Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/2976dca0-ec1d-47a2-ba35-024b02c0732f.roa
File: 2976dca0-ec1d-47a2-ba35-024b02c0732f.roa (raw, json)
Hash identifier: bPJjWn4d93Au6KNM1P77TQq8EMfWLRV/0e5T9Pn+BO0=
Subject key identifier: 5F:B3:C9:E5:F4:BC:92:E4:31:51:2B:36:10:29:E0:CE:22:9B:A0:0B
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 69AE9535DB2EF009D965A4C18F4984C8059F75CE
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/2976dca0-ec1d-47a2-ba35-024b02c0732f.roa
Signing time: Wed 08 Nov 2023 00:00:00 +0000
ROA not before: Wed 08 Nov 2023 00:00:00 +0000
ROA not after: Wed 13 Dec 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
69:ae:95:35:db:2e:f0:09:d9:65:a4:c1:8f:49:84:c8:05:9f:75:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Nov 8 00:00:00 2023 GMT
Not After : Dec 13 23:59:59 2023 GMT
Subject: serialNumber=41e6ed64fea22c0ade89beb24f52312b8d9d644c5f1ab66967a83cb7c2e0ca69, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:6d:4c:52:8f:24:2e:ff:88:d7:63:f5:74:47:
75:07:4e:c0:6b:05:fa:73:b0:ed:dd:3b:f4:c9:f9:
a9:93:b0:37:c8:31:6c:16:b6:2d:63:f0:a7:10:46:
45:38:0e:28:e2:c0:31:cb:ce:b1:d3:4f:b7:d8:2d:
f8:24:9e:18:55:94:ce:5f:61:59:64:71:00:c8:04:
e1:b6:3a:4c:86:ca:14:21:54:37:67:b0:a3:3e:26:
31:1b:c6:4e:ff:1a:b4:f6:a5:b7:37:a8:96:b0:86:
2d:c3:70:a8:0a:19:a3:ff:67:1f:99:64:56:15:02:
d1:56:22:ac:9a:3a:7d:0a:91:ec:4d:e5:72:1a:7a:
34:96:46:1a:8a:cf:07:44:58:30:0d:29:a1:c5:24:
78:e5:ec:41:fa:df:49:7b:45:c7:09:4a:9a:39:90:
3a:11:6c:51:19:46:4a:04:9a:f6:2e:56:57:57:2d:
f8:85:11:2a:8a:0f:fd:87:0e:b7:a5:df:72:ee:96:
1a:64:a3:63:e2:19:36:7b:89:a7:5f:53:98:72:2a:
71:75:af:0f:48:02:ac:94:f0:fd:74:b7:70:53:2b:
ba:d9:35:ad:48:82:bc:3c:f8:70:0b:b2:88:35:70:
8e:f0:db:41:22:50:31:9d:95:c4:14:d1:aa:27:6a:
4f:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:B3:C9:E5:F4:BC:92:E4:31:51:2B:36:10:29:E0:CE:22:9B:A0:0B
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/2976dca0-ec1d-47a2-ba35-024b02c0732f.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
7b:30:3b:85:6b:f8:a6:43:c7:a9:c0:f6:b7:7a:58:50:0c:b9:
c7:6c:d4:80:30:05:db:60:06:a9:89:9b:9c:2c:4b:73:1f:3a:
5d:65:38:4c:4c:92:31:4f:ee:6c:c8:da:35:0a:54:7c:ef:d2:
d8:3f:b7:7d:23:c6:64:9f:d6:cb:0c:80:0f:54:1d:5e:92:b1:
5d:e0:4a:8c:2e:13:74:e4:59:7f:96:4c:55:01:43:f5:65:3d:
e9:e4:01:46:f4:f6:00:83:e7:ac:03:e2:9f:16:91:a0:d1:14:
83:c5:c2:67:26:f9:e0:08:de:d9:d9:45:83:24:a5:e8:e8:e8:
a7:c6:e5:1c:fb:fa:1a:46:82:80:5a:52:9d:80:92:7f:8e:1a:
9a:46:74:6e:26:5f:1b:f9:b9:e1:56:d5:b7:12:a6:d5:fb:a5:
b3:78:41:38:8a:05:25:0f:75:48:14:cc:fe:9d:4b:78:b8:82:
b7:31:5a:35:f6:de:ce:da:c3:a5:7e:cc:8e:91:eb:ab:b3:a4:
e6:fb:ba:71:3e:ec:d9:25:eb:57:01:a3:42:54:2d:97:d3:51:
30:b1:e9:06:f3:94:88:b3:a6:43:54:d5:04:34:7a:82:be:00:
36:a1:0a:7e:02:7f:06:3a:b4:4e:3f:70:1b:9a:0a:1a:63:a8:
99:50:75:f8
-----BEGIN CERTIFICATE-----
MIIF+DCCBOCgAwIBAgIUaa6VNdsu8AnZZaTBj0mEyAWfdc4wDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyMjc4YWFiODc4ZjI2NjJjZTE0ZTkwNWUxOGViY2I3NTIy
ZjkyYjM2ODRiYzQ4NjViNGQwHhcNMjMxMTA4MDAwMDAwWhcNMjMxMjEzMjM1OTU5
WjB6MUkwRwYDVQQFE0A0MWU2ZWQ2NGZlYTIyYzBhZGU4OWJlYjI0ZjUyMzEyYjhk
OWQ2NDRjNWYxYWI2Njk2N2E4M2NiN2MyZTBjYTY5MS0wKwYDVQQDEyRjMGNlMjNl
YS00M2ZjLTRiZTQtYmVlZS1jMDE0NzgxMjJhMGUwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQDDbUxSjyQu/4jXY/V0R3UHTsBrBfpzsO3dO/TJ+amTsDfI
MWwWti1j8KcQRkU4DijiwDHLzrHTT7fYLfgknhhVlM5fYVlkcQDIBOG2OkyGyhQh
VDdnsKM+JjEbxk7/GrT2pbc3qJawhi3DcKgKGaP/Zx+ZZFYVAtFWIqyaOn0KkexN
5XIaejSWRhqKzwdEWDANKaHFJHjl7EH630l7RccJSpo5kDoRbFEZRkoEmvYuVldX
LfiFESqKD/2HDrel33Lulhpko2PiGTZ7iadfU5hyKnF1rw9IAqyU8P10t3BTK7rZ
Na1Igrw8+HALsog1cI7w20EiUDGdlcQU0aonak9NAgMBAAGjggKxMIICrTAdBgNV
HQ4EFgQUX7PJ5fS8kuQxUSs2ECngziKboAswHwYDVR0jBBgwFoAUVajdRdlEE/nR
kvUsY86M+8YUlrgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy8xNDMzZWJmZi1k
ZmQ2LTRjNWMtYjdmZi05OWM4NTEzOWQ0YTgvMjc4YWFiODc4ZjI2NjJjZTE0ZTkw
NWUxOGViY2I3NTIyZjkyYjM2ODRiYzQ4NjViNGQuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvMTZmMWZmZWUtNzQ2MS00Njc0LWJiMDUtZmRk
ZWZhOWEwMmM2LzI5NzZkY2EwLWVjMWQtNDdhMi1iYTM1LTAyNGIwMmMwNzMyZi5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzE2ZjFmZmVlLTc0NjEtNDY3NC1iYjA1
LWZkZGVmYTlhMDJjNi9KbUxPRk9rRjRZNjh0MUl2a3JOb1M4U0dXMDAuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBADHJHgwDQYJKoZIhvcNAQELBQADggEBAHswO4Vr+KZDx6nA9rd6WFAMucds
1IAwBdtgBqmJm5wsS3MfOl1lOExMkjFP7mzI2jUKVHzv0tg/t30jxmSf1ssMgA9U
HV6SsV3gSowuE3TkWX+WTFUBQ/VlPenkAUb09gCD56wD4p8WkaDRFIPFwmcm+eAI
3tnZRYMkpejo6KfG5Rz7+hpGgoBaUp2Akn+OGppGdG4mXxv5ueFW1bcSptX7pbN4
QTiKBSUPdUgUzP6dS3i4grcxWjX23s7aw6V+zI6R66uzpOb7unE+7Nkl61cBo0JU
LZfTUTCx6QbzlIizpkNU1QQ0eoK+ADahCn4CfwY6tE4/cBuaChpjqJlQdfg=
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:41:15 2024 by rpki-client on console-fra.rpki-client.org