Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/dfd04d67-04c1-4d13-a839-c3ad54f40ac9.roa
File: dfd04d67-04c1-4d13-a839-c3ad54f40ac9.roa (raw, json)
Hash identifier: nzIRmQJlj/yyVrfunbP0TtKaWkYs3kBpHbPJ28B946Q=
Subject key identifier: 8B:0D:4E:F2:D4:1A:85:23:10:45:85:0A:FB:58:05:B9:2D:35:64:AB
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 5447097903833334623B670DD589283A4CD730D3
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/dfd04d67-04c1-4d13-a839-c3ad54f40ac9.roa
Signing time: Sat 18 Feb 2023 00:00:00 +0000
ROA not before: Sat 18 Feb 2023 00:00:00 +0000
ROA not after: Tue 21 Feb 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
54:47:09:79:03:83:33:34:62:3b:67:0d:d5:89:28:3a:4c:d7:30:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Feb 18 00:00:00 2023 GMT
Not After : Feb 21 23:59:59 2023 GMT
Subject: serialNumber=889d9ffc602636adabbc5c2ffab29358114a9ea075e735f81bae40c0feea5b3d, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:58:e9:13:c2:06:e5:c8:b1:aa:f1:9e:e0:cb:
fc:29:6f:fb:6e:21:b9:36:88:e9:5f:a9:15:27:c5:
17:df:c4:72:4c:d7:e6:ab:db:91:ec:68:c6:6d:91:
7a:ff:2d:52:46:c0:3f:36:b2:9f:59:b0:bf:7a:3d:
20:de:30:a1:a7:6b:aa:a5:99:a4:68:d0:92:ea:d9:
2e:23:df:5d:64:26:b2:cc:fb:e2:87:29:3c:fb:d7:
5d:88:85:fb:1f:5b:b7:b6:c5:ce:4c:5e:13:0d:d0:
23:df:9b:26:03:5b:62:2f:2e:5f:08:56:83:c1:fe:
4f:be:10:49:ce:be:d1:de:4d:b6:79:a0:a3:d4:a1:
e9:a9:d2:73:20:48:d3:2f:31:5f:d5:2b:c9:33:0c:
ad:40:05:e3:ea:c1:84:5e:cb:5e:ca:9a:13:1a:ba:
4d:22:18:52:d7:dc:02:8d:39:06:81:25:c4:09:89:
d2:0d:66:d4:8d:f4:a6:ed:24:6d:0a:91:26:3a:bd:
50:68:b4:ef:fa:a6:f4:8b:d6:d7:6f:83:9b:9b:9b:
1d:84:66:ca:42:06:97:6a:f3:5e:24:19:b4:b1:4a:
57:c7:3b:a7:be:c2:e0:d7:d1:06:c1:e2:87:ea:58:
4e:bf:7e:27:11:6a:91:27:75:db:61:55:db:99:de:
5a:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:0D:4E:F2:D4:1A:85:23:10:45:85:0A:FB:58:05:B9:2D:35:64:AB
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/dfd04d67-04c1-4d13-a839-c3ad54f40ac9.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
42:e2:7d:63:94:a5:ff:bd:97:b8:0f:16:b8:4e:e4:45:e2:31:
4b:3b:0e:61:c7:3b:33:78:b9:fd:e9:3f:04:33:75:58:a5:42:
b8:5a:f8:fe:f5:e6:f5:7d:4b:20:3a:eb:a1:32:5a:45:6f:3d:
ea:62:a1:cd:e5:f2:1b:7e:30:a7:53:c4:a1:b8:54:c8:9b:3c:
7d:de:8f:c8:e9:a5:05:8d:c8:9b:26:99:be:cb:fd:0d:90:f1:
87:f8:6c:79:af:c4:06:e7:7d:df:71:0b:08:be:cc:b9:87:a9:
99:c7:c2:fe:8b:bd:ea:a1:d0:14:c7:4d:85:2c:fe:18:45:97:
46:ac:66:53:72:6f:d1:0d:b3:cf:68:66:f0:74:8f:5c:17:66:
bc:b7:ed:3b:37:4a:a8:0d:74:f4:1c:8f:6f:f5:1d:b0:97:f2:
d4:a0:1a:3e:2b:0d:eb:1e:af:1e:cc:bf:88:d6:82:a4:11:80:
e1:0b:41:a9:da:c3:2a:75:57:70:ff:d9:92:ab:23:58:5e:04:
20:67:60:51:fc:44:12:69:7e:2a:64:82:4e:1a:fc:50:3d:8d:
87:5a:45:9c:09:14:f9:4b:5c:76:66:7c:0a:85:5a:b9:4c:30:
de:35:a6:d6:0b:5d:4d:78:4e:f0:59:99:42:63:59:4a:1b:e1:
97:7b:12:78
-----BEGIN CERTIFICATE-----
MIIGMTCCBRmgAwIBAgIUVEcJeQODMzRiO2cN1YkoOkzXMNMwDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyMjc4YWFiODc4ZjI4MzFiYjE4MjNiNTg3OTRiMDkyZDg2
ZmIxZDdhMGY3NGUyODE2MTEwHhcNMjMwMjE4MDAwMDAwWhcNMjMwMjIxMjM1OTU5
WjCBpTFJMEcGA1UEBRNAODg5ZDlmZmM2MDI2MzZhZGFiYmM1YzJmZmFiMjkzNTgx
MTRhOWVhMDc1ZTczNWY4MWJhZTQwYzBmZWVhNWIzZDEtMCsGA1UEAxMkNmFlNGU1
NjctNjM0OC00YzRmLTk4YTgtMDQyMmM0YzUyZmYzMRQwEgYDVQQLEwtBbWF6b24g
UlBLSTETMBEGA1UEChMKQW1hem9uLmNvbTCCASIwDQYJKoZIhvcNAQEBBQADggEP
ADCCAQoCggEBAMxY6RPCBuXIsarxnuDL/Clv+24huTaI6V+pFSfFF9/EckzX5qvb
kexoxm2Rev8tUkbAPzayn1mwv3o9IN4woadrqqWZpGjQkurZLiPfXWQmssz74ocp
PPvXXYiF+x9bt7bFzkxeEw3QI9+bJgNbYi8uXwhWg8H+T74QSc6+0d5Ntnmgo9Sh
6anScyBI0y8xX9UryTMMrUAF4+rBhF7LXsqaExq6TSIYUtfcAo05BoElxAmJ0g1m
1I30pu0kbQqRJjq9UGi07/qm9IvW12+Dm5ubHYRmykIGl2rzXiQZtLFKV8c7p77C
4NfRBsHih+pYTr9+JxFqkSd122FV25neWoMCAwEAAaOCAr4wggK6MB0GA1UdDgQW
BBSLDU7y1BqFIxBFhQr7WAW5LTVkqzAfBgNVHSMEGDAWgBSRRO3HpA7pkLf6Nm/2
4X15rcSDlzAOBgNVHQ8BAf8EBAMCB4AwgfMGCCsGAQUFBwEBBIHmMIHjMIHgBggr
BgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2FyaW4t
cnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMvMDM1
NzI3MmMtYTc5YS00NWJmLTk1ODYtOTJkZDQ5ZWYzMjIzLzczZjIxYzJiLTg4MjMt
NGMyNC1iMjViLTQzYzgwY2I2ZDFiYi8yNzhhYWI4NzhmMjgzMWJiMTgyM2I1ODc5
NGIwOTJkODZmYjFkN2EwZjc0ZTI4MTYxMS5jZXIwgZ4GCCsGAQUFBwELBIGRMIGO
MIGLBggrBgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6
b25hd3MuY29tL3ZvbHVtZS9iNjhhMzJlZS00NTVkLTQ4M2EtOTQzZC0xYTViZTc0
OGJmZWEvZGZkMDRkNjctMDRjMS00ZDEzLWE4MzktYzNhZDU0ZjQwYWM5LnJvYTCB
lQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I2OGEzMmVlLTQ1NWQtNDgzYS05NDNk
LTFhNWJlNzQ4YmZlYS80YmI4YWU1Yy0xMjRjLTQyZjMtODdmYi00ZjM0ZTc0ZTNk
YTIuY3JsMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8E
EDAOMAwEAgABMAYDBADHJHgwDQYJKoZIhvcNAQELBQADggEBAELifWOUpf+9l7gP
FrhO5EXiMUs7DmHHOzN4uf3pPwQzdVilQrha+P715vV9SyA666EyWkVvPepioc3l
8ht+MKdTxKG4VMibPH3ej8jppQWNyJsmmb7L/Q2Q8Yf4bHmvxAbnfd9xCwi+zLmH
qZnHwv6Lveqh0BTHTYUs/hhFl0asZlNyb9ENs89oZvB0j1wXZry37Ts3SqgNdPQc
j2/1HbCX8tSgGj4rDeserx7Mv4jWgqQRgOELQanawyp1V3D/2ZKrI1heBCBnYFH8
RBJpfipkgk4a/FA9jYdaRZwJFPlLXHZmfAqFWrlMMN41ptYLXU14TvBZmUJjWUob
4Zd7Eng=
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:52 2023 by rpki-client on console-ams.rpki-client.org