Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/efaf812c-b598-4e51-89fd-de57bfe4ac45.roa
File: efaf812c-b598-4e51-89fd-de57bfe4ac45.roa (raw, json)
Hash identifier: wlFjGAGGvY+7sTgHW64/XAACg4EuGujs4ab8G1sDZ6o=
Subject key identifier: 59:61:43:84:D5:BA:D4:72:7A:F1:AE:28:01:B9:6F:09:67:05:0A:28
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 671BF7A62782A57E29F6EB07707431BE1223DC93
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/efaf812c-b598-4e51-89fd-de57bfe4ac45.roa
Signing time: Wed 01 Mar 2023 00:00:00 +0000
ROA not before: Wed 01 Mar 2023 00:00:00 +0000
ROA not after: Sat 04 Mar 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
67:1b:f7:a6:27:82:a5:7e:29:f6:eb:07:70:74:31:be:12:23:dc:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Mar 1 00:00:00 2023 GMT
Not After : Mar 4 23:59:59 2023 GMT
Subject: serialNumber=d8d89119046114f8a64af7874fdee331ded350076a5684ed84ee7db970b4fabd, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:69:e8:ec:1e:57:ea:1f:e2:bf:b4:6a:9f:ef:
61:65:c1:40:86:35:8a:b3:49:88:12:bd:7e:1c:79:
8e:1b:ee:8a:be:91:d7:8e:54:6e:e7:3d:7f:9d:e6:
ac:4f:f5:c3:62:c8:58:fb:c9:89:09:56:50:23:35:
ea:79:db:aa:24:76:b1:4d:7c:ea:34:31:94:b3:8b:
1f:48:15:0b:c0:b6:c2:07:7e:89:9b:9d:b3:bc:17:
9a:fb:bf:f2:2b:45:43:8f:a7:a9:d4:ac:7d:26:84:
93:8f:4b:94:b9:a4:46:3c:c5:00:24:1a:27:43:16:
09:05:bc:b8:1f:ec:0c:20:69:e6:69:9c:f8:72:f5:
58:cb:7d:62:c4:b7:71:6e:23:c8:30:62:e4:e1:f0:
d3:92:2e:80:b3:7b:ff:f2:b0:09:a1:a2:b2:18:b0:
ab:11:5d:d2:6f:fc:a7:cb:dd:b2:f2:90:2d:0c:1d:
15:b1:b6:49:84:8a:a4:9b:b0:b1:67:0b:d1:f4:22:
4c:8c:4a:31:8a:ca:b2:54:a6:25:71:ce:5d:3c:7c:
2f:5e:78:28:b2:1c:8a:2e:49:f4:66:f9:06:bb:93:
18:32:43:61:0e:fd:44:a7:cf:9f:37:22:40:db:e3:
e9:d7:d2:ce:86:1d:56:30:d6:ee:53:3f:9d:71:0b:
a9:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:61:43:84:D5:BA:D4:72:7A:F1:AE:28:01:B9:6F:09:67:05:0A:28
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/efaf812c-b598-4e51-89fd-de57bfe4ac45.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
9d:9b:ce:ab:91:ad:60:58:2e:0b:2f:f2:0a:47:4c:bc:b0:e7:
5a:1d:c6:9e:15:26:ec:03:bd:d6:15:1a:bc:59:61:da:0e:1d:
df:c4:a7:a8:f4:cc:68:2a:bf:28:03:2e:73:e9:46:86:47:f0:
1d:7a:43:7b:ca:34:6f:ec:16:c0:35:78:58:93:a3:96:f3:f4:
38:de:5c:aa:47:fe:b5:06:ae:b2:99:44:d5:fa:43:f7:e2:26:
31:a4:f1:13:95:34:a0:7b:85:e3:4c:32:a1:7d:43:f5:84:57:
98:51:36:fd:68:ad:b3:ea:7e:01:5c:1c:0e:b4:ca:10:97:d9:
b7:84:7f:f8:a5:d2:c8:07:e8:9c:cd:58:7d:d6:0c:2f:c2:cc:
67:72:23:7f:49:5d:c5:81:3e:47:14:47:29:ac:e8:65:0c:90:
