Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/0ce9d35f-e3d0-413e-8dce-9b787a325e37.roa
File: 0ce9d35f-e3d0-413e-8dce-9b787a325e37.roa (raw, json)
Hash identifier: Il8TX93iC/3zIwE22uAgS+G404+ZNtM29DI0Kc8jEHI=
Subject key identifier: 40:F3:CD:6A:AF:43:7A:D6:41:69:5D:AE:25:F3:7A:73:1E:35:ED:3B
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 677AC80D2CDCC4A391C3E17C64A93D70E3CAE3
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/0ce9d35f-e3d0-413e-8dce-9b787a325e37.roa
Signing time: Mon 10 Jul 2023 00:00:00 +0000
ROA not before: Mon 10 Jul 2023 00:00:00 +0000
ROA not after: Mon 14 Aug 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
67:7a:c8:0d:2c:dc:c4:a3:91:c3:e1:7c:64:a9:3d:70:e3:ca:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Jul 10 00:00:00 2023 GMT
Not After : Aug 14 23:59:59 2023 GMT
Subject: serialNumber=e1dade9275c72c7099d4f8c6853080e6d072ab94834410f6ad43e66f13e790a4, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:90:40:8e:bd:04:c8:6d:ac:e4:6e:dd:b4:88:
38:1c:3b:94:4c:13:55:34:49:26:d4:c8:50:17:6d:
dc:1e:e4:1b:74:10:fd:67:0f:1c:f4:86:02:01:d7:
be:7b:81:11:c0:ed:c7:36:7b:22:96:e3:05:e1:54:
fd:be:7c:c8:6e:69:c8:85:c1:8e:d6:f4:d4:67:2f:
79:a3:f1:a4:ce:9a:31:50:47:55:e9:9e:22:e7:e2:
b6:84:1a:73:60:c4:42:e6:d8:3c:64:2e:17:7f:09:
8a:a3:5a:a5:be:79:ee:0b:31:02:17:61:f2:80:85:
11:d5:26:f9:e1:00:e0:d8:0f:e1:c4:cb:2a:ec:32:
e2:03:6f:46:68:7d:1e:66:fd:69:6c:50:df:a2:16:
55:79:ef:46:7a:46:96:2f:d3:a4:9a:7f:48:ed:21:
d1:e3:eb:e5:e3:7c:78:93:98:60:7c:46:60:81:66:
90:bb:42:0a:13:33:4f:4b:d2:54:28:c4:d8:8e:ff:
a9:94:35:e3:27:ba:57:b6:be:6d:59:a1:af:64:76:
3b:03:23:9a:0a:48:6e:00:20:00:1f:8a:51:66:6d:
aa:d5:1d:46:19:a5:9f:cf:03:98:97:ab:49:b1:cc:
23:1b:6d:90:77:7e:be:51:ae:66:92:63:9b:4a:0c:
3b:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:F3:CD:6A:AF:43:7A:D6:41:69:5D:AE:25:F3:7A:73:1E:35:ED:3B
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/0ce9d35f-e3d0-413e-8dce-9b787a325e37.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
11:eb:da:72:2d:e3:3f:8f:b8:11:1d:67:fa:5a:53:71:5d:1c:
20:b0:ca:0c:ed:bd:45:39:7c:44:ca:aa:41:ca:f4:14:de:3c:
f0:b8:c0:db:45:f1:df:c4:69:fd:4e:a1:6b:a2:6a:a0:a6:16:
43:67:af:5e:5c:48:5e:b6:4b:10:f9:73:45:5c:a6:02:51:d7:
90:a2:cf:a7:c0:42:34:67:fc:ad:4c:0f:0a:3c:30:8e:90:eb:
99:84:b2:14:72:4e:3c:ed:a0:ae:f3:ce:92:a7:0b:1c:ad:f3:
3d:e8:53:e3:d3:bf:ab:8c:b5:53:08:54:d6:76:74:06:99:8c:
62:f4:87:c3:9c:fd:12:72:69:66:b3:d6:50:be:a8:4a:3d:9d:
19:33:ef:85:d7:12:76:53:24:52:a1:df:44:e5:bd:32:70:b7:
