Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/1db20e84-b6ed-45e1-91ea-1fb41770b37b.roa
File: 1db20e84-b6ed-45e1-91ea-1fb41770b37b.roa (raw, json)
Hash identifier: 2YO2hSSPV4Ngwc5Hgo7BoCMfzT1+zQvD/R/7XzHPGKg=
Subject key identifier: 46:40:8D:01:BE:F1:65:CA:5F:DC:CC:98:F1:0E:35:F9:61:95:29:9F
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 6765F80EDDEB901FDD2B9FC2BF06654B8C36E15C
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/1db20e84-b6ed-45e1-91ea-1fb41770b37b.roa
Signing time: Thu 01 Feb 2024 00:00:00 +0000
ROA not before: Thu 01 Feb 2024 00:00:00 +0000
ROA not after: Thu 07 Mar 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
67:65:f8:0e:dd:eb:90:1f:dd:2b:9f:c2:bf:06:65:4b:8c:36:e1:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Feb 1 00:00:00 2024 GMT
Not After : Mar 7 23:59:59 2024 GMT
Subject: serialNumber=71ee599f22a372fd500d1b4d25d439f9b4c6be5905cd4ce9caee732e3a9fc579, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:6a:cc:6f:12:4b:9d:7f:52:bc:79:86:85:4b:
c0:66:53:42:c2:79:d3:b2:27:54:1a:40:e3:80:64:
e0:17:bb:3d:4f:4b:49:50:a6:66:32:db:4b:7d:7c:
66:67:5e:6d:6c:5d:78:b6:a0:05:e9:e9:7d:a2:ea:
18:0d:db:1c:3f:08:2f:42:75:d1:69:ef:6d:9f:19:
c8:ef:08:43:19:fa:66:e6:f2:c2:a1:d7:e5:51:df:
ca:03:3d:2e:94:50:8d:84:8e:da:5d:b3:99:e6:0b:
29:6f:61:2b:8b:b5:25:c1:9e:5c:c9:cb:78:76:b8:
5f:72:3c:09:db:7f:73:09:20:2b:f7:bf:f7:63:cd:
13:91:31:d5:29:ff:48:03:c5:fd:b7:ff:d9:61:b9:
69:06:93:49:2d:06:7d:46:de:98:8a:57:a2:87:95:
d9:43:aa:63:85:e1:ca:6a:47:70:74:90:09:f6:80:
6c:6c:4e:48:f0:89:3f:48:82:7b:25:77:55:f0:0f:
83:5c:0c:4e:ea:75:5f:61:91:a6:79:4c:c6:c3:e4:
62:aa:90:93:17:dd:a6:00:80:67:52:62:14:23:f4:
45:f0:a0:70:37:0b:e7:ce:a6:96:bb:c9:29:fa:b8:
5f:6e:5a:86:54:25:fa:ab:bb:d1:1f:59:07:1a:61:
8e:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:40:8D:01:BE:F1:65:CA:5F:DC:CC:98:F1:0E:35:F9:61:95:29:9F
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/1db20e84-b6ed-45e1-91ea-1fb41770b37b.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
ac:7c:ef:8b:39:9f:fc:e8:87:35:3a:d6:87:bb:95:4b:40:c2:
f1:68:e1:cb:61:8c:80:17:48:c5:34:09:bc:a8:5d:e2:63:91:
10:84:00:ba:3a:57:48:5c:d8:ba:2c:f8:c4:64:7e:36:98:38:
8a:56:05:e4:54:23:97:b1:b6:63:ab:40:81:70:99:42:2b:b6:
df:5f:e8:7f:4f:93:da:2c:aa:75:6a:b1:1c:ff:ec:f7:e3:66:
3a:3f:b6:54:cc:12:aa:64:b3:5c:c2:c7:f8:56:86:de:58:dd:
