Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/1d12c20c-975e-457d-9d72-3e3557bc5483.roa
File: 1d12c20c-975e-457d-9d72-3e3557bc5483.roa (raw, json)
Hash identifier: 4RVTDyx+3UcKihE24sv1R21gFRmKGZhtwk1KgAwMETU=
Subject key identifier: 2F:77:20:DB:31:3C:CB:0F:84:01:16:0F:AA:BA:82:E2:FD:E5:B6:7F
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 6B41D9CBB5F1D48C919441AE085FCB42DCED0C28
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/1d12c20c-975e-457d-9d72-3e3557bc5483.roa
Signing time: Thu 10 Aug 2023 00:00:00 +0000
ROA not before: Thu 10 Aug 2023 00:00:00 +0000
ROA not after: Thu 14 Sep 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6b:41:d9:cb:b5:f1:d4:8c:91:94:41:ae:08:5f:cb:42:dc:ed:0c:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Aug 10 00:00:00 2023 GMT
Not After : Sep 14 23:59:59 2023 GMT
Subject: serialNumber=5ee52d5a14dcaac335396bf9d6b06e4b87446c40386e8f51911a410ac1d2be80, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:4d:53:0c:03:f3:e9:ad:19:e2:d3:47:cd:c7:
cf:66:1f:ab:d2:e0:8e:ff:73:a3:60:0e:4c:dd:cf:
40:13:e7:e4:1e:8d:eb:1f:19:d7:ef:a8:bf:48:25:
a6:98:ab:f1:b0:2b:e6:f4:bd:0a:bb:5b:dd:44:35:
70:92:59:3a:e0:53:7d:2d:1c:a4:f2:f8:59:ab:72:
27:06:ea:f9:d5:48:c3:cf:ca:48:84:08:89:c6:77:
e9:f9:7d:66:9d:0c:d4:01:0c:a4:6b:2d:40:dd:82:
59:a4:f4:59:b9:18:bc:07:f2:21:5c:9a:68:56:9a:
05:af:be:0e:10:d9:08:d0:a4:1b:e4:a4:04:07:7c:
bd:7f:00:3f:2b:2c:19:66:36:5c:fc:ba:2e:64:c7:
b0:8b:52:45:3e:63:b5:32:31:5c:d5:9a:3c:1c:7b:
fe:c6:8e:94:a1:ca:28:33:69:c7:34:6b:5f:4b:41:
04:f6:d5:30:57:e2:fa:99:9e:f6:9d:78:e4:2c:bf:
cf:1c:27:a5:3b:06:cc:fe:23:9c:55:d8:f0:c7:93:
08:e5:95:05:e0:ce:93:9a:6a:f1:d9:fe:ca:43:c7:
8a:81:d8:f5:94:7c:96:fd:f4:91:0b:57:a4:81:7f:
a6:57:74:d7:b1:27:8c:4e:cc:db:fd:c7:ed:62:3b:
63:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:77:20:DB:31:3C:CB:0F:84:01:16:0F:AA:BA:82:E2:FD:E5:B6:7F
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/1d12c20c-975e-457d-9d72-3e3557bc5483.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
49:02:0f:36:97:e6:ff:bf:c4:fa:c9:36:ce:9c:b7:19:3d:67:
5a:94:66:49:c6:3c:82:1b:5b:e2:c1:97:fe:7e:aa:2f:81:3a:
09:2d:d5:fc:cd:29:f6:ea:7e:89:3e:ef:98:cf:e0:38:d0:17:
69:09:94:2a:1f:79:89:51:52:5e:5a:b8:60:90:dd:4b:1e:f3:
35:5e:bf:5b:3d:c1:cd:6b:49:6f:32:98:1e:7c:2b:68:06:0b:
dc:97:ad:be:fa:5f:a5:5d:a7:66:f7:06:dc:cd:b5:85:be:5e:
61:cb:ed:bc:62:70:38:96:80:b5:dd:aa:dd:43:ed:8c:05:3f:
5c:de:ee:23:15:39:21:cf:8b:cd:6f:67:12:a6:f1:6b:e8:60:
03:c3:4f:17:20:dc:51:41:e3:07:db:e7:b3:50:30:2c:bc:eb:
04:22:b5:1e:e5:50:34:63:c7:c5:b2:bd:ae:bf:02:67:4d:f3:
15:d8:9b:aa:94:2f:61:df:c8:8c:ad:b6:1f:8b:ec:ba:d1:62:
ac:25:db:d8:df:a4:ec:ab:c4:e3:46:c7:d6:50:f2:4a:d0:22:
9b:9a:11:d2:49:b6:70:72:9c:38:7e:78:8e:28:82:9e:8e:2a:
49:8d:64:0d:37:fb:0a:87:4f:ec:bf:ef:16:94:fe:d4:4c:ef:
2f:98:ae:87
-----BEGIN CERTIFICATE-----
MIIF+DCCBOCgAwIBAgIUa0HZy7Xx1IyRlEGuCF/LQtztDCgwDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyMjc4YWFiODc4ZjI2NjJjZTE0ZTkwNWUxOGViY2I3NTIy
ZjkyYjM2ODRiYzQ4NjViNGQwHhcNMjMwODEwMDAwMDAwWhcNMjMwOTE0MjM1OTU5
WjB6MUkwRwYDVQQFE0A1ZWU1MmQ1YTE0ZGNhYWMzMzUzOTZiZjlkNmIwNmU0Yjg3
NDQ2YzQwMzg2ZThmNTE5MTFhNDEwYWMxZDJiZTgwMS0wKwYDVQQDEyRjMGNlMjNl
YS00M2ZjLTRiZTQtYmVlZS1jMDE0NzgxMjJhMGUwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQDLTVMMA/PprRni00fNx89mH6vS4I7/c6NgDkzdz0AT5+Qe
jesfGdfvqL9IJaaYq/GwK+b0vQq7W91ENXCSWTrgU30tHKTy+FmrcicG6vnVSMPP
ykiECInGd+n5fWadDNQBDKRrLUDdglmk9Fm5GLwH8iFcmmhWmgWvvg4Q2QjQpBvk
pAQHfL1/AD8rLBlmNlz8ui5kx7CLUkU+Y7UyMVzVmjwce/7GjpShyigzacc0a19L
QQT21TBX4vqZnvadeOQsv88cJ6U7Bsz+I5xV2PDHkwjllQXgzpOaavHZ/spDx4qB
2PWUfJb99JELV6SBf6ZXdNexJ4xOzNv9x+1iO2PTAgMBAAGjggKxMIICrTAdBgNV
HQ4EFgQUL3cg2zE8yw+EARYPqrqC4v3ltn8wHwYDVR0jBBgwFoAUVajdRdlEE/nR
kvUsY86M+8YUlrgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy8xNDMzZWJmZi1k
ZmQ2LTRjNWMtYjdmZi05OWM4NTEzOWQ0YTgvMjc4YWFiODc4ZjI2NjJjZTE0ZTkw
NWUxOGViY2I3NTIyZjkyYjM2ODRiYzQ4NjViNGQuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvMTZmMWZmZWUtNzQ2MS00Njc0LWJiMDUtZmRk
ZWZhOWEwMmM2LzFkMTJjMjBjLTk3NWUtNDU3ZC05ZDcyLTNlMzU1N2JjNTQ4My5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzE2ZjFmZmVlLTc0NjEtNDY3NC1iYjA1
LWZkZGVmYTlhMDJjNi9KbUxPRk9rRjRZNjh0MUl2a3JOb1M4U0dXMDAuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBADHJHgwDQYJKoZIhvcNAQELBQADggEBAEkCDzaX5v+/xPrJNs6ctxk9Z1qU
ZknGPIIbW+LBl/5+qi+BOgkt1fzNKfbqfok+75jP4DjQF2kJlCofeYlRUl5auGCQ
3Use8zVev1s9wc1rSW8ymB58K2gGC9yXrb76X6Vdp2b3BtzNtYW+XmHL7bxicDiW
gLXdqt1D7YwFP1ze7iMVOSHPi81vZxKm8WvoYAPDTxcg3FFB4wfb57NQMCy86wQi
tR7lUDRjx8Wyva6/AmdN8xXYm6qUL2HfyIytth+L7LrRYqwl29jfpOyrxONGx9ZQ
8krQIpuaEdJJtnBynDh+eI4ogp6OKkmNZA03+wqHT+y/7xaU/tRM7y+Yroc=
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:41:13 2024 by rpki-client on console-fra.rpki-client.org