b1:3b:c5:05:61:91:45:be:c9:22:1b:df:0e:d2:b4:28:a5:2c:
09:b6:c7:e3:79:dc:fe:09:97:0f:6e:e0:bc:fa:f1:1b:ed:5d:
eb:3f:0a:66:ae:77:e9:0a:c2:8c:4b:8c:f5:3a:fd:b4:07:2a:
d1:43:53:26:cf:1f:1e:09:6f:ee:7b:9d:63:22:74:46:47:eb:
5f:1f:c1:27:d9:ab:20:39:86:84:b4:ab:42:0c:a9:da:e6:e1:
0c:98:ea:01
-----BEGIN CERTIFICATE-----
MIIF9zCCBN+gAwIBAgITZ3rIDSzcxKORw+F8ZKk9cOPK4zANBgkqhkiG9w0BAQsF
ADA9MTswOQYDVQQDEzIyNzhhYWI4NzhmMjY2MmNlMTRlOTA1ZTE4ZWJjYjc1MjJm
OTJiMzY4NGJjNDg2NWI0ZDAeFw0yMzA3MTAwMDAwMDBaFw0yMzA4MTQyMzU5NTla
MHoxSTBHBgNVBAUTQGUxZGFkZTkyNzVjNzJjNzA5OWQ0ZjhjNjg1MzA4MGU2ZDA3
MmFiOTQ4MzQ0MTBmNmFkNDNlNjZmMTNlNzkwYTQxLTArBgNVBAMTJGMwY2UyM2Vh
LTQzZmMtNGJlNC1iZWVlLWMwMTQ3ODEyMmEwZTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMqQQI69BMhtrORu3bSIOBw7lEwTVTRJJtTIUBdt3B7kG3QQ
/WcPHPSGAgHXvnuBEcDtxzZ7IpbjBeFU/b58yG5pyIXBjtb01GcveaPxpM6aMVBH
VemeIufitoQac2DEQubYPGQuF38JiqNapb557gsxAhdh8oCFEdUm+eEA4NgP4cTL
Kuwy4gNvRmh9Hmb9aWxQ36IWVXnvRnpGli/TpJp/SO0h0ePr5eN8eJOYYHxGYIFm
kLtCChMzT0vSVCjE2I7/qZQ14ye6V7a+bVmhr2R2OwMjmgpIbgAgAB+KUWZtqtUd
Rhmln88DmJerSbHMIxttkHd+vlGuZpJjm0oMO48CAwEAAaOCArEwggKtMB0GA1Ud
DgQWBBRA881qr0N61kFpXa4l83pzHjXtOzAfBgNVHSMEGDAWgBRVqN1F2UQT+dGS
9Sxjzoz7xhSWuDAOBgNVHQ8BAf8EBAMCB4AwgfMGCCsGAQUFBwEBBIHmMIHjMIHg
BggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2Fy
aW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMv
MDM1NzI3MmMtYTc5YS00NWJmLTk1ODYtOTJkZDQ5ZWYzMjIzLzE0MzNlYmZmLWRm
ZDYtNGM1Yy1iN2ZmLTk5Yzg1MTM5ZDRhOC8yNzhhYWI4NzhmMjY2MmNlMTRlOTA1
ZTE4ZWJjYjc1MjJmOTJiMzY4NGJjNDg2NWI0ZC5jZXIwgZ4GCCsGAQUFBwELBIGR
MIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h
bWF6b25hd3MuY29tL3ZvbHVtZS8xNmYxZmZlZS03NDYxLTQ2NzQtYmIwNS1mZGRl
ZmE5YTAyYzYvMGNlOWQzNWYtZTNkMC00MTNlLThkY2UtOWI3ODdhMzI1ZTM3LnJv
YTCBiAYDVR0fBIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0
LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvMTZmMWZmZWUtNzQ2MS00Njc0LWJiMDUt
ZmRkZWZhOWEwMmM2L0ptTE9GT2tGNFk2OHQxSXZrck5vUzhTR1cwMC5jcmwwGAYD
VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw
BgMEAMckeDANBgkqhkiG9w0BAQsFAAOCAQEAEevaci3jP4+4ER1n+lpTcV0cILDK
DO29RTl8RMqqQcr0FN488LjA20Xx38Rp/U6ha6JqoKYWQ2evXlxIXrZLEPlzRVym
AlHXkKLPp8BCNGf8rUwPCjwwjpDrmYSyFHJOPO2grvPOkqcLHK3zPehT49O/q4y1
UwhU1nZ0BpmMYvSHw5z9EnJpZrPWUL6oSj2dGTPvhdcSdlMkUqHfROW9MnC3sTvF
BWGRRb7JIhvfDtK0KKUsCbbH43nc/gmXD27gvPrxG+1d6z8KZq536QrCjEuM9Tr9
tAcq0UNTJs8fHglv7nudYyJ0RkfrXx/BJ9mrIDmGhLSrQgyp2ubhDJjqAQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:46:48 2024 by rpki-client on console-ams.rpki-client.org