Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/2d0989ec-78b0-4f89-85da-4fa7ac03050c.roa
File: 2d0989ec-78b0-4f89-85da-4fa7ac03050c.roa (raw, json)
Hash identifier: ZiCHPb8/AX/cg2YGggRf4xp6h51UH9M7wN002XuxnTQ=
Subject key identifier: B7:62:08:1B:06:BE:19:1B:64:A4:1C:6C:74:CB:4B:7C:85:6F:53:64
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 48D033955EA862B7B89A4CE3CF7CBAA10042F631
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/2d0989ec-78b0-4f89-85da-4fa7ac03050c.roa
Signing time: Thu 29 Jun 2023 00:00:00 +0000
ROA not before: Thu 29 Jun 2023 00:00:00 +0000
ROA not after: Thu 03 Aug 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
48:d0:33:95:5e:a8:62:b7:b8:9a:4c:e3:cf:7c:ba:a1:00:42:f6:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Jun 29 00:00:00 2023 GMT
Not After : Aug 3 23:59:59 2023 GMT
Subject: serialNumber=3227e615605cd48df48e135fee87d468422f72f92ec98857dbcb9998be039d8b, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:3e:c6:31:ac:49:92:e5:80:b5:89:a5:c7:b6:
53:58:da:a0:98:e8:87:c5:79:6e:3e:87:90:4b:ab:
5a:45:6f:e8:f8:55:6c:84:21:03:c7:16:94:70:a4:
35:04:15:51:76:c5:32:14:34:2c:40:85:e1:41:ed:
bd:46:28:9c:95:a2:33:20:69:b9:4c:a3:db:cd:ae:
5a:c2:20:e6:fb:b2:42:6c:8c:7f:30:02:ea:4e:62:
4f:d6:e8:ff:32:a8:e9:90:5a:d1:b6:d0:11:68:a6:
be:79:a3:0f:47:cd:d3:6e:e4:96:72:3b:cb:05:e7:
e4:73:84:86:cf:94:8f:37:45:ca:c7:b5:6a:eb:38:
bd:49:df:44:31:b4:10:3a:36:80:6f:fc:1f:ee:2a:
4b:30:22:a6:73:77:0b:06:1e:10:da:d3:4f:ef:33:
26:ae:df:4b:3e:fd:10:ad:ba:02:44:79:2a:ce:2c:
1e:56:5c:15:a8:e8:9e:c1:58:69:38:6e:7b:e1:70:
4c:c4:f7:52:b5:62:6c:88:be:14:42:02:25:e8:15:
59:8b:68:c5:fc:48:74:ca:9a:dd:c7:f7:10:3f:ab:
02:a9:4b:08:5d:05:7c:a4:2c:49:0a:25:b0:51:d2:
bf:5f:9a:1b:64:02:af:e7:a0:67:96:20:dd:23:e4:
b6:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:62:08:1B:06:BE:19:1B:64:A4:1C:6C:74:CB:4B:7C:85:6F:53:64
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/2d0989ec-78b0-4f89-85da-4fa7ac03050c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
8b:e1:eb:e5:df:25:8a:16:b5:66:81:50:8f:2e:95:76:9a:8f:
5c:cc:b3:67:fa:a1:47:d0:0f:3f:fd:6f:02:40:ea:43:dc:83:
34:ee:76:50:fb:ae:d2:c2:e3:dd:32:eb:f5:68:24:94:a9:af:
05:03:4a:8a:9b:76:a6:3f:52:05:16:92:7d:bf:a8:46:a0:79:
39:c9:d6:e4:71:ed:52:84:06:2f:be:8c:43:74:4f:98:94:b5:
ae:cb:eb:ee:c8:1d:cd:d9:3a:f6:5f:ae:ef:f6:49:37:68:ca:
47:90:62:dd:f5:73:e9:0e:46:87:c0:d6:b9:5a:58:76:dd:ff:
37:aa:6c:66:98:ee:41:54:46:4f:54:34:45:25:25:24:84:2a:
79:ec:8d:f6:ec:0f:4e:e9:8b:fe:16:09:de:19:39:72:de:7b:
f4:12:15:3a:bc:fa:90:39:fb:ba:1c:5a:57:3d:0f:f9:e0:73:
0f:4a:70:01:c7:5b:58:a5:6f:b9:e3:f3:91:5f:b8:0f:31:c3:
d4:7b:9c:e3:f7:52:a0:8f:7f:cc:80:35:69:f3:c2:bb:da:1a:
e4:1f:b0:e6:33:5b:f3:41:df:5d:e5:12:44:2e:ad:13:ec:36:
b2:0b:f2:b0:b2:c3:5c:1c:a8:65:5a:23:84:79:bc:ee:d0:3b:
79:ff:e5:c7
-----BEGIN CERTIFICATE-----
MIIF+DCCBOCgAwIBAgIUSNAzlV6oYre4mkzjz3y6oQBC9jEwDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyMjc4YWFiODc4ZjI2NjJjZTE0ZTkwNWUxOGViY2I3NTIy
ZjkyYjM2ODRiYzQ4NjViNGQwHhcNMjMwNjI5MDAwMDAwWhcNMjMwODAzMjM1OTU5
WjB6MUkwRwYDVQQFE0AzMjI3ZTYxNTYwNWNkNDhkZjQ4ZTEzNWZlZTg3ZDQ2ODQy
MmY3MmY5MmVjOTg4NTdkYmNiOTk5OGJlMDM5ZDhiMS0wKwYDVQQDEyRjMGNlMjNl
YS00M2ZjLTRiZTQtYmVlZS1jMDE0NzgxMjJhMGUwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQCmPsYxrEmS5YC1iaXHtlNY2qCY6IfFeW4+h5BLq1pFb+j4
VWyEIQPHFpRwpDUEFVF2xTIUNCxAheFB7b1GKJyVojMgablMo9vNrlrCIOb7skJs
jH8wAupOYk/W6P8yqOmQWtG20BFopr55ow9HzdNu5JZyO8sF5+RzhIbPlI83RcrH
tWrrOL1J30QxtBA6NoBv/B/uKkswIqZzdwsGHhDa00/vMyau30s+/RCtugJEeSrO
LB5WXBWo6J7BWGk4bnvhcEzE91K1YmyIvhRCAiXoFVmLaMX8SHTKmt3H9xA/qwKp
SwhdBXykLEkKJbBR0r9fmhtkAq/noGeWIN0j5LYdAgMBAAGjggKxMIICrTAdBgNV
HQ4EFgQUt2IIGwa+GRtkpBxsdMtLfIVvU2QwHwYDVR0jBBgwFoAUVajdRdlEE/nR
kvUsY86M+8YUlrgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy8xNDMzZWJmZi1k
ZmQ2LTRjNWMtYjdmZi05OWM4NTEzOWQ0YTgvMjc4YWFiODc4ZjI2NjJjZTE0ZTkw
NWUxOGViY2I3NTIyZjkyYjM2ODRiYzQ4NjViNGQuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvMTZmMWZmZWUtNzQ2MS00Njc0LWJiMDUtZmRk
ZWZhOWEwMmM2LzJkMDk4OWVjLTc4YjAtNGY4OS04NWRhLTRmYTdhYzAzMDUwYy5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzE2ZjFmZmVlLTc0NjEtNDY3NC1iYjA1
LWZkZGVmYTlhMDJjNi9KbUxPRk9rRjRZNjh0MUl2a3JOb1M4U0dXMDAuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBADHJHgwDQYJKoZIhvcNAQELBQADggEBAIvh6+XfJYoWtWaBUI8ulXaaj1zM
s2f6oUfQDz/9bwJA6kPcgzTudlD7rtLC490y6/VoJJSprwUDSoqbdqY/UgUWkn2/
qEageTnJ1uRx7VKEBi++jEN0T5iUta7L6+7IHc3ZOvZfru/2STdoykeQYt31c+kO
RofA1rlaWHbd/zeqbGaY7kFURk9UNEUlJSSEKnnsjfbsD07pi/4WCd4ZOXLee/QS
FTq8+pA5+7ocWlc9D/ngcw9KcAHHW1ilb7nj85FfuA8xw9R7nOP3UqCPf8yANWnz
wrvaGuQfsOYzW/NB313lEkQurRPsNrIL8rCyw1wcqGVaI4R5vO7QO3n/5cc=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:46:58 2024 by rpki-client on console-ams.rpki-client.org