Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/2d72894a-2fa4-413b-ba15-24fea466dc72.roa
File: 2d72894a-2fa4-413b-ba15-24fea466dc72.roa (raw, json)
Hash identifier: tQs3Ow9K8PEE3jUuFA6U2fzwP0FFGerTsFsnKRHcmF8=
Subject key identifier: 39:F0:FF:F4:56:61:32:63:11:E7:01:72:21:05:6E:5C:7D:45:48:C4
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 774662C98F02EBD8B619E9038FA3EA45D96FC09D
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/2d72894a-2fa4-413b-ba15-24fea466dc72.roa
Signing time: Fri 07 Jul 2023 00:00:00 +0000
ROA not before: Fri 07 Jul 2023 00:00:00 +0000
ROA not after: Fri 11 Aug 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
77:46:62:c9:8f:02:eb:d8:b6:19:e9:03:8f:a3:ea:45:d9:6f:c0:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Jul 7 00:00:00 2023 GMT
Not After : Aug 11 23:59:59 2023 GMT
Subject: serialNumber=acd4e1d6b087a620b36fd27419dbc4fe480ba5cf0ded680c28398b511e469ad2, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:d0:95:39:d2:94:2e:30:9b:9c:0f:a7:5b:b0:
60:1a:ad:b0:38:56:ea:7b:2a:a3:93:3e:08:b0:96:
bd:3f:5a:be:0f:49:ce:47:db:b9:70:8f:0d:cf:5e:
16:e3:5d:bf:5f:7e:fb:07:46:66:56:15:df:f9:02:
26:c7:da:78:7a:eb:17:c7:bb:aa:6f:de:f6:3e:36:
43:8c:2d:36:0c:63:17:f0:6d:58:ed:15:e1:bc:5a:
2b:01:dd:b4:17:2c:4d:b4:b9:06:44:36:be:07:8b:
bc:2f:dc:12:b4:2c:af:e6:8d:ee:cc:07:72:b4:9b:
93:8a:d8:5f:2f:86:4d:44:54:c3:45:08:19:bb:5c:
85:b7:e3:6e:69:83:a9:10:02:84:3a:6b:20:f0:d1:
0b:44:1d:84:e5:de:03:0f:1a:ad:d4:18:c5:4d:ee:
4e:90:38:30:a0:67:32:72:0d:75:20:38:ab:22:f9:
eb:8f:95:6f:b2:7d:67:49:2f:8b:35:e9:e8:15:f2:
3e:d0:2f:bc:4f:5e:c6:1b:98:6d:e6:93:b3:13:1a:
86:60:f6:ac:b0:87:e3:f3:3f:f1:bf:a0:17:02:57:
03:e1:4e:d4:49:bd:30:74:ee:52:e6:0c:95:c2:48:
1e:9e:7d:a4:58:c3:a1:75:76:57:57:15:03:e1:89:
58:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:F0:FF:F4:56:61:32:63:11:E7:01:72:21:05:6E:5C:7D:45:48:C4
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/2d72894a-2fa4-413b-ba15-24fea466dc72.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
0c:ae:c6:74:8a:2f:b0:25:9e:f7:71:74:13:da:1d:2d:d3:76:
b6:3b:aa:b4:d1:73:1f:05:03:3d:d8:a5:52:a4:ff:9a:7e:56:
db:17:53:a4:fd:5b:ac:d8:1f:4c:fd:ff:1d:96:9f:e3:6f:77:
7c:fb:2c:55:a8:f7:6d:5d:da:d5:fa:53:39:5d:de:f1:84:eb:
59:9c:34:dc:49:da:d6:c9:1c:2c:fe:19:93:87:ff:22:e3:56:
d0:f5:0a:2d:3a:9d:58:68:16:23:19:75:d3:94:bd:b7:b7:eb:
63:bd:70:cd:41:db:17:15:48:28:f7:72:64:56:3a:76:12:39:
ce:1c:1c:ca:48:01:f6:3e:bc:30:e2:0b:6c:94:4e:d7:23:48:
83:69:3d:44:44:43:41:14:7a:9f:d0:45:ff:1a:22:8b:57:8d:
5d:96:af:f2:40:ed:40:7b:26:80:2c:90:46:19:cc:32:e6:53:
d0:fe:e8:05:50:5b:ae:a3:ad:a9:2c:0b:03:ad:79:bd:8d:1b:
1e:15:ac:fe:37:c2:ba:e7:85:17:a9:30:6e:6e:8b:b6:29:32:
1a:3d:e9:6d:8e:a3:16:f4:98:2a:4e:82:ee:67:5a:eb:b3:28:
b6:d6:da:8b:d5:20:c0:c0:f2:e5:4a:f6:b1:55:81:1e:ea:9b:
0e:51:47:ee
-----BEGIN CERTIFICATE-----
MIIF+DCCBOCgAwIBAgIUd0ZiyY8C69i2GekDj6PqRdlvwJ0wDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyMjc4YWFiODc4ZjI2NjJjZTE0ZTkwNWUxOGViY2I3NTIy
ZjkyYjM2ODRiYzQ4NjViNGQwHhcNMjMwNzA3MDAwMDAwWhcNMjMwODExMjM1OTU5
WjB6MUkwRwYDVQQFE0BhY2Q0ZTFkNmIwODdhNjIwYjM2ZmQyNzQxOWRiYzRmZTQ4
MGJhNWNmMGRlZDY4MGMyODM5OGI1MTFlNDY5YWQyMS0wKwYDVQQDEyRjMGNlMjNl
YS00M2ZjLTRiZTQtYmVlZS1jMDE0NzgxMjJhMGUwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQC/0JU50pQuMJucD6dbsGAarbA4Vup7KqOTPgiwlr0/Wr4P
Sc5H27lwjw3PXhbjXb9ffvsHRmZWFd/5AibH2nh66xfHu6pv3vY+NkOMLTYMYxfw
bVjtFeG8WisB3bQXLE20uQZENr4Hi7wv3BK0LK/mje7MB3K0m5OK2F8vhk1EVMNF
CBm7XIW3425pg6kQAoQ6ayDw0QtEHYTl3gMPGq3UGMVN7k6QODCgZzJyDXUgOKsi
+euPlW+yfWdJL4s16egV8j7QL7xPXsYbmG3mk7MTGoZg9qywh+PzP/G/oBcCVwPh
TtRJvTB07lLmDJXCSB6efaRYw6F1dldXFQPhiVgpAgMBAAGjggKxMIICrTAdBgNV
HQ4EFgQUOfD/9FZhMmMR5wFyIQVuXH1FSMQwHwYDVR0jBBgwFoAUVajdRdlEE/nR
kvUsY86M+8YUlrgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy8xNDMzZWJmZi1k
ZmQ2LTRjNWMtYjdmZi05OWM4NTEzOWQ0YTgvMjc4YWFiODc4ZjI2NjJjZTE0ZTkw
NWUxOGViY2I3NTIyZjkyYjM2ODRiYzQ4NjViNGQuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvMTZmMWZmZWUtNzQ2MS00Njc0LWJiMDUtZmRk
ZWZhOWEwMmM2LzJkNzI4OTRhLTJmYTQtNDEzYi1iYTE1LTI0ZmVhNDY2ZGM3Mi5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzE2ZjFmZmVlLTc0NjEtNDY3NC1iYjA1
LWZkZGVmYTlhMDJjNi9KbUxPRk9rRjRZNjh0MUl2a3JOb1M4U0dXMDAuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBADHJHgwDQYJKoZIhvcNAQELBQADggEBAAyuxnSKL7AlnvdxdBPaHS3TdrY7
qrTRcx8FAz3YpVKk/5p+VtsXU6T9W6zYH0z9/x2Wn+Nvd3z7LFWo921d2tX6Uzld
3vGE61mcNNxJ2tbJHCz+GZOH/yLjVtD1Ci06nVhoFiMZddOUvbe362O9cM1B2xcV
SCj3cmRWOnYSOc4cHMpIAfY+vDDiC2yUTtcjSINpPUREQ0EUep/QRf8aIotXjV2W
r/JA7UB7JoAskEYZzDLmU9D+6AVQW66jraksCwOteb2NGx4VrP43wrrnhRepMG5u
i7YpMho96W2Ooxb0mCpOgu5nWuuzKLbW2ovVIMDA8uVK9rFVgR7qmw5RR+4=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:46:58 2024 by rpki-client on console-ams.rpki-client.org