Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/cd2ae4aa-1fe1-433d-9a6d-51dc2e1fdb82.roa
File: cd2ae4aa-1fe1-433d-9a6d-51dc2e1fdb82.roa (raw, json)
Hash identifier: YGgVHnXuSgu9BgPebBIXZr4s2o8ppQWZ9+P3gqvO7g4=
Subject key identifier: 20:92:D6:2C:A4:BF:C9:5C:3C:E9:C5:A3:E6:5B:B5:C1:CC:AF:79:8C
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 3DFFDDBBC617AD8B07AF56B6559E01A83240E747
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/cd2ae4aa-1fe1-433d-9a6d-51dc2e1fdb82.roa
Signing time: Thu 30 Mar 2023 00:00:00 +0000
ROA not before: Thu 30 Mar 2023 00:00:00 +0000
ROA not after: Sun 02 Apr 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3d:ff:dd:bb:c6:17:ad:8b:07:af:56:b6:55:9e:01:a8:32:40:e7:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Mar 30 00:00:00 2023 GMT
Not After : Apr 2 23:59:59 2023 GMT
Subject: serialNumber=81a5162a797666e786e85db7b6933df4d9d6ddbf3533dff42cdea618ad18a1c6, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:12:e1:f3:49:8b:b0:58:55:0d:3c:92:3a:e6:
18:d7:a7:b0:ab:34:d6:7d:1b:85:28:c9:fc:c3:8a:
a5:1b:9d:56:76:0a:a4:46:03:ce:d5:94:92:8b:9b:
67:c8:7f:a4:66:48:cf:e6:4d:17:dc:a0:cd:0a:99:
ca:54:e3:4f:cc:fd:f7:41:20:f3:49:67:78:35:0f:
a4:48:84:cd:c8:56:0f:13:5c:92:86:0f:60:08:f2:
3a:8a:2f:3f:16:39:1b:fb:ab:3b:70:69:a5:0a:c6:
d9:a3:f3:27:86:93:ae:de:9a:16:aa:48:70:00:1f:
26:83:ef:90:0f:af:5b:b1:36:36:2a:51:8f:2d:c2:
52:db:32:4f:cb:42:d4:c9:32:93:9b:be:b3:d8:07:
ba:a9:6a:5f:9e:22:c7:41:79:dd:31:0e:10:65:78:
10:40:60:b4:95:8d:b7:a7:b4:a6:14:d1:fd:b7:bf:
0b:c1:3b:59:7c:c9:f5:3c:be:85:40:15:66:45:5c:
df:06:56:9b:58:55:fd:92:de:3e:20:89:a1:e0:29:
3f:71:4e:a1:01:e3:29:13:fe:e4:71:b6:39:f7:d3:
19:fd:aa:2e:36:45:1b:b6:22:11:b0:83:be:e8:7d:
81:67:53:89:be:72:50:02:6f:d5:d5:99:e3:aa:27:
d0:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:92:D6:2C:A4:BF:C9:5C:3C:E9:C5:A3:E6:5B:B5:C1:CC:AF:79:8C
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/cd2ae4aa-1fe1-433d-9a6d-51dc2e1fdb82.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
50:b7:aa:51:4f:89:50:3c:71:4e:a2:10:4a:c6:b0:6c:45:f1:
f6:4a:c9:6a:a8:d7:a8:eb:30:31:eb:50:d7:9a:2d:c8:9c:d4:
d7:a9:12:9e:bf:75:ba:01:c8:41:53:39:06:ff:e5:54:27:36:
20:c8:fa:f3:06:05:77:f8:b5:8f:ac:cd:9e:45:de:5f:52:32:
99:5d:ad:06:2a:85:91:ea:94:2b:ae:e7:77:86:31:42:d1:01:
fc:27:5f:2b:bc:b5:86:7f:3c:8e:8a:1d:b5:b1:1e:bb:94:00:
be:87:b5:65:19:1d:c2:5e:36:0c:ab:4f:d0:6e:3a:cf:fb:66:
45:e1:8b:4e:b6:3e:49:eb:53:b8:05:c2:bb:59:4b:8e:9f:c4:
54:fe:2f:d8:07:8a:bc:f3:8c:1b:66:ed:f7:b3:82:87:25:58:
ca:10:32:b9:5b:82:3c:c9:15:0c:00:55:f0:ca:e5:b4:c0:1d:
4b:56:0f:46:1e:29:86:ca:17:d0:3d:17:f4:ff:12:8b:92:62:
01:76:8e:e0:d1:16:49:7c:9e:a0:19:56:71:2a:f0:44:ee:cd:
1a:4b:9f:1d:f0:f0:49:50:5f:a0:63:6a:7b:db:3f:25:e8:70:
a4:2c:84:1d:32:8d:28:f6:df:12:b6:de:77:b6:bf:19:21:83:
1c:24:6f:8e
-----BEGIN CERTIFICATE-----
MIIGMTCCBRmgAwIBAgIUPf/du8YXrYsHr1a2VZ4BqDJA50cwDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyMjc4YWFiODc4ZjI4MzFiYjE4MjNiNTg3OTRiMDkyZDg2
ZmIxZDdhMGY3NGUyODE2MTEwHhcNMjMwMzMwMDAwMDAwWhcNMjMwNDAyMjM1OTU5
WjCBpTFJMEcGA1UEBRNAODFhNTE2MmE3OTc2NjZlNzg2ZTg1ZGI3YjY5MzNkZjRk
OWQ2ZGRiZjM1MzNkZmY0MmNkZWE2MThhZDE4YTFjNjEtMCsGA1UEAxMkNmFlNGU1
NjctNjM0OC00YzRmLTk4YTgtMDQyMmM0YzUyZmYzMRQwEgYDVQQLEwtBbWF6b24g
UlBLSTETMBEGA1UEChMKQW1hem9uLmNvbTCCASIwDQYJKoZIhvcNAQEBBQADggEP
ADCCAQoCggEBALkS4fNJi7BYVQ08kjrmGNensKs01n0bhSjJ/MOKpRudVnYKpEYD
ztWUkoubZ8h/pGZIz+ZNF9ygzQqZylTjT8z990Eg80lneDUPpEiEzchWDxNckoYP
YAjyOoovPxY5G/urO3BppQrG2aPzJ4aTrt6aFqpIcAAfJoPvkA+vW7E2NipRjy3C
UtsyT8tC1Mkyk5u+s9gHuqlqX54ix0F53TEOEGV4EEBgtJWNt6e0phTR/be/C8E7
WXzJ9Ty+hUAVZkVc3wZWm1hV/ZLePiCJoeApP3FOoQHjKRP+5HG2OffTGf2qLjZF
G7YiEbCDvuh9gWdTib5yUAJv1dWZ46on0NMCAwEAAaOCAr4wggK6MB0GA1UdDgQW
BBQgktYspL/JXDzpxaPmW7XBzK95jDAfBgNVHSMEGDAWgBSRRO3HpA7pkLf6Nm/2
4X15rcSDlzAOBgNVHQ8BAf8EBAMCB4AwgfMGCCsGAQUFBwEBBIHmMIHjMIHgBggr
BgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2FyaW4t
cnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMvMDM1
NzI3MmMtYTc5YS00NWJmLTk1ODYtOTJkZDQ5ZWYzMjIzLzczZjIxYzJiLTg4MjMt
NGMyNC1iMjViLTQzYzgwY2I2ZDFiYi8yNzhhYWI4NzhmMjgzMWJiMTgyM2I1ODc5
NGIwOTJkODZmYjFkN2EwZjc0ZTI4MTYxMS5jZXIwgZ4GCCsGAQUFBwELBIGRMIGO
MIGLBggrBgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6
b25hd3MuY29tL3ZvbHVtZS9iNjhhMzJlZS00NTVkLTQ4M2EtOTQzZC0xYTViZTc0
OGJmZWEvY2QyYWU0YWEtMWZlMS00MzNkLTlhNmQtNTFkYzJlMWZkYjgyLnJvYTCB
lQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I2OGEzMmVlLTQ1NWQtNDgzYS05NDNk
LTFhNWJlNzQ4YmZlYS80YmI4YWU1Yy0xMjRjLTQyZjMtODdmYi00ZjM0ZTc0ZTNk
YTIuY3JsMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8E
EDAOMAwEAgABMAYDBADHJHgwDQYJKoZIhvcNAQELBQADggEBAFC3qlFPiVA8cU6i
EErGsGxF8fZKyWqo16jrMDHrUNeaLcic1NepEp6/dboByEFTOQb/5VQnNiDI+vMG
BXf4tY+szZ5F3l9SMpldrQYqhZHqlCuu53eGMULRAfwnXyu8tYZ/PI6KHbWxHruU
AL6HtWUZHcJeNgyrT9BuOs/7ZkXhi062PknrU7gFwrtZS46fxFT+L9gHirzzjBtm
7fezgoclWMoQMrlbgjzJFQwAVfDK5bTAHUtWD0YeKYbKF9A9F/T/EouSYgF2juDR
Fkl8nqAZVnEq8ETuzRpLnx3w8ElQX6BjanvbPyXocKQshB0yjSj23xK23ne2vxkh
gxwkb44=
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:53 2023 by rpki-client on console-fra.rpki-client.org