Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/fb7a4ec7-4a93-4cd3-bd42-a3b41708d4ae.roa
File: fb7a4ec7-4a93-4cd3-bd42-a3b41708d4ae.roa (raw, json)
Hash identifier: hHITZ0cBa16bsRF/y5w++keyYImfFR9GpnABu+TfLYo=
Subject key identifier: 51:2E:1D:38:AD:93:8B:84:3D:D5:22:BD:F0:6E:BC:66:B2:9E:51:9D
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 16EB679F13FC9FF4B0F5BE20E4DA30C5FFE8B9E6
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/fb7a4ec7-4a93-4cd3-bd42-a3b41708d4ae.roa
Signing time: Thu 02 Mar 2023 00:00:00 +0000
ROA not before: Thu 02 Mar 2023 00:00:00 +0000
ROA not after: Sun 05 Mar 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
16:eb:67:9f:13:fc:9f:f4:b0:f5:be:20:e4:da:30:c5:ff:e8:b9:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Mar 2 00:00:00 2023 GMT
Not After : Mar 5 23:59:59 2023 GMT
Subject: serialNumber=37040f04e32940ca72d78acf093c54ae03d63b1d2f6bfdbbb29c8879ae1c2255, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:43:6b:ae:bd:54:bd:17:19:05:89:07:fc:77:
28:26:38:ce:c3:e1:1e:f8:d0:b2:e2:0d:50:ba:fb:
0c:fb:0e:c8:83:b9:58:c4:6d:05:92:ed:9e:d3:18:
52:42:13:44:86:57:66:b4:2e:46:fa:ad:33:75:0d:
63:40:93:39:dc:2c:e6:a6:b8:11:03:e9:bc:33:02:
f4:44:f5:90:3c:21:51:85:a4:62:4c:aa:18:9e:6b:
1c:25:6f:e5:ca:1f:9a:9e:49:20:b5:f2:87:a4:ea:
a1:aa:f4:d2:f4:11:f1:2e:fc:ee:1f:0d:28:d9:9d:
a4:97:4b:26:36:2c:10:c2:6b:70:13:b5:93:18:a7:
52:68:db:76:6d:05:a7:00:3b:db:24:e2:5e:49:4e:
40:6b:72:17:50:b3:78:eb:35:09:93:e3:17:40:0b:
68:25:0f:ea:4d:eb:c4:d9:43:b4:fb:49:08:3e:8f:
a3:9d:1b:11:69:1f:5c:f5:f3:c4:7d:d7:65:ff:33:
69:ab:16:2e:6f:8b:19:e0:62:e6:43:3b:f4:9c:6e:
8f:e4:9b:fe:2a:9b:62:e6:2c:9f:54:d0:07:0a:a0:
fb:30:6b:7f:5a:5d:33:32:7e:2e:a5:00:9c:5e:5d:
d2:8d:ec:7e:ea:17:d0:3d:69:ce:a5:5f:17:3a:31:
4a:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:2E:1D:38:AD:93:8B:84:3D:D5:22:BD:F0:6E:BC:66:B2:9E:51:9D
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/fb7a4ec7-4a93-4cd3-bd42-a3b41708d4ae.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
54:25:95:90:ac:7e:08:22:20:0c:8d:7c:f7:93:3a:1d:a3:b5:
c4:65:52:77:d1:67:c0:d3:8a:ec:8d:a0:a9:5a:29:29:2c:df:
fb:2b:ba:41:ee:3e:2d:f0:ed:cd:16:0f:30:12:c7:99:fe:51:
19:81:d7:c5:e3:24:bd:ca:5d:63:b9:30:ea:6c:d7:5b:fb:98:
3d:f0:27:36:53:df:89:07:00:cf:dd:70:08:85:7e:e3:07:10:
37:0b:f7:3d:5c:c6:90:8f:2b:24:b3:87:fd:1b:9f:03:c2:b3:
96:af:cc:c9:1b:79:10:9f:90:cd:ff:ca:de:19:1e:c7:7d:80:
04:17:71:0d:92:43:bc:c1:6d:7c:a5:d1:b1:af:3c:19:d7:36:
33:fd:bd:c4:a3:31:ff:2c:3b:e5:5f:7b:23:72:59:1a:8d:1a:
40:93:0c:5f:0a:70:d1:d6:f9:23:e4:c6:e0:dd:46:3d:e6:2b:
10:1e:18:34:f7:78:09:3a:de:13:60:c7:9a:e8:65:48:ca:18:
04:a5:27:cd:91:2d:33:cd:19:53:74:77:37:2b:70:d5:ca:9e:
d0:48:6f:b6:22:23:ad:b4:fb:0a:d6:81:85:dc:06:da:a1:93:
64:a5:75:05:0c:35:a7:cc:de:75:ef:9e:23:14:13:c5:b4:73:
11:15:d3:5f
-----BEGIN CERTIFICATE-----
MIIGMTCCBRmgAwIBAgIUFutnnxP8n/Sw9b4g5Nowxf/oueYwDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyMjc4YWFiODc4ZjI4MzFiYjE4MjNiNTg3OTRiMDkyZDg2
ZmIxZDdhMGY3NGUyODE2MTEwHhcNMjMwMzAyMDAwMDAwWhcNMjMwMzA1MjM1OTU5
WjCBpTFJMEcGA1UEBRNAMzcwNDBmMDRlMzI5NDBjYTcyZDc4YWNmMDkzYzU0YWUw
M2Q2M2IxZDJmNmJmZGJiYjI5Yzg4NzlhZTFjMjI1NTEtMCsGA1UEAxMkNmFlNGU1
NjctNjM0OC00YzRmLTk4YTgtMDQyMmM0YzUyZmYzMRQwEgYDVQQLEwtBbWF6b24g
UlBLSTETMBEGA1UEChMKQW1hem9uLmNvbTCCASIwDQYJKoZIhvcNAQEBBQADggEP
ADCCAQoCggEBAJpDa669VL0XGQWJB/x3KCY4zsPhHvjQsuINULr7DPsOyIO5WMRt
BZLtntMYUkITRIZXZrQuRvqtM3UNY0CTOdws5qa4EQPpvDMC9ET1kDwhUYWkYkyq
GJ5rHCVv5cofmp5JILXyh6Tqoar00vQR8S787h8NKNmdpJdLJjYsEMJrcBO1kxin
Umjbdm0FpwA72yTiXklOQGtyF1CzeOs1CZPjF0ALaCUP6k3rxNlDtPtJCD6Po50b
EWkfXPXzxH3XZf8zaasWLm+LGeBi5kM79Jxuj+Sb/iqbYuYsn1TQBwqg+zBrf1pd
MzJ+LqUAnF5d0o3sfuoX0D1pzqVfFzoxSnMCAwEAAaOCAr4wggK6MB0GA1UdDgQW
BBRRLh04rZOLhD3VIr3wbrxmsp5RnTAfBgNVHSMEGDAWgBSRRO3HpA7pkLf6Nm/2
4X15rcSDlzAOBgNVHQ8BAf8EBAMCB4AwgfMGCCsGAQUFBwEBBIHmMIHjMIHgBggr
BgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2FyaW4t
cnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMvMDM1
NzI3MmMtYTc5YS00NWJmLTk1ODYtOTJkZDQ5ZWYzMjIzLzczZjIxYzJiLTg4MjMt
NGMyNC1iMjViLTQzYzgwY2I2ZDFiYi8yNzhhYWI4NzhmMjgzMWJiMTgyM2I1ODc5
NGIwOTJkODZmYjFkN2EwZjc0ZTI4MTYxMS5jZXIwgZ4GCCsGAQUFBwELBIGRMIGO
MIGLBggrBgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6
b25hd3MuY29tL3ZvbHVtZS9iNjhhMzJlZS00NTVkLTQ4M2EtOTQzZC0xYTViZTc0
OGJmZWEvZmI3YTRlYzctNGE5My00Y2QzLWJkNDItYTNiNDE3MDhkNGFlLnJvYTCB
lQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I2OGEzMmVlLTQ1NWQtNDgzYS05NDNk
LTFhNWJlNzQ4YmZlYS80YmI4YWU1Yy0xMjRjLTQyZjMtODdmYi00ZjM0ZTc0ZTNk
YTIuY3JsMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8E
EDAOMAwEAgABMAYDBADHJHgwDQYJKoZIhvcNAQELBQADggEBAFQllZCsfggiIAyN
fPeTOh2jtcRlUnfRZ8DTiuyNoKlaKSks3/srukHuPi3w7c0WDzASx5n+URmB18Xj
JL3KXWO5MOps11v7mD3wJzZT34kHAM/dcAiFfuMHEDcL9z1cxpCPKySzh/0bnwPC
s5avzMkbeRCfkM3/yt4ZHsd9gAQXcQ2SQ7zBbXyl0bGvPBnXNjP9vcSjMf8sO+Vf
eyNyWRqNGkCTDF8KcNHW+SPkxuDdRj3mKxAeGDT3eAk63hNgx5roZUjKGASlJ82R
LTPNGVN0dzcrcNXKntBIb7YiI620+wrWgYXcBtqhk2SldQUMNafM3nXvniMUE8W0
cxEV018=
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:53 2023 by rpki-client on console-ams.rpki-client.org