Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/e5ca70f8-7a16-4b8d-9033-0ec905f91813.roa
File: e5ca70f8-7a16-4b8d-9033-0ec905f91813.roa (raw, json)
Hash identifier: YpCft/xtACaxnQOVR1nH41nOkm4vAmmwnAXiFe/ofEM=
Subject key identifier: 43:81:0C:A8:02:60:03:B7:9A:AB:34:FA:D0:93:C4:02:1C:D9:2B:13
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 46C5F6D7EE6C7A4E0862E067931656CF2F71E4EF
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/e5ca70f8-7a16-4b8d-9033-0ec905f91813.roa
Signing time: Wed 03 Aug 2022 00:00:00 +0000
ROA not before: Wed 03 Aug 2022 00:00:00 +0000
ROA not after: Sat 06 Aug 2022 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
46:c5:f6:d7:ee:6c:7a:4e:08:62:e0:67:93:16:56:cf:2f:71:e4:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Aug 3 00:00:00 2022 GMT
Not After : Aug 6 23:59:59 2022 GMT
Subject: serialNumber=0ab94f8d3bc2f92cb68cbd398d80807717de245d331af100aa85d86f0d204d4a, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:d3:79:f8:a8:aa:eb:e3:97:fc:e7:eb:a5:b9:
ea:5f:a8:24:b0:2d:d0:5d:77:a2:08:41:5a:1f:7a:
b9:bb:74:02:b3:f1:ba:49:2b:82:61:af:a1:b5:66:
24:5e:b4:f5:75:03:7c:47:f7:cb:2e:93:fa:8f:21:
99:15:43:d9:53:90:60:72:a6:9a:f9:b3:ea:6c:e7:
fd:22:33:36:36:bd:32:17:9e:a5:3f:b4:f0:a6:35:
9a:10:42:2f:04:74:e6:78:43:82:cf:35:4e:d3:00:
ab:d2:a8:d3:81:ef:56:ca:a0:9e:1a:c6:de:74:8f:
eb:a4:f2:7a:86:77:00:27:3d:63:6c:85:b2:b3:ce:
c8:82:b3:b3:07:18:72:dd:b9:a3:9b:bc:1b:94:36:
a5:ee:92:08:a4:ca:74:a7:1a:d2:5d:f4:67:9e:c4:
2e:16:62:97:b1:08:46:52:63:7d:83:c0:14:6a:e6:
f4:72:38:c1:7b:40:cd:1f:02:e2:70:81:27:d7:92:
d3:30:36:b8:ad:97:c5:ae:41:b8:44:84:44:53:c6:
92:6f:6c:d0:32:ba:b4:16:78:eb:2c:d5:06:10:90:
a6:5e:36:56:51:e9:13:d1:76:6c:28:2e:32:ae:f9:
b2:31:40:fc:0e:c3:8f:81:76:7d:56:80:ef:85:ac:
a4:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:81:0C:A8:02:60:03:B7:9A:AB:34:FA:D0:93:C4:02:1C:D9:2B:13
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/e5ca70f8-7a16-4b8d-9033-0ec905f91813.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
c3:29:66:ba:b8:f5:95:55:14:66:ea:e6:d8:0d:dc:e4:a8:38:
c7:1b:8a:65:5d:ff:a0:fc:85:0d:a2:0e:27:c8:d5:e5:d4:e4:
84:cf:cc:61:62:70:b9:e3:14:b1:d0:53:14:66:85:8e:ab:86:
4a:1d:ed:17:b6:ac:18:32:69:e2:2a:70:3f:5a:f0:10:06:5d:
7e:3b:5d:db:3e:0e:35:44:c4:1c:ea:e3:03:88:b2:b7:31:47:
1e:01:b3:b8:89:b7:a5:e2:ce:4b:4b:c4:6b:bc:95:cd:3c:b1:
4d:29:ff:26:0d:d2:cd:60:e4:5c:21:bf:94:4d:85:5d:e1:55:
51:dc:d7:4e:45:bf:67:cb:e5:9e:78:6c:bf:cc:98:04:b1:81:
7c:93:ad:74:f4:39:1f:12:3b:63:da:62:e9:5e:53:8b:d3:a5:
62:0c:2d:5a:48:69:be:ec:f4:b1:3a:d1:10:c2:6e:68:77:38:
42:25:57:f4:eb:34:16:87:61:cc:21:28:4d:04:67:cd:0e:64:
62:63:f0:b5:63:f0:cd:ca:2c:ae:56:b9:23:82:18:5e:97:81:
08:ab:30:fb:df:55:e6:11:86:95:5e:9a:bc:53:7c:d7:79:c9:
01:45:05:72:4f:08:ad:51:b8:15:af:61:87:d7:e8:8a:84:81:
44:65:45:62
-----BEGIN CERTIFICATE-----
MIIGMTCCBRmgAwIBAgIURsX21+5sek4IYuBnkxZWzy9x5O8wDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyMjc4YWFiODc4ZjI4MzFiYjE4MjNiNTg3OTRiMDkyZDg2
ZmIxZDdhMGY3NGUyODE2MTEwHhcNMjIwODAzMDAwMDAwWhcNMjIwODA2MjM1OTU5
WjCBpTFJMEcGA1UEBRNAMGFiOTRmOGQzYmMyZjkyY2I2OGNiZDM5OGQ4MDgwNzcx
N2RlMjQ1ZDMzMWFmMTAwYWE4NWQ4NmYwZDIwNGQ0YTEtMCsGA1UEAxMkNmFlNGU1
NjctNjM0OC00YzRmLTk4YTgtMDQyMmM0YzUyZmYzMRQwEgYDVQQLEwtBbWF6b24g
UlBLSTETMBEGA1UEChMKQW1hem9uLmNvbTCCASIwDQYJKoZIhvcNAQEBBQADggEP
ADCCAQoCggEBAKrTefioquvjl/zn66W56l+oJLAt0F13oghBWh96ubt0ArPxukkr
gmGvobVmJF609XUDfEf3yy6T+o8hmRVD2VOQYHKmmvmz6mzn/SIzNja9MheepT+0
8KY1mhBCLwR05nhDgs81TtMAq9Ko04HvVsqgnhrG3nSP66TyeoZ3ACc9Y2yFsrPO
yIKzswcYct25o5u8G5Q2pe6SCKTKdKca0l30Z57ELhZil7EIRlJjfYPAFGrm9HI4
wXtAzR8C4nCBJ9eS0zA2uK2Xxa5BuESERFPGkm9s0DK6tBZ46yzVBhCQpl42VlHp
E9F2bCguMq75sjFA/A7Dj4F2fVaA74WspIECAwEAAaOCAr4wggK6MB0GA1UdDgQW
BBRDgQyoAmADt5qrNPrQk8QCHNkrEzAfBgNVHSMEGDAWgBSRRO3HpA7pkLf6Nm/2
4X15rcSDlzAOBgNVHQ8BAf8EBAMCB4AwgfMGCCsGAQUFBwEBBIHmMIHjMIHgBggr
BgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2FyaW4t
cnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMvMDM1
NzI3MmMtYTc5YS00NWJmLTk1ODYtOTJkZDQ5ZWYzMjIzLzczZjIxYzJiLTg4MjMt
NGMyNC1iMjViLTQzYzgwY2I2ZDFiYi8yNzhhYWI4NzhmMjgzMWJiMTgyM2I1ODc5
NGIwOTJkODZmYjFkN2EwZjc0ZTI4MTYxMS5jZXIwgZ4GCCsGAQUFBwELBIGRMIGO
MIGLBggrBgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6
b25hd3MuY29tL3ZvbHVtZS9iNjhhMzJlZS00NTVkLTQ4M2EtOTQzZC0xYTViZTc0
OGJmZWEvZTVjYTcwZjgtN2ExNi00YjhkLTkwMzMtMGVjOTA1ZjkxODEzLnJvYTCB
lQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I2OGEzMmVlLTQ1NWQtNDgzYS05NDNk
LTFhNWJlNzQ4YmZlYS80YmI4YWU1Yy0xMjRjLTQyZjMtODdmYi00ZjM0ZTc0ZTNk
YTIuY3JsMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8E
EDAOMAwEAgABMAYDBADHJHgwDQYJKoZIhvcNAQELBQADggEBAMMpZrq49ZVVFGbq
5tgN3OSoOMcbimVd/6D8hQ2iDifI1eXU5ITPzGFicLnjFLHQUxRmhY6rhkod7Re2
rBgyaeIqcD9a8BAGXX47Xds+DjVExBzq4wOIsrcxRx4Bs7iJt6XizktLxGu8lc08
sU0p/yYN0s1g5Fwhv5RNhV3hVVHc105Fv2fL5Z54bL/MmASxgXyTrXT0OR8SO2Pa
YuleU4vTpWIMLVpIab7s9LE60RDCbmh3OEIlV/TrNBaHYcwhKE0EZ80OZGJj8LVj
8M3KLK5WuSOCGF6XgQirMPvfVeYRhpVemrxTfNd5yQFFBXJPCK1RuBWvYYfX6IqE
gURlRWI=
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:55 2023 by rpki-client on console-fra.rpki-client.org