Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/23b47b58-4cf8-4d56-be53-8e68811f1f76.roa
File: 23b47b58-4cf8-4d56-be53-8e68811f1f76.roa (raw, json)
Hash identifier: qufjdKoxHZtgWgODMw18XeNej8gzjnEW4BMjS4YPnv0=
Subject key identifier: CA:A7:D6:F4:0D:80:4F:ED:A6:5B:15:91:74:8C:21:2B:91:FA:68:A5
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 556DEF55443F5DAA9BA51B352EACE26FC1A08FAB
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/23b47b58-4cf8-4d56-be53-8e68811f1f76.roa
Signing time: Sun 06 Aug 2023 00:00:00 +0000
ROA not before: Sun 06 Aug 2023 00:00:00 +0000
ROA not after: Sun 10 Sep 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
55:6d:ef:55:44:3f:5d:aa:9b:a5:1b:35:2e:ac:e2:6f:c1:a0:8f:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Aug 6 00:00:00 2023 GMT
Not After : Sep 10 23:59:59 2023 GMT
Subject: serialNumber=f5c012bca45fdc94fb82983aaed388746086e684b075ed94111543ca0f87a229, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:c1:e2:ea:a8:f1:5e:ed:f9:a3:f9:dc:1b:68:
82:63:13:8e:c1:9b:71:6f:20:81:7d:48:34:75:5d:
12:f6:de:71:be:11:30:79:e5:49:96:f4:08:d6:56:
59:91:e0:05:32:56:69:35:43:43:0b:4d:f8:92:f0:
30:5b:a0:67:6c:08:d5:b2:a8:fa:6d:9e:5a:af:77:
2f:0e:99:d8:61:64:df:ac:25:67:93:c4:e4:1a:6d:
21:86:f9:13:13:df:de:df:0a:24:9b:14:bc:42:2f:
ab:ec:0c:86:74:13:48:8d:d6:76:a5:f7:bf:e0:1c:
e3:5c:ee:12:4b:f6:15:b3:e5:37:df:d7:bf:ba:0d:
32:45:3e:fc:f8:fd:49:c9:fc:3b:da:e4:3d:bc:43:
7a:dd:9e:c5:65:2a:b6:e3:13:a2:91:5c:46:7b:31:
38:2f:ff:4f:0c:66:16:9e:2b:d8:bf:fb:b5:b0:e7:
60:67:18:55:2f:75:af:47:be:a6:a5:f0:ed:90:b4:
e1:42:e3:8f:35:51:62:cc:3b:58:ba:13:e4:9f:b7:
76:05:7a:5a:b1:2d:ec:d8:51:bc:c2:ab:55:89:8d:
18:84:a9:3f:01:06:de:20:3c:c2:29:12:48:55:1b:
64:0e:91:db:df:3a:0a:36:c5:88:14:bd:4f:3e:d7:
df:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:A7:D6:F4:0D:80:4F:ED:A6:5B:15:91:74:8C:21:2B:91:FA:68:A5
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/23b47b58-4cf8-4d56-be53-8e68811f1f76.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
66:b0:b0:ab:93:86:26:94:f5:4d:a3:1c:14:03:9b:52:05:ae:
7f:21:ba:1c:90:da:3c:05:b4:6d:8d:47:69:1e:63:57:10:91:
4a:bd:6a:af:57:5d:32:1d:52:07:e8:89:4c:37:b1:a0:2b:18:
ed:47:3e:dd:91:21:f1:a9:cb:13:d9:19:f1:78:75:21:31:8a:
84:e8:34:2d:03:09:a4:f5:70:9a:8f:d8:6a:b4:cb:31:16:fd:
73:59:5b:fc:d9:ff:05:d4:e3:87:6a:d4:bc:1f:cc:c3:b7:ae:
