Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/bda6d4ae-a22d-4d70-af4a-474403d675dc.roa
File: bda6d4ae-a22d-4d70-af4a-474403d675dc.roa (raw, json)
Hash identifier: 9K8etnJ1iWzqyU2gbq5Y2mFECMwbOQecr6mq6kQbtKA=
Subject key identifier: 36:2D:EA:2C:5D:C1:EF:E7:A8:0A:20:F2:43:9A:8D:84:3E:6A:2A:80
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 1BDF5D7B7A482C0E5443CC3D67FA21EAE800FED8
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/bda6d4ae-a22d-4d70-af4a-474403d675dc.roa
Signing time: Sat 04 Mar 2023 00:00:00 +0000
ROA not before: Sat 04 Mar 2023 00:00:00 +0000
ROA not after: Tue 07 Mar 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1b:df:5d:7b:7a:48:2c:0e:54:43:cc:3d:67:fa:21:ea:e8:00:fe:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Mar 4 00:00:00 2023 GMT
Not After : Mar 7 23:59:59 2023 GMT
Subject: serialNumber=a275c6bf0331349c6d2228f31ff92abfe4b7a926713af0712712abd3521f1307, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:23:2c:8f:dc:43:23:bd:77:57:16:7f:a7:ba:
e1:39:ec:73:7b:ce:bb:85:8e:a2:b0:0b:0f:5c:fa:
e4:96:13:fb:d8:d2:43:a2:46:03:c8:b4:7f:d4:d4:
5c:cf:ba:61:1f:46:04:fb:24:79:13:5c:c7:8e:23:
e3:c3:ed:9e:4b:5a:45:1a:a0:fb:21:e2:98:cd:05:
79:8e:bd:65:de:4f:e2:67:6b:ee:cb:50:e7:0c:2b:
9b:21:27:68:80:6b:0f:39:9c:9e:93:57:4f:34:df:
67:df:b6:0a:a6:99:00:fb:7f:47:e5:ab:df:67:e0:
95:f2:b0:95:5d:ed:dd:23:93:c0:b6:91:f0:b2:ff:
12:71:1f:f5:bf:a1:0b:8d:d0:82:7f:d4:50:2e:15:
52:48:7b:bf:a8:7d:90:9e:95:41:c0:8c:fd:8c:2e:
56:95:4e:7a:27:a7:9c:b1:49:55:73:e5:0c:2d:23:
98:e4:ed:7f:d4:39:ee:5c:c5:4a:d4:e9:10:da:f1:
42:e8:ea:d3:e5:46:60:0e:23:3c:9b:80:94:c3:c3:
1c:17:9c:8b:d1:a2:c4:41:b4:a0:a7:51:3d:e6:bf:
85:69:e8:3a:87:25:6b:62:87:18:b6:19:19:43:b8:
f6:34:5d:90:d3:f7:f5:b2:52:08:7e:8e:cb:93:2b:
07:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:2D:EA:2C:5D:C1:EF:E7:A8:0A:20:F2:43:9A:8D:84:3E:6A:2A:80
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/bda6d4ae-a22d-4d70-af4a-474403d675dc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
38:67:c9:60:5c:6f:50:cd:c9:fe:26:79:97:39:d0:56:39:cc:
09:7e:4c:11:18:c8:b3:6f:f9:b0:5a:b0:dd:4a:b4:b9:a2:74:
28:ee:08:8d:39:20:28:8b:9e:d7:8f:84:45:eb:76:4d:98:47:
06:5c:67:b9:b0:c7:6a:7a:f7:70:5d:82:7c:79:ef:30:2b:cb:
c4:8e:22:be:f7:99:08:1e:97:e8:e1:f6:a6:f7:c0:75:71:aa:
da:a6:96:43:dc:f6:2f:b0:fc:a7:d4:32:d6:31:f8:8d:03:b3:
05:02:e6:34:56:fc:25:2b:7f:68:9b:8b:69:22:c4:d5:27:eb:
2a:46:f7:9c:19:72:94:99:d5:86:aa:6b:9e:b1:42:69:e2:1a:
f4:97:40:15:7d:3a:97:d6:33:00:17:f1:37:37:44:e0:25:23:
e7:ab:70:6a:f4:c0:4e:c2:ef:96:f2:6f:cd:07:89:0a:ac:ab:
10:98:fc:3a:7c:41:d0:bb:28:53:7d:1d:7d:2e:a3:d7:c2:91:
97:af:50:f2:04:45:86:d9:69:c4:95:1f:18:51:c6:85:24:42:
80:f0:e5:5c:27:67:fd:23:fe:5e:9f:c4:56:23:be:4d:47:bf:
b7:17:5c:22:bb:44:89:91:a6:a8:be:1e:94:9a:70:35:45:c9:
ee:2c:f1:31
-----BEGIN CERTIFICATE-----
MIIGMTCCBRmgAwIBAgIUG99de3pILA5UQ8w9Z/oh6ugA/tgwDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyMjc4YWFiODc4ZjI4MzFiYjE4MjNiNTg3OTRiMDkyZDg2
ZmIxZDdhMGY3NGUyODE2MTEwHhcNMjMwMzA0MDAwMDAwWhcNMjMwMzA3MjM1OTU5
WjCBpTFJMEcGA1UEBRNAYTI3NWM2YmYwMzMxMzQ5YzZkMjIyOGYzMWZmOTJhYmZl
NGI3YTkyNjcxM2FmMDcxMjcxMmFiZDM1MjFmMTMwNzEtMCsGA1UEAxMkNmFlNGU1
NjctNjM0OC00YzRmLTk4YTgtMDQyMmM0YzUyZmYzMRQwEgYDVQQLEwtBbWF6b24g
UlBLSTETMBEGA1UEChMKQW1hem9uLmNvbTCCASIwDQYJKoZIhvcNAQEBBQADggEP
ADCCAQoCggEBAKIjLI/cQyO9d1cWf6e64Tnsc3vOu4WOorALD1z65JYT+9jSQ6JG
A8i0f9TUXM+6YR9GBPskeRNcx44j48PtnktaRRqg+yHimM0FeY69Zd5P4mdr7stQ
5wwrmyEnaIBrDzmcnpNXTzTfZ9+2CqaZAPt/R+Wr32fglfKwlV3t3SOTwLaR8LL/
EnEf9b+hC43Qgn/UUC4VUkh7v6h9kJ6VQcCM/YwuVpVOeiennLFJVXPlDC0jmOTt
f9Q57lzFStTpENrxQujq0+VGYA4jPJuAlMPDHBeci9GixEG0oKdRPea/hWnoOocl
a2KHGLYZGUO49jRdkNP39bJSCH6Oy5MrBy0CAwEAAaOCAr4wggK6MB0GA1UdDgQW
BBQ2LeosXcHv56gKIPJDmo2EPmoqgDAfBgNVHSMEGDAWgBSRRO3HpA7pkLf6Nm/2
4X15rcSDlzAOBgNVHQ8BAf8EBAMCB4AwgfMGCCsGAQUFBwEBBIHmMIHjMIHgBggr
BgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2FyaW4t
cnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMvMDM1
NzI3MmMtYTc5YS00NWJmLTk1ODYtOTJkZDQ5ZWYzMjIzLzczZjIxYzJiLTg4MjMt
NGMyNC1iMjViLTQzYzgwY2I2ZDFiYi8yNzhhYWI4NzhmMjgzMWJiMTgyM2I1ODc5
NGIwOTJkODZmYjFkN2EwZjc0ZTI4MTYxMS5jZXIwgZ4GCCsGAQUFBwELBIGRMIGO
MIGLBggrBgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6
b25hd3MuY29tL3ZvbHVtZS9iNjhhMzJlZS00NTVkLTQ4M2EtOTQzZC0xYTViZTc0
OGJmZWEvYmRhNmQ0YWUtYTIyZC00ZDcwLWFmNGEtNDc0NDAzZDY3NWRjLnJvYTCB
lQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I2OGEzMmVlLTQ1NWQtNDgzYS05NDNk
LTFhNWJlNzQ4YmZlYS80YmI4YWU1Yy0xMjRjLTQyZjMtODdmYi00ZjM0ZTc0ZTNk
YTIuY3JsMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8E
EDAOMAwEAgABMAYDBADHJHgwDQYJKoZIhvcNAQELBQADggEBADhnyWBcb1DNyf4m
eZc50FY5zAl+TBEYyLNv+bBasN1KtLmidCjuCI05ICiLntePhEXrdk2YRwZcZ7mw
x2p693Bdgnx57zAry8SOIr73mQgel+jh9qb3wHVxqtqmlkPc9i+w/KfUMtYx+I0D
swUC5jRW/CUrf2ibi2kixNUn6ypG95wZcpSZ1Yaqa56xQmniGvSXQBV9OpfWMwAX
8Tc3ROAlI+ercGr0wE7C75byb80HiQqsqxCY/Dp8QdC7KFN9HX0uo9fCkZevUPIE
RYbZacSVHxhRxoUkQoDw5VwnZ/0j/l6fxFYjvk1Hv7cXXCK7RImRpqi+HpSacDVF
ye4s8TE=
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:50 2023 by rpki-client on console-ams.rpki-client.org