Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/d5fab380-443d-48b5-8b27-f26bb8e86b6f.roa
File: d5fab380-443d-48b5-8b27-f26bb8e86b6f.roa (raw, json)
Hash identifier: EgDwyXSiR3T5WuNBPHfDtCA5zazAA2RLjdewPjcknAo=
Subject key identifier: BE:AA:84:16:4C:DE:F6:4C:CE:0F:F3:2B:80:30:6D:1A:B6:F4:93:2A
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 52D6FA09DAF22023A1323C1FC40685D0A2D2EFD3
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/d5fab380-443d-48b5-8b27-f26bb8e86b6f.roa
Signing time: Thu 02 Mar 2023 00:00:00 +0000
ROA not before: Thu 02 Mar 2023 00:00:00 +0000
ROA not after: Sun 05 Mar 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
52:d6:fa:09:da:f2:20:23:a1:32:3c:1f:c4:06:85:d0:a2:d2:ef:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Mar 2 00:00:00 2023 GMT
Not After : Mar 5 23:59:59 2023 GMT
Subject: serialNumber=185d9b27f46cadc96e11cf07d60d5844ec91187912141ae753495761278fec22, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:22:b0:8a:f4:db:a6:14:dc:d1:c3:ac:62:21:
d8:14:a6:c3:3f:43:7b:73:4b:7f:e0:7e:c4:39:2e:
cf:b2:24:e5:6b:f4:e4:a8:56:9b:0b:1d:08:a1:7f:
bf:7b:eb:a3:d1:cd:a2:d5:e6:6e:9b:27:e4:6b:04:
b6:07:94:0e:b1:6d:ca:06:62:ef:d0:78:19:9c:41:
e2:cd:5d:df:4d:0b:51:9b:a1:4d:1e:01:87:a8:b2:
e1:84:30:39:78:e3:d1:12:00:da:a3:d7:0d:e1:e5:
ff:6c:77:46:f7:a5:0c:c8:70:29:ea:80:02:22:f0:
81:54:4b:52:07:a4:e5:66:af:ca:75:45:15:d5:89:
2d:d7:ee:57:70:14:c5:3e:2b:07:a4:ae:b3:8a:f1:
65:48:ac:2c:8e:5e:21:81:1b:30:f0:1a:cb:00:06:
9f:5b:b5:6e:0e:f0:2d:40:db:6e:39:09:57:a1:8c:
6c:1f:1e:4b:c4:99:c6:1d:00:de:5a:81:03:3f:61:
80:57:7c:99:16:98:6b:fa:01:1b:0e:a7:06:32:cf:
ad:ed:91:a6:3b:eb:11:7b:d5:31:b4:49:87:91:e3:
10:4f:26:b8:8b:36:7c:05:24:e9:75:2d:93:d5:72:
06:40:94:eb:a4:42:91:df:45:42:b4:97:f2:b8:e7:
0e:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:AA:84:16:4C:DE:F6:4C:CE:0F:F3:2B:80:30:6D:1A:B6:F4:93:2A
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/d5fab380-443d-48b5-8b27-f26bb8e86b6f.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
63:50:98:a9:c4:aa:71:40:06:d6:8c:2c:59:b1:8c:74:c2:4a:
68:9c:72:ae:c5:6b:04:26:6b:3d:cc:06:9d:48:1d:16:b7:71:
4f:da:60:a7:f4:25:ea:c8:1c:70:90:2a:22:2d:99:5b:84:f0:
99:cc:f7:29:cc:24:ca:9c:08:d4:61:f8:e4:a3:6f:16:fe:60:
00:e2:3f:20:ca:1e:4d:01:83:e7:3a:8b:eb:c2:f4:ae:11:a7:
e1:eb:9d:c7:e1:75:3f:55:b7:ef:59:e7:c7:3b:8c:e6:66:0f:
33:c4:e0:a2:f4:35:7b:ee:a4:11:59:10:b5:4f:09:0f:1f:84:
12:d9:95:11:44:1c:8a:e4:c2:8c:4d:6e:bd:69:35:93:6f:83:
9f:42:ec:f0:11:92:98:e9:b6:27:f0:ce:03:49:c7:c3:0f:da:
8f:d0:a7:7a:66:72:77:2f:fe:8c:5d:d5:72:79:8f:30:8b:02:
15:ab:08:2e:57:40:9f:8a:70:db:01:4a:43:5c:ef:9c:76:0a:
b6:8e:73:66:e0:e2:19:94:49:49:b9:60:8c:36:6b:7e:bf:08:
84:5d:42:9b:76:8a:7b:d4:1e:f8:b7:b8:d7:1f:64:1c:71:c6:
2a:93:d3:81:9c:83:49:84:3b:32:be:f9:0b:6e:1e:e1:dc:85:
0a:74:55:64
-----BEGIN CERTIFICATE-----
MIIGMTCCBRmgAwIBAgIUUtb6CdryICOhMjwfxAaF0KLS79MwDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyMjc4YWFiODc4ZjI4MzFiYjE4MjNiNTg3OTRiMDkyZDg2
ZmIxZDdhMGY3NGUyODE2MTEwHhcNMjMwMzAyMDAwMDAwWhcNMjMwMzA1MjM1OTU5
WjCBpTFJMEcGA1UEBRNAMTg1ZDliMjdmNDZjYWRjOTZlMTFjZjA3ZDYwZDU4NDRl
YzkxMTg3OTEyMTQxYWU3NTM0OTU3NjEyNzhmZWMyMjEtMCsGA1UEAxMkNmFlNGU1
NjctNjM0OC00YzRmLTk4YTgtMDQyMmM0YzUyZmYzMRQwEgYDVQQLEwtBbWF6b24g
UlBLSTETMBEGA1UEChMKQW1hem9uLmNvbTCCASIwDQYJKoZIhvcNAQEBBQADggEP
ADCCAQoCggEBAJ0isIr026YU3NHDrGIh2BSmwz9De3NLf+B+xDkuz7Ik5Wv05KhW
mwsdCKF/v3vro9HNotXmbpsn5GsEtgeUDrFtygZi79B4GZxB4s1d300LUZuhTR4B
h6iy4YQwOXjj0RIA2qPXDeHl/2x3RvelDMhwKeqAAiLwgVRLUgek5WavynVFFdWJ
LdfuV3AUxT4rB6Sus4rxZUisLI5eIYEbMPAaywAGn1u1bg7wLUDbbjkJV6GMbB8e
S8SZxh0A3lqBAz9hgFd8mRaYa/oBGw6nBjLPre2RpjvrEXvVMbRJh5HjEE8muIs2
fAUk6XUtk9VyBkCU66RCkd9FQrSX8rjnDh8CAwEAAaOCAr4wggK6MB0GA1UdDgQW
BBS+qoQWTN72TM4P8yuAMG0atvSTKjAfBgNVHSMEGDAWgBSRRO3HpA7pkLf6Nm/2
4X15rcSDlzAOBgNVHQ8BAf8EBAMCB4AwgfMGCCsGAQUFBwEBBIHmMIHjMIHgBggr
BgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2FyaW4t
cnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMvMDM1
NzI3MmMtYTc5YS00NWJmLTk1ODYtOTJkZDQ5ZWYzMjIzLzczZjIxYzJiLTg4MjMt
NGMyNC1iMjViLTQzYzgwY2I2ZDFiYi8yNzhhYWI4NzhmMjgzMWJiMTgyM2I1ODc5
NGIwOTJkODZmYjFkN2EwZjc0ZTI4MTYxMS5jZXIwgZ4GCCsGAQUFBwELBIGRMIGO
MIGLBggrBgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6
b25hd3MuY29tL3ZvbHVtZS9iNjhhMzJlZS00NTVkLTQ4M2EtOTQzZC0xYTViZTc0
OGJmZWEvZDVmYWIzODAtNDQzZC00OGI1LThiMjctZjI2YmI4ZTg2YjZmLnJvYTCB
lQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I2OGEzMmVlLTQ1NWQtNDgzYS05NDNk
LTFhNWJlNzQ4YmZlYS80YmI4YWU1Yy0xMjRjLTQyZjMtODdmYi00ZjM0ZTc0ZTNk
YTIuY3JsMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8E
EDAOMAwEAgABMAYDBADHJHgwDQYJKoZIhvcNAQELBQADggEBAGNQmKnEqnFABtaM
LFmxjHTCSmiccq7FawQmaz3MBp1IHRa3cU/aYKf0JerIHHCQKiItmVuE8JnM9ynM
JMqcCNRh+OSjbxb+YADiPyDKHk0Bg+c6i+vC9K4Rp+HrncfhdT9Vt+9Z58c7jOZm
DzPE4KL0NXvupBFZELVPCQ8fhBLZlRFEHIrkwoxNbr1pNZNvg59C7PARkpjptifw
zgNJx8MP2o/Qp3pmcncv/oxd1XJ5jzCLAhWrCC5XQJ+KcNsBSkNc75x2CraOc2bg
4hmUSUm5YIw2a36/CIRdQpt2invUHvi3uNcfZBxxxiqT04Gcg0mEOzK++QtuHuHc
hQp0VWQ=
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:51 2023 by rpki-client on console-ams.rpki-client.org