Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/2ada356f-42e0-4638-a94a-2f051332e241.roa
File: 2ada356f-42e0-4638-a94a-2f051332e241.roa (raw, json)
Hash identifier: LcYEeO2iScKZqtZa8UrpCAvGfTHU8Y1SPYFckgVKgcs=
Subject key identifier: 1D:99:91:8A:9A:D4:FE:0B:0D:4D:00:90:99:75:B1:99:97:37:5D:1E
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 25A99D2793D975CD3B9B4F2B0F9F240980E528A9
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/2ada356f-42e0-4638-a94a-2f051332e241.roa
Signing time: Thu 24 Aug 2023 00:00:00 +0000
ROA not before: Thu 24 Aug 2023 00:00:00 +0000
ROA not after: Thu 28 Sep 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
25:a9:9d:27:93:d9:75:cd:3b:9b:4f:2b:0f:9f:24:09:80:e5:28:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Aug 24 00:00:00 2023 GMT
Not After : Sep 28 23:59:59 2023 GMT
Subject: serialNumber=6eb9289a38843a0d722f09980fe2144ad3606b83912a491831e2a81e2489c423, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:cc:35:50:f5:cd:da:5e:e3:14:56:c5:a0:cf:
38:e4:9b:23:9c:fc:55:05:c1:f3:28:32:d5:b7:d3:
36:55:f1:fa:ec:85:e7:2c:cf:ad:1d:04:3b:2c:a7:
bc:e6:b1:e8:07:d4:65:c7:ad:c2:e7:eb:3c:0b:6b:
a3:a2:8e:d7:0d:fe:7d:17:d0:b9:58:b7:4c:77:4b:
9f:85:dd:8f:32:f6:62:05:a8:c8:6d:13:eb:fb:ab:
ee:a7:e8:9e:56:90:bb:d0:33:37:4c:ce:05:37:6a:
23:38:49:48:ff:96:9c:df:a4:8d:16:73:7b:70:82:
f3:cd:e4:fc:f7:a9:00:db:8e:ff:9d:34:13:69:8a:
0e:37:6e:5f:ad:49:12:9c:6d:2a:74:92:7b:e2:89:
8d:6d:88:df:9d:f1:0e:c9:ad:d5:ef:2f:29:72:ce:
05:92:46:d2:13:d2:1d:70:ce:94:6f:8f:c8:f6:56:
ab:3c:d5:a7:d5:7d:4a:3e:76:0d:9d:dd:8a:9f:bd:
d6:71:83:14:78:79:44:ef:ba:46:dd:23:d0:91:22:
26:cc:e1:41:f5:5a:51:82:f4:f9:ca:1e:b5:5e:c6:
97:3b:7b:ce:d1:87:e8:c8:0b:8d:52:84:e5:1a:81:
03:e3:6c:a4:96:74:c7:32:ed:bb:13:17:ad:f5:40:
2f:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:99:91:8A:9A:D4:FE:0B:0D:4D:00:90:99:75:B1:99:97:37:5D:1E
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/2ada356f-42e0-4638-a94a-2f051332e241.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
15:ef:2f:00:04:b8:18:f4:d3:73:90:cc:20:18:ac:2b:0a:73:
d3:2c:9c:0d:25:34:a3:f0:fb:6e:21:18:35:5f:1c:13:1c:ea:
60:87:74:bf:fb:1b:e2:48:90:04:8d:22:3a:09:37:26:8e:05:
65:b7:fd:ad:4b:23:57:6b:6e:07:a1:29:91:0b:66:0e:ff:39:
b2:e9:79:50:c4:42:8d:c1:0b:11:5a:7b:6f:b4:cd:62:8d:60:
f0:ac:7d:cd:7a:9b:f8:4d:46:4b:1d:88:9b:2d:fa:5b:53:fc:
33:6f:8f:b4:2c:b3:07:2e:1c:56:80:88:1b:02:5f:ab:41:77:
14:fe:32:62:36:0e:bf:fd:74:43:f0:7a:0f:59:3c:6f:ad:fe:
10:1c:d0:91:a9:73:89:b6:69:83:20:7c:64:ff:5d:5b:4c:5a:
2e:55:e5:13:dc:55:95:d9:41:7d:e3:92:88:60:ff:91:59:40:
cd:ca:30:cc:87:a6:2a:db:d4:1b:41:bb:48:7a:13:33:d4:9d:
e8:b8:fe:c5:29:bf:01:4c:c3:5e:d6:43:e4:d7:88:31:3b:a8:
ff:44:79:e3:2c:57:42:5a:96:6c:89:53:f3:34:39:36:34:6a:
e8:3e:9b:3d:5f:00:9a:87:53:99:19:1b:d1:4c:6e:e6:18:c2:
dd:5f:68:5a
-----BEGIN CERTIFICATE-----
MIIF+DCCBOCgAwIBAgIUJamdJ5PZdc07m08rD58kCYDlKKkwDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyMjc4YWFiODc4ZjI2NjJjZTE0ZTkwNWUxOGViY2I3NTIy
ZjkyYjM2ODRiYzQ4NjViNGQwHhcNMjMwODI0MDAwMDAwWhcNMjMwOTI4MjM1OTU5
WjB6MUkwRwYDVQQFE0A2ZWI5Mjg5YTM4ODQzYTBkNzIyZjA5OTgwZmUyMTQ0YWQz
NjA2YjgzOTEyYTQ5MTgzMWUyYTgxZTI0ODljNDIzMS0wKwYDVQQDEyRjMGNlMjNl
YS00M2ZjLTRiZTQtYmVlZS1jMDE0NzgxMjJhMGUwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQDVzDVQ9c3aXuMUVsWgzzjkmyOc/FUFwfMoMtW30zZV8frs
hecsz60dBDssp7zmsegH1GXHrcLn6zwLa6OijtcN/n0X0LlYt0x3S5+F3Y8y9mIF
qMhtE+v7q+6n6J5WkLvQMzdMzgU3aiM4SUj/lpzfpI0Wc3twgvPN5Pz3qQDbjv+d
NBNpig43bl+tSRKcbSp0knviiY1tiN+d8Q7JrdXvLylyzgWSRtIT0h1wzpRvj8j2
Vqs81afVfUo+dg2d3YqfvdZxgxR4eUTvukbdI9CRIibM4UH1WlGC9PnKHrVexpc7
e87Rh+jIC41ShOUagQPjbKSWdMcy7bsTF631QC9vAgMBAAGjggKxMIICrTAdBgNV
HQ4EFgQUHZmRiprU/gsNTQCQmXWxmZc3XR4wHwYDVR0jBBgwFoAUVajdRdlEE/nR
kvUsY86M+8YUlrgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy8xNDMzZWJmZi1k
ZmQ2LTRjNWMtYjdmZi05OWM4NTEzOWQ0YTgvMjc4YWFiODc4ZjI2NjJjZTE0ZTkw
NWUxOGViY2I3NTIyZjkyYjM2ODRiYzQ4NjViNGQuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvMTZmMWZmZWUtNzQ2MS00Njc0LWJiMDUtZmRk
ZWZhOWEwMmM2LzJhZGEzNTZmLTQyZTAtNDYzOC1hOTRhLTJmMDUxMzMyZTI0MS5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzE2ZjFmZmVlLTc0NjEtNDY3NC1iYjA1
LWZkZGVmYTlhMDJjNi9KbUxPRk9rRjRZNjh0MUl2a3JOb1M4U0dXMDAuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBADHJHgwDQYJKoZIhvcNAQELBQADggEBABXvLwAEuBj003OQzCAYrCsKc9Ms
nA0lNKPw+24hGDVfHBMc6mCHdL/7G+JIkASNIjoJNyaOBWW3/a1LI1drbgehKZEL
Zg7/ObLpeVDEQo3BCxFae2+0zWKNYPCsfc16m/hNRksdiJst+ltT/DNvj7Qsswcu
HFaAiBsCX6tBdxT+MmI2Dr/9dEPweg9ZPG+t/hAc0JGpc4m2aYMgfGT/XVtMWi5V
5RPcVZXZQX3jkohg/5FZQM3KMMyHpirb1BtBu0h6EzPUnei4/sUpvwFMw17WQ+TX
iDE7qP9EeeMsV0JalmyJU/M0OTY0aug+mz1fAJqHU5kZG9FMbuYYwt1faFo=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:46:58 2024 by rpki-client on console-ams.rpki-client.org