44:f4:6b:16:f1:69:a3:ed:ff:eb:c9:ff:7f:27:13:b5:75:a4:
f4:88:cd:4f:4d:09:c2:d8:d3:9c:65:0c:ed:4d:9d:66:ee:d0:
01:62:22:a1:cd:43:ea:62:6a:55:58:e0:76:8f:6d:a5:4b:1f:
45:a6:8a:4c:84:d5:70:bd:f6:39:8e:73:21:95:d5:ea:79:ed:
06:5f:d2:17:d2:a4:10:b7:4e:7a:69:e5:bf:b1:6c:77:f4:74:
4f:19:0c:a3:46:96:e5:d0:09:f6:a4:3f:ef:bd:48:d4:75:72:
3c:84:1b:dd:f9:32:0b:f1:9c:f6:7e:af:b6:7c:56:95:17:42:
24:3d:fb:0a:59:b4:bf:7f:63:d7:c9:41:68:72:ba:45:22:05:
a7:a7:dd:62
-----BEGIN CERTIFICATE-----
MIIF+DCCBOCgAwIBAgIUVW3vVUQ/XaqbpRs1Lqzib8Ggj6swDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyMjc4YWFiODc4ZjI2NjJjZTE0ZTkwNWUxOGViY2I3NTIy
ZjkyYjM2ODRiYzQ4NjViNGQwHhcNMjMwODA2MDAwMDAwWhcNMjMwOTEwMjM1OTU5
WjB6MUkwRwYDVQQFE0BmNWMwMTJiY2E0NWZkYzk0ZmI4Mjk4M2FhZWQzODg3NDYw
ODZlNjg0YjA3NWVkOTQxMTE1NDNjYTBmODdhMjI5MS0wKwYDVQQDEyRjMGNlMjNl
YS00M2ZjLTRiZTQtYmVlZS1jMDE0NzgxMjJhMGUwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQCkweLqqPFe7fmj+dwbaIJjE47Bm3FvIIF9SDR1XRL23nG+
ETB55UmW9AjWVlmR4AUyVmk1Q0MLTfiS8DBboGdsCNWyqPptnlqvdy8OmdhhZN+s
JWeTxOQabSGG+RMT397fCiSbFLxCL6vsDIZ0E0iN1nal97/gHONc7hJL9hWz5Tff
17+6DTJFPvz4/UnJ/Dva5D28Q3rdnsVlKrbjE6KRXEZ7MTgv/08MZhaeK9i/+7Ww
52BnGFUvda9Hvqal8O2QtOFC4481UWLMO1i6E+Sft3YFelqxLezYUbzCq1WJjRiE
qT8BBt4gPMIpEkhVG2QOkdvfOgo2xYgUvU8+1989AgMBAAGjggKxMIICrTAdBgNV
HQ4EFgQUyqfW9A2AT+2mWxWRdIwhK5H6aKUwHwYDVR0jBBgwFoAUVajdRdlEE/nR
kvUsY86M+8YUlrgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy8xNDMzZWJmZi1k
ZmQ2LTRjNWMtYjdmZi05OWM4NTEzOWQ0YTgvMjc4YWFiODc4ZjI2NjJjZTE0ZTkw
NWUxOGViY2I3NTIyZjkyYjM2ODRiYzQ4NjViNGQuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvMTZmMWZmZWUtNzQ2MS00Njc0LWJiMDUtZmRk
ZWZhOWEwMmM2LzIzYjQ3YjU4LTRjZjgtNGQ1Ni1iZTUzLThlNjg4MTFmMWY3Ni5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzE2ZjFmZmVlLTc0NjEtNDY3NC1iYjA1
LWZkZGVmYTlhMDJjNi9KbUxPRk9rRjRZNjh0MUl2a3JOb1M4U0dXMDAuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBADHJHgwDQYJKoZIhvcNAQELBQADggEBAGawsKuThiaU9U2jHBQDm1IFrn8h
uhyQ2jwFtG2NR2keY1cQkUq9aq9XXTIdUgfoiUw3saArGO1HPt2RIfGpyxPZGfF4
dSExioToNC0DCaT1cJqP2Gq0yzEW/XNZW/zZ/wXU44dq1LwfzMO3rkT0axbxaaPt
/+vJ/38nE7V1pPSIzU9NCcLY05xlDO1NnWbu0AFiIqHNQ+pialVY4HaPbaVLH0Wm
ikyE1XC99jmOcyGV1ep57QZf0hfSpBC3Tnpp5b+xbHf0dE8ZDKNGluXQCfakP++9
SNR1cjyEG935MgvxnPZ+r7Z8VpUXQiQ9+wpZtL9/Y9fJQWhyukUiBaen3WI=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:46:56 2024 by rpki-client on console-ams.rpki-client.org