Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/bd4f8548-8e7f-4bfe-b7d3-981c3dd33f70.roa
File: bd4f8548-8e7f-4bfe-b7d3-981c3dd33f70.roa (raw, json)
Hash identifier: 9C8vP433mci9iAcOgMUgXsTm/YzqC5sE5eHZVQePEKo=
Subject key identifier: A6:B1:3D:27:09:DE:3F:BE:58:35:F6:50:B0:5B:FD:58:34:9B:6E:05
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 1CAE4AED28BD3DC5329BD82CE77110A0A771F68D
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/bd4f8548-8e7f-4bfe-b7d3-981c3dd33f70.roa
Signing time: Tue 18 Apr 2023 00:00:00 +0000
ROA not before: Tue 18 Apr 2023 00:00:00 +0000
ROA not after: Fri 21 Apr 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1c:ae:4a:ed:28:bd:3d:c5:32:9b:d8:2c:e7:71:10:a0:a7:71:f6:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Apr 18 00:00:00 2023 GMT
Not After : Apr 21 23:59:59 2023 GMT
Subject: serialNumber=d2c971caf8f8159d9c857746087c7feeaa9d4f6b9279537b1bbbf4d9e1c28f62, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:39:03:63:d2:da:49:f4:15:1e:51:a7:72:97:
dc:68:a7:2c:9e:5b:02:46:4d:1f:00:fc:cd:09:41:
95:14:6b:51:47:a9:49:41:e9:b3:8a:52:e8:a8:dd:
c6:ff:62:ca:4a:9d:23:aa:86:43:3b:be:d1:fa:ae:
aa:ae:a5:1e:53:c2:ba:93:eb:1a:aa:74:7b:5c:7b:
a6:15:82:c2:89:4d:29:53:c6:76:90:0e:d3:a9:76:
a7:7e:bc:48:44:bd:f0:22:2d:7d:3b:7e:33:d9:39:
60:6d:a2:ee:3c:8f:39:5b:2d:19:82:67:77:78:d7:
9e:7e:87:6f:fb:95:cb:66:af:cc:ed:a9:06:27:10:
54:33:c7:87:d0:e7:dd:42:73:99:5e:a2:c1:9e:d0:
ae:42:b8:de:6f:77:1b:34:ba:35:5d:39:c3:2c:57:
70:6c:e2:f5:18:7d:56:c0:90:8c:62:94:cf:63:d1:
e5:1a:3e:f5:48:66:9a:b1:5b:92:53:24:f8:c6:a1:
52:f7:fc:1f:2f:c2:a0:73:5b:3c:7a:da:3e:2e:5e:
57:ac:e8:4c:3b:25:b7:3c:c6:f9:ef:03:56:07:22:
54:86:7e:f1:26:fd:6a:c5:0d:1d:62:cc:1e:66:cd:
cf:c3:51:28:1c:67:73:4d:6a:f1:62:63:9e:00:c9:
7e:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:B1:3D:27:09:DE:3F:BE:58:35:F6:50:B0:5B:FD:58:34:9B:6E:05
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/bd4f8548-8e7f-4bfe-b7d3-981c3dd33f70.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
02:c1:05:af:0c:39:f2:7c:e5:b6:8a:3f:42:33:83:8d:59:d2:
0c:e0:4e:b3:cb:b0:37:bd:f1:6e:9c:8b:e2:e7:88:ec:35:cb:
85:48:1d:5f:0e:48:e1:bd:3e:8b:f2:4f:43:92:0d:1c:29:e7:
c8:74:6a:91:42:49:a0:e1:57:68:7b:69:d6:84:7a:1f:5c:71:
da:05:d4:23:08:30:f3:7f:f7:f6:a1:00:ec:9c:60:13:49:8e:
d6:c6:ee:ea:98:7f:f8:a4:78:54:52:2c:31:df:be:4f:56:71:
b8:a3:ba:1f:e4:e3:4a:0e:88:46:2c:ef:eb:08:97:ba:a9:32:
4d:c6:c1:f9:9d:40:9c:95:b3:79:3d:73:df:01:00:99:52:cb:
56:2e:b9:7c:73:ca:d1:49:a7:dd:ce:d3:3f:74:0d:ff:a3:92:
8a:35:a2:8d:e4:ce:4b:1e:97:60:28:59:e2:dd:b2:90:9c:42:
48:fc:33:7c:e8:9b:0f:55:83:7b:55:c3:4f:8a:d2:65:a0:0a:
b4:a8:85:19:96:54:46:0b:68:5b:2f:73:9f:71:04:50:43:e9:
49:95:44:32:49:c4:bf:bd:97:a8:db:3d:7c:02:47:8d:79:e7:
93:28:9d:f4:e3:c4:70:6e:e7:78:87:32:48:19:78:29:14:7e:
a6:89:2b:2a
-----BEGIN CERTIFICATE-----
MIIGMTCCBRmgAwIBAgIUHK5K7Si9PcUym9gs53EQoKdx9o0wDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyMjc4YWFiODc4ZjI4MzFiYjE4MjNiNTg3OTRiMDkyZDg2
ZmIxZDdhMGY3NGUyODE2MTEwHhcNMjMwNDE4MDAwMDAwWhcNMjMwNDIxMjM1OTU5
WjCBpTFJMEcGA1UEBRNAZDJjOTcxY2FmOGY4MTU5ZDljODU3NzQ2MDg3YzdmZWVh
YTlkNGY2YjkyNzk1MzdiMWJiYmY0ZDllMWMyOGY2MjEtMCsGA1UEAxMkNmFlNGU1
NjctNjM0OC00YzRmLTk4YTgtMDQyMmM0YzUyZmYzMRQwEgYDVQQLEwtBbWF6b24g
UlBLSTETMBEGA1UEChMKQW1hem9uLmNvbTCCASIwDQYJKoZIhvcNAQEBBQADggEP
ADCCAQoCggEBAJ05A2PS2kn0FR5Rp3KX3GinLJ5bAkZNHwD8zQlBlRRrUUepSUHp
s4pS6Kjdxv9iykqdI6qGQzu+0fquqq6lHlPCupPrGqp0e1x7phWCwolNKVPGdpAO
06l2p368SES98CItfTt+M9k5YG2i7jyPOVstGYJnd3jXnn6Hb/uVy2avzO2pBicQ
VDPHh9Dn3UJzmV6iwZ7QrkK43m93GzS6NV05wyxXcGzi9Rh9VsCQjGKUz2PR5Ro+
9UhmmrFbklMk+MahUvf8Hy/CoHNbPHraPi5eV6zoTDsltzzG+e8DVgciVIZ+8Sb9
asUNHWLMHmbNz8NRKBxnc01q8WJjngDJfocCAwEAAaOCAr4wggK6MB0GA1UdDgQW
BBSmsT0nCd4/vlg19lCwW/1YNJtuBTAfBgNVHSMEGDAWgBSRRO3HpA7pkLf6Nm/2
4X15rcSDlzAOBgNVHQ8BAf8EBAMCB4AwgfMGCCsGAQUFBwEBBIHmMIHjMIHgBggr
BgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2FyaW4t
cnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMvMDM1
NzI3MmMtYTc5YS00NWJmLTk1ODYtOTJkZDQ5ZWYzMjIzLzczZjIxYzJiLTg4MjMt
NGMyNC1iMjViLTQzYzgwY2I2ZDFiYi8yNzhhYWI4NzhmMjgzMWJiMTgyM2I1ODc5
NGIwOTJkODZmYjFkN2EwZjc0ZTI4MTYxMS5jZXIwgZ4GCCsGAQUFBwELBIGRMIGO
MIGLBggrBgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6
b25hd3MuY29tL3ZvbHVtZS9iNjhhMzJlZS00NTVkLTQ4M2EtOTQzZC0xYTViZTc0
OGJmZWEvYmQ0Zjg1NDgtOGU3Zi00YmZlLWI3ZDMtOTgxYzNkZDMzZjcwLnJvYTCB
lQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I2OGEzMmVlLTQ1NWQtNDgzYS05NDNk
LTFhNWJlNzQ4YmZlYS80YmI4YWU1Yy0xMjRjLTQyZjMtODdmYi00ZjM0ZTc0ZTNk
YTIuY3JsMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8E
EDAOMAwEAgABMAYDBADHJHgwDQYJKoZIhvcNAQELBQADggEBAALBBa8MOfJ85baK
P0Izg41Z0gzgTrPLsDe98W6ci+LniOw1y4VIHV8OSOG9PovyT0OSDRwp58h0apFC
SaDhV2h7adaEeh9ccdoF1CMIMPN/9/ahAOycYBNJjtbG7uqYf/ikeFRSLDHfvk9W
cbijuh/k40oOiEYs7+sIl7qpMk3GwfmdQJyVs3k9c98BAJlSy1YuuXxzytFJp93O
0z90Df+jkoo1oo3kzksel2AoWeLdspCcQkj8M3zomw9Vg3tVw0+K0mWgCrSohRmW
VEYLaFsvc59xBFBD6UmVRDJJxL+9l6jbPXwCR41555MonfTjxHBu53iHMkgZeCkU
fqaJKyo=
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:51 2023 by rpki-client on console-fra.rpki-client.org