Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/caa923d0-fea2-419b-b588-2f828003917b.roa
File: caa923d0-fea2-419b-b588-2f828003917b.roa (raw, json)
Hash identifier: NZlmzPFjvMbZ9skEIUNPrzesnueWYh+PSlXhrhKscLA=
Subject key identifier: B7:91:E2:CA:10:20:E3:94:C1:FD:91:D9:18:48:BE:02:74:9A:FA:89
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 25887F567350D68B91EF2CB38C69275D64043DCA
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/caa923d0-fea2-419b-b588-2f828003917b.roa
Signing time: Mon 13 Feb 2023 00:00:00 +0000
ROA not before: Mon 13 Feb 2023 00:00:00 +0000
ROA not after: Thu 16 Feb 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
25:88:7f:56:73:50:d6:8b:91:ef:2c:b3:8c:69:27:5d:64:04:3d:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Feb 13 00:00:00 2023 GMT
Not After : Feb 16 23:59:59 2023 GMT
Subject: serialNumber=01b41a612635f1b5107d911a94054b3f002c8d7c5a3452fe33e2cb7d0e2a7ff1, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:3d:46:ed:af:0b:8d:d7:e2:65:8c:60:63:ad:
10:66:87:2a:6a:8d:cd:02:2f:f5:2b:14:8f:b4:f3:
42:d3:26:51:f4:43:b8:e1:90:14:44:20:f7:7c:6a:
c8:ae:d6:21:01:d9:bd:3c:b3:54:82:8a:16:cb:24:
85:2c:8e:6e:1f:ef:e9:87:d9:78:94:ad:17:20:3a:
47:a9:b1:85:29:4b:44:8e:d2:e3:5e:00:70:90:dd:
7b:18:be:83:76:88:1d:3f:88:21:4e:ab:08:de:df:
fe:9a:e1:02:57:98:1d:db:b2:c7:99:d6:e1:c8:3b:
f1:f5:15:fb:02:5d:bf:e1:93:a5:76:86:47:39:22:
52:bb:20:58:8d:43:f9:3d:77:5d:bd:4e:e8:61:86:
08:b5:66:d6:64:73:3a:91:2a:38:02:40:06:fc:72:
32:66:f8:9c:1c:24:a4:eb:4e:e9:d7:ff:f2:c0:e5:
38:64:ad:18:41:3f:fe:7e:77:bb:ea:07:bc:79:a7:
3f:26:43:35:d0:de:a5:ef:2e:83:fc:f7:75:46:5d:
4f:e5:dd:07:f7:06:41:62:7a:ae:01:13:93:25:3f:
e3:87:8c:ce:01:66:e0:14:9d:0d:a2:13:4c:c7:b5:
5c:c9:a1:98:73:23:1f:2a:2c:87:06:55:83:63:a6:
34:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:91:E2:CA:10:20:E3:94:C1:FD:91:D9:18:48:BE:02:74:9A:FA:89
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/caa923d0-fea2-419b-b588-2f828003917b.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
5b:51:75:fa:1a:dd:84:c9:22:6b:c2:b6:51:0e:3e:04:82:db:
92:0e:4c:0f:92:2e:35:03:98:99:19:08:e9:8a:65:90:47:4a:
2b:b0:86:0d:dd:3e:fa:08:e5:ec:c5:55:58:86:a4:33:ff:54:
9b:a4:00:0c:52:fc:67:79:10:77:ea:7f:95:ec:ac:e1:d4:29:
43:ad:82:aa:a9:94:ee:59:6b:4d:6d:39:25:7b:d7:be:4f:e3:
b2:b2:f5:79:ea:a5:42:1b:82:51:8f:37:42:03:a0:c1:f0:33:
cf:70:9d:98:94:80:79:a1:22:66:06:b2:ef:1a:ba:fe:fe:fb:
ab:1c:49:95:4a:1f:70:a6:3e:7b:bd:0b:8b:60:b9:ca:14:9e:
23:b7:27:96:ab:11:d6:7d:91:e4:26:d7:e8:ee:d2:9b:a8:06:
a1:5c:33:ad:54:ee:1f:42:da:f3:38:6b:fa:24:a6:07:00:e8:
86:81:3c:6f:3c:0f:9e:30:df:03:52:a5:5f:e2:dd:0a:bd:c6:
91:d6:cd:b8:7b:03:0e:2e:23:16:e4:83:ec:63:f7:49:2c:c9:
a6:90:97:38:e8:ad:00:c5:ce:e4:e3:87:cb:ba:a8:fd:ec:0e:
47:59:30:73:e0:bd:3c:dc:24:6a:f1:4c:c9:69:f2:3b:fb:c3:
b9:5f:0b:09
-----BEGIN CERTIFICATE-----
MIIGMTCCBRmgAwIBAgIUJYh/VnNQ1ouR7yyzjGknXWQEPcowDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyMjc4YWFiODc4ZjI4MzFiYjE4MjNiNTg3OTRiMDkyZDg2
ZmIxZDdhMGY3NGUyODE2MTEwHhcNMjMwMjEzMDAwMDAwWhcNMjMwMjE2MjM1OTU5
WjCBpTFJMEcGA1UEBRNAMDFiNDFhNjEyNjM1ZjFiNTEwN2Q5MTFhOTQwNTRiM2Yw
MDJjOGQ3YzVhMzQ1MmZlMzNlMmNiN2QwZTJhN2ZmMTEtMCsGA1UEAxMkNmFlNGU1
NjctNjM0OC00YzRmLTk4YTgtMDQyMmM0YzUyZmYzMRQwEgYDVQQLEwtBbWF6b24g
UlBLSTETMBEGA1UEChMKQW1hem9uLmNvbTCCASIwDQYJKoZIhvcNAQEBBQADggEP
ADCCAQoCggEBAM09Ru2vC43X4mWMYGOtEGaHKmqNzQIv9SsUj7TzQtMmUfRDuOGQ
FEQg93xqyK7WIQHZvTyzVIKKFsskhSyObh/v6YfZeJStFyA6R6mxhSlLRI7S414A
cJDdexi+g3aIHT+IIU6rCN7f/prhAleYHduyx5nW4cg78fUV+wJdv+GTpXaGRzki
UrsgWI1D+T13Xb1O6GGGCLVm1mRzOpEqOAJABvxyMmb4nBwkpOtO6df/8sDlOGSt
GEE//n53u+oHvHmnPyZDNdDepe8ug/z3dUZdT+XdB/cGQWJ6rgETkyU/44eMzgFm
4BSdDaITTMe1XMmhmHMjHyoshwZVg2OmNJ0CAwEAAaOCAr4wggK6MB0GA1UdDgQW
BBS3keLKECDjlMH9kdkYSL4CdJr6iTAfBgNVHSMEGDAWgBSRRO3HpA7pkLf6Nm/2
4X15rcSDlzAOBgNVHQ8BAf8EBAMCB4AwgfMGCCsGAQUFBwEBBIHmMIHjMIHgBggr
BgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2FyaW4t
cnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMvMDM1
NzI3MmMtYTc5YS00NWJmLTk1ODYtOTJkZDQ5ZWYzMjIzLzczZjIxYzJiLTg4MjMt
NGMyNC1iMjViLTQzYzgwY2I2ZDFiYi8yNzhhYWI4NzhmMjgzMWJiMTgyM2I1ODc5
NGIwOTJkODZmYjFkN2EwZjc0ZTI4MTYxMS5jZXIwgZ4GCCsGAQUFBwELBIGRMIGO
MIGLBggrBgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6
b25hd3MuY29tL3ZvbHVtZS9iNjhhMzJlZS00NTVkLTQ4M2EtOTQzZC0xYTViZTc0
OGJmZWEvY2FhOTIzZDAtZmVhMi00MTliLWI1ODgtMmY4MjgwMDM5MTdiLnJvYTCB
lQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I2OGEzMmVlLTQ1NWQtNDgzYS05NDNk
LTFhNWJlNzQ4YmZlYS80YmI4YWU1Yy0xMjRjLTQyZjMtODdmYi00ZjM0ZTc0ZTNk
YTIuY3JsMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8E
EDAOMAwEAgABMAYDBADHJHgwDQYJKoZIhvcNAQELBQADggEBAFtRdfoa3YTJImvC
tlEOPgSC25IOTA+SLjUDmJkZCOmKZZBHSiuwhg3dPvoI5ezFVViGpDP/VJukAAxS
/Gd5EHfqf5XsrOHUKUOtgqqplO5Za01tOSV7175P47Ky9XnqpUIbglGPN0IDoMHw
M89wnZiUgHmhImYGsu8auv7++6scSZVKH3CmPnu9C4tgucoUniO3J5arEdZ9keQm
1+ju0puoBqFcM61U7h9C2vM4a/okpgcA6IaBPG88D54w3wNSpV/i3Qq9xpHWzbh7
Aw4uIxbkg+xj90ksyaaQlzjorQDFzuTjh8u6qP3sDkdZMHPgvTzcJGrxTMlp8jv7
w7lfCwk=
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:53 2023 by rpki-client on console-fra.rpki-client.org