Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/e60c7a4b-907b-452a-b782-f8cda04986d9.roa
File: e60c7a4b-907b-452a-b782-f8cda04986d9.roa (raw, json)
Hash identifier: 0oEw+E9miwqKVegUG8FF/5bfy4BYCn+fJmS4grUY7c8=
Subject key identifier: FB:91:07:CE:D1:D5:61:F4:2A:D5:F9:BC:B3:34:BC:03:E8:D6:B5:1E
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 27CD2C6D4F87F47D623FE8203FA77DD44F847283
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/e60c7a4b-907b-452a-b782-f8cda04986d9.roa
Signing time: Sat 28 Jan 2023 00:00:00 +0000
ROA not before: Sat 28 Jan 2023 00:00:00 +0000
ROA not after: Tue 31 Jan 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
27:cd:2c:6d:4f:87:f4:7d:62:3f:e8:20:3f:a7:7d:d4:4f:84:72:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Jan 28 00:00:00 2023 GMT
Not After : Jan 31 23:59:59 2023 GMT
Subject: serialNumber=efd6284baf4bdf2760f6fb1fc9bd4066679183ac80c782edb636f115d5f2e333, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:3d:87:c9:02:ba:ca:ce:10:3c:39:c3:31:30:
30:b0:ed:23:a4:da:c6:99:cb:db:cd:e7:8c:28:c8:
f6:43:e9:d4:f8:96:09:05:53:8b:6f:d5:0d:73:1d:
2d:71:92:6c:34:2f:12:d7:25:4b:0a:94:e0:df:ae:
26:7b:79:4a:ff:95:36:48:0e:24:93:c6:f7:3d:f4:
e4:d6:07:ee:da:4d:37:99:f0:1d:35:1f:2f:12:d3:
53:b0:68:43:80:5a:45:6c:cc:e4:f7:54:46:0d:e1:
32:3b:2e:9e:e9:b5:6d:a2:7f:42:31:3d:12:38:fa:
d7:b2:ef:f3:e6:b4:e9:c9:dd:8c:00:da:4b:9a:f4:
ea:c1:9c:8b:c7:2f:fe:96:1f:8d:13:93:5a:3b:d2:
c9:ee:19:0f:42:02:30:9c:50:4e:23:5b:30:7a:d1:
d6:e2:b4:18:b3:b8:95:08:bd:db:b0:b0:e1:0c:c0:
5e:4e:16:11:eb:77:02:2c:d2:f5:72:f3:08:44:53:
4b:1c:b7:e6:1d:57:43:69:a5:26:f5:c4:98:29:78:
b8:55:45:3d:02:78:31:ae:35:4b:83:d9:48:a1:b4:
9a:3e:fc:47:45:62:91:43:24:8d:9f:b1:ba:cb:4a:
17:ba:89:b8:b0:7a:c7:44:4a:95:2a:1a:9e:5b:47:
ea:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:91:07:CE:D1:D5:61:F4:2A:D5:F9:BC:B3:34:BC:03:E8:D6:B5:1E
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/e60c7a4b-907b-452a-b782-f8cda04986d9.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
41:7b:51:b3:b5:65:71:12:20:a9:f9:aa:5d:13:a7:e4:05:40:
91:49:31:e0:67:02:e8:d3:d1:fd:8b:e7:4f:6a:3c:e8:bc:ae:
93:b1:eb:ec:db:ec:20:4a:b8:c2:0c:4e:64:4c:d6:96:80:ee:
5a:d6:26:0f:0e:30:e8:18:65:f5:18:94:13:f7:32:af:c5:05:
7b:33:f1:bb:e7:60:94:57:07:e5:71:ea:c1:85:bd:32:87:17:
69:0a:7e:cd:d1:3d:39:80:53:06:5f:b1:b4:4f:94:41:94:3d:
73:8a:ec:63:78:5c:96:c4:09:7b:b9:3e:db:ed:b3:8e:77:cd:
c6:99:ad:fb:6b:22:31:2c:5e:7a:ff:39:09:b1:bc:83:36:55:
4c:9a:5d:19:bf:11:36:91:35:f9:27:b4:f5:52:65:78:c9:19:
e7:8f:af:2a:90:db:5d:01:3d:8f:58:f9:f9:50:e7:f5:8b:bb:
43:91:91:77:8f:9e:c6:30:c9:95:c0:f5:12:2d:80:90:52:58:
44:d1:a4:c6:4d:b0:49:9b:3b:fa:3a:6d:b3:98:08:85:6f:0a:
46:90:71:87:79:43:b5:5c:da:ae:14:0a:b0:70:b3:7f:58:6e:
96:23:d8:98:02:19:d8:66:8b:6f:b6:4c:98:4e:49:6b:67:6a:
9a:5f:f6:62
-----BEGIN CERTIFICATE-----
MIIGMTCCBRmgAwIBAgIUJ80sbU+H9H1iP+ggP6d91E+EcoMwDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyMjc4YWFiODc4ZjI4MzFiYjE4MjNiNTg3OTRiMDkyZDg2
ZmIxZDdhMGY3NGUyODE2MTEwHhcNMjMwMTI4MDAwMDAwWhcNMjMwMTMxMjM1OTU5
WjCBpTFJMEcGA1UEBRNAZWZkNjI4NGJhZjRiZGYyNzYwZjZmYjFmYzliZDQwNjY2
NzkxODNhYzgwYzc4MmVkYjYzNmYxMTVkNWYyZTMzMzEtMCsGA1UEAxMkNmFlNGU1
NjctNjM0OC00YzRmLTk4YTgtMDQyMmM0YzUyZmYzMRQwEgYDVQQLEwtBbWF6b24g
UlBLSTETMBEGA1UEChMKQW1hem9uLmNvbTCCASIwDQYJKoZIhvcNAQEBBQADggEP
ADCCAQoCggEBAOs9h8kCusrOEDw5wzEwMLDtI6TaxpnL283njCjI9kPp1PiWCQVT
i2/VDXMdLXGSbDQvEtclSwqU4N+uJnt5Sv+VNkgOJJPG9z305NYH7tpNN5nwHTUf
LxLTU7BoQ4BaRWzM5PdURg3hMjsunum1baJ/QjE9Ejj617Lv8+a06cndjADaS5r0
6sGci8cv/pYfjROTWjvSye4ZD0ICMJxQTiNbMHrR1uK0GLO4lQi927Cw4QzAXk4W
Eet3AizS9XLzCERTSxy35h1XQ2mlJvXEmCl4uFVFPQJ4Ma41S4PZSKG0mj78R0Vi
kUMkjZ+xustKF7qJuLB6x0RKlSoanltH6icCAwEAAaOCAr4wggK6MB0GA1UdDgQW
BBT7kQfO0dVh9CrV+byzNLwD6Na1HjAfBgNVHSMEGDAWgBSRRO3HpA7pkLf6Nm/2
4X15rcSDlzAOBgNVHQ8BAf8EBAMCB4AwgfMGCCsGAQUFBwEBBIHmMIHjMIHgBggr
BgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2FyaW4t
cnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMvMDM1
NzI3MmMtYTc5YS00NWJmLTk1ODYtOTJkZDQ5ZWYzMjIzLzczZjIxYzJiLTg4MjMt
NGMyNC1iMjViLTQzYzgwY2I2ZDFiYi8yNzhhYWI4NzhmMjgzMWJiMTgyM2I1ODc5
NGIwOTJkODZmYjFkN2EwZjc0ZTI4MTYxMS5jZXIwgZ4GCCsGAQUFBwELBIGRMIGO
MIGLBggrBgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6
b25hd3MuY29tL3ZvbHVtZS9iNjhhMzJlZS00NTVkLTQ4M2EtOTQzZC0xYTViZTc0
OGJmZWEvZTYwYzdhNGItOTA3Yi00NTJhLWI3ODItZjhjZGEwNDk4NmQ5LnJvYTCB
lQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I2OGEzMmVlLTQ1NWQtNDgzYS05NDNk
LTFhNWJlNzQ4YmZlYS80YmI4YWU1Yy0xMjRjLTQyZjMtODdmYi00ZjM0ZTc0ZTNk
YTIuY3JsMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8E
EDAOMAwEAgABMAYDBADHJHgwDQYJKoZIhvcNAQELBQADggEBAEF7UbO1ZXESIKn5
ql0Tp+QFQJFJMeBnAujT0f2L509qPOi8rpOx6+zb7CBKuMIMTmRM1paA7lrWJg8O
MOgYZfUYlBP3Mq/FBXsz8bvnYJRXB+Vx6sGFvTKHF2kKfs3RPTmAUwZfsbRPlEGU
PXOK7GN4XJbECXu5Ptvts453zcaZrftrIjEsXnr/OQmxvIM2VUyaXRm/ETaRNfkn
tPVSZXjJGeePryqQ210BPY9Y+flQ5/WLu0ORkXePnsYwyZXA9RItgJBSWETRpMZN
sEmbO/o6bbOYCIVvCkaQcYd5Q7Vc2q4UCrBws39YbpYj2JgCGdhmi2+2TJhOSWtn
appf9mI=
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:52 2023 by rpki-client on console-ams.rpki-client.org