74:14:08:57:a9:d3:f6:9b:82:1e:04:00:99:e9:78:ad:b0:f0:
70:66:d9:87:ba:48:3c:d7:d4:e7:0b:0b:64:e0:f3:11:41:3a:
a7:66:dc:7b:ec:0c:de:2d:b6:30:00:d6:a3:f8:bc:15:e8:69:
e9:26:ba:98:dc:06:5a:a4:48:1c:30:27:ec:c0:1e:99:c3:b6:
ae:0a:7b:1e:54:b5:b4:2f:50:14:de:e4:0b:f5:36:9c:c3:4c:
06:bf:81:8e:75:b2:12:93:8a:67:77:fe:af:f9:7b:36:19:b3:
60:dc:0a:7b:fc:10:60:16:5f:52:bf:dd:52:4d:67:01:12:0d:
f1:87:0a:14:13:04:82:1d:59:b2:07:13:26:ba:83:8a:fc:ea:
da:c8:c6:a3
-----BEGIN CERTIFICATE-----
MIIF+DCCBOCgAwIBAgIUZ2X4Dt3rkB/dK5/CvwZlS4w24VwwDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyMjc4YWFiODc4ZjI2NjJjZTE0ZTkwNWUxOGViY2I3NTIy
ZjkyYjM2ODRiYzQ4NjViNGQwHhcNMjQwMjAxMDAwMDAwWhcNMjQwMzA3MjM1OTU5
WjB6MUkwRwYDVQQFE0A3MWVlNTk5ZjIyYTM3MmZkNTAwZDFiNGQyNWQ0MzlmOWI0
YzZiZTU5MDVjZDRjZTljYWVlNzMyZTNhOWZjNTc5MS0wKwYDVQQDEyRjMGNlMjNl
YS00M2ZjLTRiZTQtYmVlZS1jMDE0NzgxMjJhMGUwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQCcasxvEkudf1K8eYaFS8BmU0LCedOyJ1QaQOOAZOAXuz1P
S0lQpmYy20t9fGZnXm1sXXi2oAXp6X2i6hgN2xw/CC9CddFp722fGcjvCEMZ+mbm
8sKh1+VR38oDPS6UUI2Ejtpds5nmCylvYSuLtSXBnlzJy3h2uF9yPAnbf3MJICv3
v/djzRORMdUp/0gDxf23/9lhuWkGk0ktBn1G3piKV6KHldlDqmOF4cpqR3B0kAn2
gGxsTkjwiT9Ignsld1XwD4NcDE7qdV9hkaZ5TMbD5GKqkJMX3aYAgGdSYhQj9EXw
oHA3C+fOppa7ySn6uF9uWoZUJfqru9EfWQcaYY6NAgMBAAGjggKxMIICrTAdBgNV
HQ4EFgQURkCNAb7xZcpf3MyY8Q41+WGVKZ8wHwYDVR0jBBgwFoAUVajdRdlEE/nR
kvUsY86M+8YUlrgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy8xNDMzZWJmZi1k
ZmQ2LTRjNWMtYjdmZi05OWM4NTEzOWQ0YTgvMjc4YWFiODc4ZjI2NjJjZTE0ZTkw
NWUxOGViY2I3NTIyZjkyYjM2ODRiYzQ4NjViNGQuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvMTZmMWZmZWUtNzQ2MS00Njc0LWJiMDUtZmRk
ZWZhOWEwMmM2LzFkYjIwZTg0LWI2ZWQtNDVlMS05MWVhLTFmYjQxNzcwYjM3Yi5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzE2ZjFmZmVlLTc0NjEtNDY3NC1iYjA1
LWZkZGVmYTlhMDJjNi9KbUxPRk9rRjRZNjh0MUl2a3JOb1M4U0dXMDAuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBADHJHgwDQYJKoZIhvcNAQELBQADggEBAKx874s5n/zohzU61oe7lUtAwvFo
4cthjIAXSMU0CbyoXeJjkRCEALo6V0hc2Los+MRkfjaYOIpWBeRUI5extmOrQIFw
mUIrtt9f6H9Pk9osqnVqsRz/7PfjZjo/tlTMEqpks1zCx/hWht5Y3XQUCFep0/ab
gh4EAJnpeK2w8HBm2Ye6SDzX1OcLC2Tg8xFBOqdm3HvsDN4ttjAA1qP4vBXoaekm
upjcBlqkSBwwJ+zAHpnDtq4Kex5UtbQvUBTe5Av1NpzDTAa/gY51shKTimd3/q/5
ezYZs2DcCnv8EGAWX1K/3VJNZwESDfGHChQTBIIdWbIHEya6g4r86trIxqM=
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:41:13 2024 by rpki-client on console-fra.rpki-client.org