Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/11aad7c8-c517-4abc-9077-7627b3bc6e66.roa
File: 11aad7c8-c517-4abc-9077-7627b3bc6e66.roa (raw, json)
Hash identifier: te5gq50tSpqEtm9Y9NQ5m9QPvXUQ7FYXJTX9uOrKSGk=
Subject key identifier: DB:15:2C:79:A6:BD:63:59:BD:B7:6D:5C:34:FD:0D:F2:63:69:36:04
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 3F91FA7F28EC4210613C66C2176BADBD967CC5D8
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/11aad7c8-c517-4abc-9077-7627b3bc6e66.roa
Signing time: Wed 06 Sep 2023 00:00:00 +0000
ROA not before: Wed 06 Sep 2023 00:00:00 +0000
ROA not after: Wed 11 Oct 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3f:91:fa:7f:28:ec:42:10:61:3c:66:c2:17:6b:ad:bd:96:7c:c5:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Sep 6 00:00:00 2023 GMT
Not After : Oct 11 23:59:59 2023 GMT
Subject: serialNumber=6c2d406108c2a3815767e6a377c8b064ea4b85d9a3e032292cdeeacf4a436092, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:88:51:8c:c9:48:4e:08:77:4d:3e:27:7e:3a:
e4:12:63:14:2b:07:4b:1e:1f:63:e1:f4:1b:0e:d5:
0c:b1:8f:15:dc:32:ca:a6:6d:e9:f9:66:cf:54:e1:
df:ca:a4:3e:29:12:9b:35:42:c7:35:b0:0a:45:72:
4f:de:d0:51:e4:4b:5e:b3:e0:ce:19:12:c5:f6:d1:
0e:91:15:6d:4a:d6:bd:55:0b:8d:9d:1d:33:bb:02:
be:e4:25:bc:5e:be:69:b3:5c:14:05:33:cf:d0:66:
a1:b6:63:58:3f:08:b7:05:b6:8a:b4:c5:0a:c1:b8:
37:c0:19:6a:51:d7:8d:32:bb:b8:90:d9:a8:ee:26:
0c:9d:72:1b:bb:09:a0:4c:a3:2d:80:79:2e:91:3b:
97:16:fc:5c:11:b9:b5:f2:b0:bd:cb:2d:2f:6f:3d:
65:62:50:b1:64:12:ce:8c:f9:99:b1:39:ce:d5:89:
07:ed:36:62:5b:d7:2a:81:6a:d0:52:66:7b:1c:95:
f7:d6:dc:42:46:67:ca:34:30:0a:d5:9b:34:e9:b4:
86:55:39:f2:16:39:49:31:d0:9e:0d:46:a5:f9:6c:
55:1b:2e:44:62:a0:e3:c6:7e:f4:93:9f:ab:25:2f:
d9:9d:74:cc:93:5a:05:33:77:4b:5c:2e:03:6d:60:
92:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:15:2C:79:A6:BD:63:59:BD:B7:6D:5C:34:FD:0D:F2:63:69:36:04
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/11aad7c8-c517-4abc-9077-7627b3bc6e66.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
3a:e3:26:02:4d:52:37:d2:52:63:1d:e2:07:71:f8:35:a6:74:
b7:1d:04:f5:97:52:a3:d7:81:9b:7a:70:81:45:ee:7d:2f:de:
27:51:b7:bd:ff:4d:65:16:15:76:15:48:81:19:45:00:e4:37:
14:01:b6:96:99:24:c6:05:60:5f:57:c7:48:e2:39:0d:49:8b:
62:97:21:e5:75:2b:18:cf:d9:9f:1c:42:46:e3:55:47:2e:f7:
a2:c1:d4:12:bd:8e:36:0b:20:8b:5f:ca:09:4d:0f:1f:17:e8:
89:cb:8e:fd:03:0e:0f:dc:8b:60:09:cf:b2:4b:26:78:66:bf:
f7:09:0f:0c:47:69:39:92:c6:49:70:75:f1:1d:d5:a7:08:e7:
19:fc:5a:24:a4:e8:18:3b:cb:dd:b9:7f:36:82:e3:f5:c8:ff:
37:6b:53:51:8e:9c:12:36:1c:af:95:d7:3b:84:f7:45:7f:44:
aa:54:ee:90:15:3e:1a:20:2e:9c:0d:22:f6:cf:04:f4:80:31:
54:c2:2b:64:3d:13:bc:3f:47:c7:fd:ec:eb:92:a3:3e:68:05:
95:f4:26:02:e5:34:ba:8d:16:ae:39:ae:15:27:f0:46:71:57:
0e:c6:ba:4e:f5:43:3d:ce:e6:fc:53:b2:a8:cf:8d:59:3b:93:
59:aa:2f:24
-----BEGIN CERTIFICATE-----
MIIF+DCCBOCgAwIBAgIUP5H6fyjsQhBhPGbCF2utvZZ8xdgwDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyMjc4YWFiODc4ZjI2NjJjZTE0ZTkwNWUxOGViY2I3NTIy
ZjkyYjM2ODRiYzQ4NjViNGQwHhcNMjMwOTA2MDAwMDAwWhcNMjMxMDExMjM1OTU5
WjB6MUkwRwYDVQQFE0A2YzJkNDA2MTA4YzJhMzgxNTc2N2U2YTM3N2M4YjA2NGVh
NGI4NWQ5YTNlMDMyMjkyY2RlZWFjZjRhNDM2MDkyMS0wKwYDVQQDEyRjMGNlMjNl
YS00M2ZjLTRiZTQtYmVlZS1jMDE0NzgxMjJhMGUwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQCsiFGMyUhOCHdNPid+OuQSYxQrB0seH2Ph9BsO1QyxjxXc
Msqmben5Zs9U4d/KpD4pEps1Qsc1sApFck/e0FHkS16z4M4ZEsX20Q6RFW1K1r1V
C42dHTO7Ar7kJbxevmmzXBQFM8/QZqG2Y1g/CLcFtoq0xQrBuDfAGWpR140yu7iQ
2ajuJgydchu7CaBMoy2AeS6RO5cW/FwRubXysL3LLS9vPWViULFkEs6M+ZmxOc7V
iQftNmJb1yqBatBSZnsclffW3EJGZ8o0MArVmzTptIZVOfIWOUkx0J4NRqX5bFUb
LkRioOPGfvSTn6slL9mddMyTWgUzd0tcLgNtYJJvAgMBAAGjggKxMIICrTAdBgNV
HQ4EFgQU2xUseaa9Y1m9t21cNP0N8mNpNgQwHwYDVR0jBBgwFoAUVajdRdlEE/nR
kvUsY86M+8YUlrgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy8xNDMzZWJmZi1k
ZmQ2LTRjNWMtYjdmZi05OWM4NTEzOWQ0YTgvMjc4YWFiODc4ZjI2NjJjZTE0ZTkw
NWUxOGViY2I3NTIyZjkyYjM2ODRiYzQ4NjViNGQuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvMTZmMWZmZWUtNzQ2MS00Njc0LWJiMDUtZmRk
ZWZhOWEwMmM2LzExYWFkN2M4LWM1MTctNGFiYy05MDc3LTc2MjdiM2JjNmU2Ni5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzE2ZjFmZmVlLTc0NjEtNDY3NC1iYjA1
LWZkZGVmYTlhMDJjNi9KbUxPRk9rRjRZNjh0MUl2a3JOb1M4U0dXMDAuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBADHJHgwDQYJKoZIhvcNAQELBQADggEBADrjJgJNUjfSUmMd4gdx+DWmdLcd
BPWXUqPXgZt6cIFF7n0v3idRt73/TWUWFXYVSIEZRQDkNxQBtpaZJMYFYF9Xx0ji
OQ1Ji2KXIeV1KxjP2Z8cQkbjVUcu96LB1BK9jjYLIItfyglNDx8X6InLjv0DDg/c
i2AJz7JLJnhmv/cJDwxHaTmSxklwdfEd1acI5xn8WiSk6Bg7y925fzaC4/XI/zdr
U1GOnBI2HK+V1zuE90V/RKpU7pAVPhogLpwNIvbPBPSAMVTCK2Q9E7w/R8f97OuS
oz5oBZX0JgLlNLqNFq45rhUn8EZxVw7Guk71Qz3O5vxTsqjPjVk7k1mqLyQ=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:46:49 2024 by rpki-client on console-ams.rpki-client.org