8d:7c:ab:bf:10:65:04:77:56:aa:92:57:fa:8a:e7:0a:bc:9d:
42:24:4d:9d:16:db:37:04:95:1a:aa:30:c5:bd:83:22:c3:41:
73:8f:fe:fd:8a:29:f1:e2:80:d5:48:6b:9a:0a:7a:65:15:f1:
55:55:71:d5:b5:48:85:8a:a9:93:d1:5a:05:08:ee:dd:13:0a:
a9:64:60:86:13:6e:49:54:6a:38:57:73:4c:03:68:61:17:98:
07:84:51:a2
-----BEGIN CERTIFICATE-----
MIIGMTCCBRmgAwIBAgIUZxv3pieCpX4p9usHcHQxvhIj3JMwDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyMjc4YWFiODc4ZjI4MzFiYjE4MjNiNTg3OTRiMDkyZDg2
ZmIxZDdhMGY3NGUyODE2MTEwHhcNMjMwMzAxMDAwMDAwWhcNMjMwMzA0MjM1OTU5
WjCBpTFJMEcGA1UEBRNAZDhkODkxMTkwNDYxMTRmOGE2NGFmNzg3NGZkZWUzMzFk
ZWQzNTAwNzZhNTY4NGVkODRlZTdkYjk3MGI0ZmFiZDEtMCsGA1UEAxMkNmFlNGU1
NjctNjM0OC00YzRmLTk4YTgtMDQyMmM0YzUyZmYzMRQwEgYDVQQLEwtBbWF6b24g
UlBLSTETMBEGA1UEChMKQW1hem9uLmNvbTCCASIwDQYJKoZIhvcNAQEBBQADggEP
ADCCAQoCggEBALhp6OweV+of4r+0ap/vYWXBQIY1irNJiBK9fhx5jhvuir6R145U
buc9f53mrE/1w2LIWPvJiQlWUCM16nnbqiR2sU186jQxlLOLH0gVC8C2wgd+iZud
s7wXmvu/8itFQ4+nqdSsfSaEk49LlLmkRjzFACQaJ0MWCQW8uB/sDCBp5mmc+HL1
WMt9YsS3cW4jyDBi5OHw05IugLN7//KwCaGishiwqxFd0m/8p8vdsvKQLQwdFbG2
SYSKpJuwsWcL0fQiTIxKMYrKslSmJXHOXTx8L154KLIcii5J9Gb5BruTGDJDYQ79
RKfPnzciQNvj6dfSzoYdVjDW7lM/nXELqYECAwEAAaOCAr4wggK6MB0GA1UdDgQW
BBRZYUOE1brUcnrxrigBuW8JZwUKKDAfBgNVHSMEGDAWgBSRRO3HpA7pkLf6Nm/2
4X15rcSDlzAOBgNVHQ8BAf8EBAMCB4AwgfMGCCsGAQUFBwEBBIHmMIHjMIHgBggr
BgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2FyaW4t
cnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMvMDM1
NzI3MmMtYTc5YS00NWJmLTk1ODYtOTJkZDQ5ZWYzMjIzLzczZjIxYzJiLTg4MjMt
NGMyNC1iMjViLTQzYzgwY2I2ZDFiYi8yNzhhYWI4NzhmMjgzMWJiMTgyM2I1ODc5
NGIwOTJkODZmYjFkN2EwZjc0ZTI4MTYxMS5jZXIwgZ4GCCsGAQUFBwELBIGRMIGO
MIGLBggrBgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6
b25hd3MuY29tL3ZvbHVtZS9iNjhhMzJlZS00NTVkLTQ4M2EtOTQzZC0xYTViZTc0
OGJmZWEvZWZhZjgxMmMtYjU5OC00ZTUxLTg5ZmQtZGU1N2JmZTRhYzQ1LnJvYTCB
lQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I2OGEzMmVlLTQ1NWQtNDgzYS05NDNk
LTFhNWJlNzQ4YmZlYS80YmI4YWU1Yy0xMjRjLTQyZjMtODdmYi00ZjM0ZTc0ZTNk
YTIuY3JsMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8E
EDAOMAwEAgABMAYDBADHJHgwDQYJKoZIhvcNAQELBQADggEBAJ2bzquRrWBYLgsv
8gpHTLyw51odxp4VJuwDvdYVGrxZYdoOHd/Ep6j0zGgqvygDLnPpRoZH8B16Q3vK
NG/sFsA1eFiTo5bz9DjeXKpH/rUGrrKZRNX6Q/fiJjGk8ROVNKB7heNMMqF9Q/WE
V5hRNv1orbPqfgFcHA60yhCX2beEf/il0sgH6JzNWH3WDC/CzGdyI39JXcWBPkcU
Ryms6GUMkI18q78QZQR3VqqSV/qK5wq8nUIkTZ0W2zcElRqqMMW9gyLDQXOP/v2K
KfHigNVIa5oKemUV8VVVcdW1SIWKqZPRWgUI7t0TCqlkYIYTbklUajhXc0wDaGEX
mAeEUaI=
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:52 2023 by rpki-client on console-ams.rpki-client.org