Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/cb35f1eb-8642-43dd-8ce1-91fb4b0672b5.roa
File: cb35f1eb-8642-43dd-8ce1-91fb4b0672b5.roa (raw, json)
Hash identifier: QetVnG83hSdIjFqHRSGk5tsCKRvcQcpMGM+DEUdckn0=
Subject key identifier: 75:36:87:DA:C0:63:7F:02:38:24:53:9D:7A:A5:6A:ED:37:7E:AF:BE
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 0EC61296FBC6ADF6D5E0FB695F3EBAEE14F0F395
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/cb35f1eb-8642-43dd-8ce1-91fb4b0672b5.roa
Signing time: Fri 10 Mar 2023 00:00:00 +0000
ROA not before: Fri 10 Mar 2023 00:00:00 +0000
ROA not after: Mon 13 Mar 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0e:c6:12:96:fb:c6:ad:f6:d5:e0:fb:69:5f:3e:ba:ee:14:f0:f3:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Mar 10 00:00:00 2023 GMT
Not After : Mar 13 23:59:59 2023 GMT
Subject: serialNumber=2d278d061201d6d28b3785a5026ccf61af1e9803441441540e7951d1e7b28971, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:af:06:4b:ec:73:e7:d1:48:a9:6e:bb:6b:63:
4a:3b:fc:32:fa:73:87:93:73:13:a7:48:b1:0e:7e:
1a:64:ff:dc:9b:eb:8f:72:41:4f:04:95:69:43:7c:
7a:3a:ee:84:1b:af:58:71:db:88:fd:3f:e4:a5:4d:
f8:a2:a5:76:68:ff:a6:c7:f1:9f:1c:0a:23:00:10:
bf:da:65:6e:1e:60:7f:ef:91:b1:46:cd:54:0e:24:
a4:f1:1b:d3:5a:14:1d:f6:57:75:68:1e:c5:7e:39:
df:11:5b:d1:9f:a0:25:75:20:75:51:3a:15:6e:a0:
09:bb:26:32:bd:b0:83:f7:fa:0b:57:df:0c:21:dd:
80:2d:12:5a:aa:59:b7:65:f4:22:e7:21:04:b1:26:
28:03:c2:f0:24:a1:4f:9d:77:ef:e5:dd:0b:3d:22:
65:af:86:28:3d:cf:25:85:cd:0d:7c:2b:f1:00:01:
1d:10:86:e6:e5:7b:4c:7f:0b:e0:69:5a:58:ef:17:
79:fd:c0:f4:78:aa:bb:af:d2:7a:e1:52:eb:a1:c4:
f6:9b:61:b6:07:54:f3:17:a8:75:99:53:f1:c4:e7:
dc:b5:8b:1e:d6:6b:48:d2:6a:8e:15:bd:58:96:3b:
ed:85:18:d7:e1:31:2d:05:36:bf:4c:9e:c4:02:be:
0f:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:36:87:DA:C0:63:7F:02:38:24:53:9D:7A:A5:6A:ED:37:7E:AF:BE
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/cb35f1eb-8642-43dd-8ce1-91fb4b0672b5.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
7e:bf:61:92:7d:26:02:a2:72:dd:81:40:c6:80:70:f8:cc:93:
1d:32:35:1d:7e:83:4b:2f:cd:37:9f:42:08:de:db:6b:5b:4e:
d7:4f:d9:d7:5c:40:84:34:78:d8:2a:c3:58:c0:14:8b:75:67:
52:93:b3:31:56:bc:20:05:04:92:a6:6d:43:6d:c2:cd:d9:cb:
23:68:5d:82:f3:de:84:85:44:77:0c:1c:06:8b:09:54:b4:77:
94:6f:72:23:bf:f8:67:5a:bc:4b:fd:18:ed:43:9d:fb:69:49:
fd:e7:a6:71:f1:ee:66:fd:21:e2:38:2a:4b:ca:fb:58:09:00:
ca:f8:c5:d5:4f:6b:8b:40:a3:7b:fb:ac:e2:09:19:f3:d9:f7:
bb:a1:10:30:1c:9d:31:a3:b3:4c:86:37:b7:ca:2c:27:16:1e:
cc:31:61:cd:58:61:0b:c2:93:a2:14:19:8a:ca:2e:6a:88:9a:
9f:ba:a7:7d:9e:7a:67:77:80:27:06:f4:eb:17:8e:24:16:c3:
f1:90:9b:e5:ab:0a:54:c4:07:48:5a:e8:02:bd:a6:e5:5c:fd:
4c:e3:a9:b4:58:de:b1:b7:24:eb:e1:2d:55:90:17:af:ed:1d:
94:5c:48:0d:1b:b5:11:e1:a4:43:38:37:d2:31:78:9a:f1:6d:
2f:30:48:46
-----BEGIN CERTIFICATE-----
MIIGMTCCBRmgAwIBAgIUDsYSlvvGrfbV4PtpXz667hTw85UwDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyMjc4YWFiODc4ZjI4MzFiYjE4MjNiNTg3OTRiMDkyZDg2
ZmIxZDdhMGY3NGUyODE2MTEwHhcNMjMwMzEwMDAwMDAwWhcNMjMwMzEzMjM1OTU5
WjCBpTFJMEcGA1UEBRNAMmQyNzhkMDYxMjAxZDZkMjhiMzc4NWE1MDI2Y2NmNjFh
ZjFlOTgwMzQ0MTQ0MTU0MGU3OTUxZDFlN2IyODk3MTEtMCsGA1UEAxMkNmFlNGU1
NjctNjM0OC00YzRmLTk4YTgtMDQyMmM0YzUyZmYzMRQwEgYDVQQLEwtBbWF6b24g
UlBLSTETMBEGA1UEChMKQW1hem9uLmNvbTCCASIwDQYJKoZIhvcNAQEBBQADggEP
ADCCAQoCggEBAJWvBkvsc+fRSKluu2tjSjv8Mvpzh5NzE6dIsQ5+GmT/3Jvrj3JB
TwSVaUN8ejruhBuvWHHbiP0/5KVN+KKldmj/psfxnxwKIwAQv9plbh5gf++RsUbN
VA4kpPEb01oUHfZXdWgexX453xFb0Z+gJXUgdVE6FW6gCbsmMr2wg/f6C1ffDCHd
gC0SWqpZt2X0IuchBLEmKAPC8CShT5137+XdCz0iZa+GKD3PJYXNDXwr8QABHRCG
5uV7TH8L4GlaWO8Xef3A9Hiqu6/SeuFS66HE9pthtgdU8xeodZlT8cTn3LWLHtZr
SNJqjhW9WJY77YUY1+ExLQU2v0yexAK+DzUCAwEAAaOCAr4wggK6MB0GA1UdDgQW
BBR1NofawGN/AjgkU516pWrtN36vvjAfBgNVHSMEGDAWgBSRRO3HpA7pkLf6Nm/2
4X15rcSDlzAOBgNVHQ8BAf8EBAMCB4AwgfMGCCsGAQUFBwEBBIHmMIHjMIHgBggr
BgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2FyaW4t
cnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMvMDM1
NzI3MmMtYTc5YS00NWJmLTk1ODYtOTJkZDQ5ZWYzMjIzLzczZjIxYzJiLTg4MjMt
NGMyNC1iMjViLTQzYzgwY2I2ZDFiYi8yNzhhYWI4NzhmMjgzMWJiMTgyM2I1ODc5
NGIwOTJkODZmYjFkN2EwZjc0ZTI4MTYxMS5jZXIwgZ4GCCsGAQUFBwELBIGRMIGO
MIGLBggrBgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6
b25hd3MuY29tL3ZvbHVtZS9iNjhhMzJlZS00NTVkLTQ4M2EtOTQzZC0xYTViZTc0
OGJmZWEvY2IzNWYxZWItODY0Mi00M2RkLThjZTEtOTFmYjRiMDY3MmI1LnJvYTCB
lQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I2OGEzMmVlLTQ1NWQtNDgzYS05NDNk
LTFhNWJlNzQ4YmZlYS80YmI4YWU1Yy0xMjRjLTQyZjMtODdmYi00ZjM0ZTc0ZTNk
YTIuY3JsMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8E
EDAOMAwEAgABMAYDBADHJHgwDQYJKoZIhvcNAQELBQADggEBAH6/YZJ9JgKict2B
QMaAcPjMkx0yNR1+g0svzTefQgje22tbTtdP2ddcQIQ0eNgqw1jAFIt1Z1KTszFW
vCAFBJKmbUNtws3ZyyNoXYLz3oSFRHcMHAaLCVS0d5RvciO/+GdavEv9GO1Dnftp
Sf3npnHx7mb9IeI4KkvK+1gJAMr4xdVPa4tAo3v7rOIJGfPZ97uhEDAcnTGjs0yG
N7fKLCcWHswxYc1YYQvCk6IUGYrKLmqImp+6p32eemd3gCcG9OsXjiQWw/GQm+Wr
ClTEB0ha6AK9puVc/UzjqbRY3rG3JOvhLVWQF6/tHZRcSA0btRHhpEM4N9IxeJrx
bS8wSEY=
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:53 2023 by rpki-client on console-fra.rpki-client.org