BCZQDUSQKYbw6qyeIqJyx1mPu2z7J5rXRG8CAwEAAaOCAr4wggK6MB0GA1UdDgQW
BBTeu1xxApXutcXCrmNLkTLuuWZDezAfBgNVHSMEGDAWgBSRRO3HpA7pkLf6Nm/2
4X15rcSDlzAOBgNVHQ8BAf8EBAMCB4AwgfMGCCsGAQUFBwEBBIHmMIHjMIHgBggr
BgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2FyaW4t
cnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMvMDM1
NzI3MmMtYTc5YS00NWJmLTk1ODYtOTJkZDQ5ZWYzMjIzLzczZjIxYzJiLTg4MjMt
NGMyNC1iMjViLTQzYzgwY2I2ZDFiYi8yNzhhYWI4NzhmMjgzMWJiMTgyM2I1ODc5
NGIwOTJkODZmYjFkN2EwZjc0ZTI4MTYxMS5jZXIwgZ4GCCsGAQUFBwELBIGRMIGO
MIGLBggrBgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6
b25hd3MuY29tL3ZvbHVtZS9iNjhhMzJlZS00NTVkLTQ4M2EtOTQzZC0xYTViZTc0
OGJmZWEvYjQ0N2I4NzMtMTFjYy00ODQyLTg2ZTYtY2Q0NGIxYmZmZjQxLnJvYTCB
lQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I2OGEzMmVlLTQ1NWQtNDgzYS05NDNk
LTFhNWJlNzQ4YmZlYS80YmI4YWU1Yy0xMjRjLTQyZjMtODdmYi00ZjM0ZTc0ZTNk
YTIuY3JsMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8E
EDAOMAwEAgABMAYDBADHJHgwDQYJKoZIhvcNAQELBQADggEBAFI6M+BlZQzJ/6Tn
/hOaqwp0j9w18ZvT7GDapCiOqLWwWaGL3U1Tu63qDsiw00PdKItAc8fiYSvU/x+q
qiDSOxfE19fm2zm/8jYmD4uAVqHk+BGtgnh+/zWSvx6NGCTTxkRpbd0VD2cAmzdS
U8gXBORj0WL9sKzRapBN50L9FeAlgfPfTjSzJ2YFknD2To37RM+U3lQJVP6PYDC8
Lati5QLEtoRT9Ujw1JJ9uS3vk/j36inY65gS1Oc2lubsrB0P6dFy6I92mpQH1rb3
6JAagSHumizkUHkhDofdf/V9A80cfefCFO3uyadT3yRuC42EWaZF4IV7F3noP4pY
9qTtVe8=
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:50 2023 by rpki-client on console-fra.rpki-client.org