Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/285028f5-817b-42f1-a63f-6a0c81decb85.roa
File: 285028f5-817b-42f1-a63f-6a0c81decb85.roa (raw, json)
Hash identifier: zzFdyLEdGWbTXEEt15ETkELXeqF5fRFUARikl3+GklM=
Subject key identifier: 4B:60:28:BB:72:F3:80:3C:9C:02:93:B8:1F:24:CA:55:D4:2A:83:30
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 4E84307F7E8E3E13DFE5CC187D58819B38FAEABF
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/285028f5-817b-42f1-a63f-6a0c81decb85.roa
Signing time: Wed 09 Aug 2023 00:00:00 +0000
ROA not before: Wed 09 Aug 2023 00:00:00 +0000
ROA not after: Wed 13 Sep 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4e:84:30:7f:7e:8e:3e:13:df:e5:cc:18:7d:58:81:9b:38:fa:ea:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Aug 9 00:00:00 2023 GMT
Not After : Sep 13 23:59:59 2023 GMT
Subject: serialNumber=89f156477bf27281160e46fc9c7d5dee8b8b7c6f8e338d7839716ffa5c3e0bec, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:42:50:88:13:21:26:44:1c:9d:4c:c8:e9:a7:
8e:52:7a:a2:51:b2:1a:30:07:47:ff:f7:56:a0:11:
44:ae:97:29:bd:ee:6c:e0:e6:7d:f2:26:1b:ec:c6:
8f:ad:f3:b2:b0:03:36:84:14:e2:94:0a:f5:48:c0:
07:70:21:0c:09:b3:50:ed:5c:70:c6:a4:32:f4:54:
c3:18:74:6a:68:59:63:07:ba:7a:74:92:7a:b1:9a:
f4:55:2e:9c:b3:91:15:28:ec:e3:9c:f6:d1:e3:e8:
59:b0:67:b5:1e:f6:3a:21:87:a1:54:ee:5b:a9:b9:
89:a9:85:e8:57:b1:75:33:2b:cc:13:6e:f7:52:17:
69:15:72:9e:51:2f:32:e5:67:f9:a6:56:ba:55:f7:
f1:cb:b8:b2:9a:b1:8b:ed:9d:24:75:9d:8a:99:02:
93:c5:6b:d1:22:b0:4d:79:f4:e4:0e:99:57:ff:27:
db:34:02:bf:50:9a:2b:11:de:05:f5:0b:3a:cc:6a:
d8:f0:ca:97:d2:24:6f:43:bf:79:c2:68:22:63:9a:
13:aa:8e:15:0f:4d:25:5b:77:3a:4f:56:cc:0b:30:
09:dd:79:06:4a:57:c9:9a:83:49:f5:5a:12:fe:fd:
62:62:17:2b:dc:fd:c1:45:b6:b3:0a:fa:92:ba:05:
94:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:60:28:BB:72:F3:80:3C:9C:02:93:B8:1F:24:CA:55:D4:2A:83:30
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/285028f5-817b-42f1-a63f-6a0c81decb85.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
8e:cb:dd:bf:c1:bc:26:a9:a4:13:44:07:4a:95:ad:8f:74:55:
60:19:ee:a1:d5:8c:b6:ca:25:f8:57:03:57:39:a9:04:71:53:
00:9e:e2:73:32:4a:95:90:a0:51:e7:17:0f:70:de:f3:55:70:
cb:8c:93:23:96:72:86:20:35:66:09:9e:f6:16:21:9d:59:b9:
80:b4:29:36:63:47:12:29:02:ec:ec:d2:cf:1d:70:a7:13:44:
ef:20:71:1e:11:e7:c3:c8:1d:bd:4d:aa:76:18:9d:63:e7:41:
8c:66:ee:a0:58:cd:33:1d:4c:d6:d4:da:6e:6d:ad:b7:dd:77:
01:ae:c6:28:a6:9a:56:24:3d:a0:58:21:4d:46:ab:7f:89:f0:
46:8e:b8:55:72:e4:03:a5:c1:1b:a0:f7:a0:2e:15:21:45:87:
7e:3d:ac:ce:18:dc:08:2d:1b:d5:0d:32:ae:be:99:39:50:87:
97:18:80:a5:1f:23:5b:49:b5:a9:9a:18:82:74:d8:fd:7e:49:
9f:97:43:bc:e7:23:f2:b8:cf:75:52:f9:7c:c6:28:93:3c:fd:
7f:f8:a2:3d:53:33:7b:83:11:86:f6:ac:3d:80:13:ca:a9:69:
14:f8:e8:02:cb:e3:cc:fe:45:c5:57:fd:2d:9b:6a:ae:eb:6e:
51:f0:63:9c
-----BEGIN CERTIFICATE-----
MIIF+DCCBOCgAwIBAgIUToQwf36OPhPf5cwYfViBmzj66r8wDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyMjc4YWFiODc4ZjI2NjJjZTE0ZTkwNWUxOGViY2I3NTIy
ZjkyYjM2ODRiYzQ4NjViNGQwHhcNMjMwODA5MDAwMDAwWhcNMjMwOTEzMjM1OTU5
WjB6MUkwRwYDVQQFE0A4OWYxNTY0NzdiZjI3MjgxMTYwZTQ2ZmM5YzdkNWRlZThi
OGI3YzZmOGUzMzhkNzgzOTcxNmZmYTVjM2UwYmVjMS0wKwYDVQQDEyRjMGNlMjNl
YS00M2ZjLTRiZTQtYmVlZS1jMDE0NzgxMjJhMGUwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQDLQlCIEyEmRBydTMjpp45SeqJRshowB0f/91agEUSulym9
7mzg5n3yJhvsxo+t87KwAzaEFOKUCvVIwAdwIQwJs1DtXHDGpDL0VMMYdGpoWWMH
unp0knqxmvRVLpyzkRUo7OOc9tHj6FmwZ7Ue9johh6FU7lupuYmphehXsXUzK8wT
bvdSF2kVcp5RLzLlZ/mmVrpV9/HLuLKasYvtnSR1nYqZApPFa9EisE159OQOmVf/
J9s0Ar9QmisR3gX1CzrMatjwypfSJG9Dv3nCaCJjmhOqjhUPTSVbdzpPVswLMAnd
eQZKV8mag0n1WhL+/WJiFyvc/cFFtrMK+pK6BZSRAgMBAAGjggKxMIICrTAdBgNV
HQ4EFgQUS2Aou3LzgDycApO4HyTKVdQqgzAwHwYDVR0jBBgwFoAUVajdRdlEE/nR
kvUsY86M+8YUlrgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy8xNDMzZWJmZi1k
ZmQ2LTRjNWMtYjdmZi05OWM4NTEzOWQ0YTgvMjc4YWFiODc4ZjI2NjJjZTE0ZTkw
NWUxOGViY2I3NTIyZjkyYjM2ODRiYzQ4NjViNGQuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvMTZmMWZmZWUtNzQ2MS00Njc0LWJiMDUtZmRk
ZWZhOWEwMmM2LzI4NTAyOGY1LTgxN2ItNDJmMS1hNjNmLTZhMGM4MWRlY2I4NS5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzE2ZjFmZmVlLTc0NjEtNDY3NC1iYjA1
LWZkZGVmYTlhMDJjNi9KbUxPRk9rRjRZNjh0MUl2a3JOb1M4U0dXMDAuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBADHJHgwDQYJKoZIhvcNAQELBQADggEBAI7L3b/BvCappBNEB0qVrY90VWAZ
7qHVjLbKJfhXA1c5qQRxUwCe4nMySpWQoFHnFw9w3vNVcMuMkyOWcoYgNWYJnvYW
IZ1ZuYC0KTZjRxIpAuzs0s8dcKcTRO8gcR4R58PIHb1NqnYYnWPnQYxm7qBYzTMd
TNbU2m5trbfddwGuxiimmlYkPaBYIU1Gq3+J8EaOuFVy5AOlwRug96AuFSFFh349
rM4Y3AgtG9UNMq6+mTlQh5cYgKUfI1tJtamaGIJ02P1+SZ+XQ7znI/K4z3VS+XzG
KJM8/X/4oj1TM3uDEYb2rD2AE8qpaRT46ALL48z+RcVX/S2baq7rblHwY5w=
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:41:15 2024 by rpki-client on console-fra.rpki-client.org