Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/30071dc2-e1a1-4893-9103-f6b5cffa49f0.roa
File: 30071dc2-e1a1-4893-9103-f6b5cffa49f0.roa (raw, json)
Hash identifier: 051YEsMru1+qto99EosCUE1KUWFyyVu+jEdyqIyrh8A=
Subject key identifier: 13:BD:4A:32:3B:C8:F9:7F:62:34:28:E1:22:D4:18:9B:D3:57:1B:1E
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 4B101EEDCC2782E6C2DB52CECCF76EF37B4DFDAE
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/30071dc2-e1a1-4893-9103-f6b5cffa49f0.roa
Signing time: Sat 07 Oct 2023 00:00:00 +0000
ROA not before: Sat 07 Oct 2023 00:00:00 +0000
ROA not after: Sat 11 Nov 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4b:10:1e:ed:cc:27:82:e6:c2:db:52:ce:cc:f7:6e:f3:7b:4d:fd:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Oct 7 00:00:00 2023 GMT
Not After : Nov 11 23:59:59 2023 GMT
Subject: serialNumber=7ccb6459c58d41b25802c3900576e965d5baf1994187a4557a4a92120b8e3d02, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:e1:24:82:2a:9d:a4:40:26:8e:d2:3e:e3:2d:
b5:9d:e1:ab:6a:95:dd:5a:70:06:94:4b:74:33:bf:
44:01:9d:9b:43:14:c5:d9:9e:bf:71:05:90:35:c8:
2e:65:59:86:e2:25:7d:7c:94:87:10:9e:dd:f5:75:
e6:20:e1:d7:ac:93:0e:40:73:02:30:08:d6:2c:f8:
d4:06:b6:7e:84:0b:61:d4:61:bd:ab:b2:fb:05:be:
95:9e:36:86:f9:ea:7e:b9:c4:fc:79:a8:08:f2:d4:
66:0a:c8:09:1e:69:24:17:2f:56:48:97:7e:cf:b6:
51:0f:59:2b:a6:bf:5b:1b:0e:81:df:f3:19:57:d6:
2e:9b:65:3b:9f:f0:37:a1:2a:24:26:eb:a5:5c:88:
81:88:0c:5e:e5:34:4d:c9:5a:ee:fa:c2:23:24:08:
aa:dd:40:bb:d5:47:d9:e9:2c:e4:86:06:b7:9f:93:
9f:8e:f0:8d:2d:f8:38:c0:fd:87:00:51:21:96:9d:
9e:e4:99:d4:ec:fa:a9:e7:17:68:ad:71:58:22:df:
b0:04:e5:dc:fe:5e:fa:0a:4f:45:69:9b:f6:2d:07:
47:9d:be:71:fb:de:b7:74:d2:c2:04:6a:ec:75:32:
3f:f5:21:80:97:4d:0e:cd:27:29:dc:48:0d:2d:81:
ea:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:BD:4A:32:3B:C8:F9:7F:62:34:28:E1:22:D4:18:9B:D3:57:1B:1E
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/30071dc2-e1a1-4893-9103-f6b5cffa49f0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
b6:ef:29:a5:e2:fc:44:3c:1a:aa:81:1a:29:e9:70:d0:4c:85:
8a:4d:8a:84:fe:ab:f2:0c:90:81:8b:8a:1c:90:36:a0:92:e5:
4b:cf:db:1f:c6:16:46:77:4e:ff:89:b2:c0:e3:d4:ba:4f:74:
fc:7d:09:77:f0:4a:8a:89:c1:2a:d6:ed:e7:66:66:69:c9:85:
be:b0:f9:a9:ac:73:26:0d:87:3f:81:a6:2f:62:67:4e:03:04:
52:96:f1:09:5f:0d:5a:49:ad:a7:50:61:7e:c8:23:33:5c:db:
6c:8c:d5:a9:5d:c6:da:e1:00:1e:be:05:a3:95:4d:aa:47:9b:
f1:e7:d6:b9:c9:ec:d8:0d:75:fb:25:44:42:48:be:84:a1:dc:
4c:ee:40:74:59:e3:2b:f6:7a:26:23:7e:ff:24:2c:ed:3e:76:
d5:69:d2:91:b9:2a:8c:70:2f:d4:63:03:2d:87:74:2f:99:cc:
e4:4b:0e:c0:7c:da:40:5c:a1:19:71:fd:54:ee:2b:43:b0:35:
2e:ff:cf:31:34:23:96:6b:b0:5c:05:50:84:34:98:e0:f3:00:
6e:43:c3:c6:5d:4f:93:c1:ed:6c:52:79:c4:bc:c9:0c:b1:e2:
39:c6:a2:8a:31:92:58:41:f2:63:a9:fa:69:05:86:c1:c3:e4:
9a:a9:2e:2a
-----BEGIN CERTIFICATE-----
MIIF+DCCBOCgAwIBAgIUSxAe7cwngubC21LOzPdu83tN/a4wDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyMjc4YWFiODc4ZjI2NjJjZTE0ZTkwNWUxOGViY2I3NTIy
ZjkyYjM2ODRiYzQ4NjViNGQwHhcNMjMxMDA3MDAwMDAwWhcNMjMxMTExMjM1OTU5
WjB6MUkwRwYDVQQFE0A3Y2NiNjQ1OWM1OGQ0MWIyNTgwMmMzOTAwNTc2ZTk2NWQ1
YmFmMTk5NDE4N2E0NTU3YTRhOTIxMjBiOGUzZDAyMS0wKwYDVQQDEyRjMGNlMjNl
YS00M2ZjLTRiZTQtYmVlZS1jMDE0NzgxMjJhMGUwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQC44SSCKp2kQCaO0j7jLbWd4atqld1acAaUS3Qzv0QBnZtD
FMXZnr9xBZA1yC5lWYbiJX18lIcQnt31deYg4deskw5AcwIwCNYs+NQGtn6EC2HU
Yb2rsvsFvpWeNob56n65xPx5qAjy1GYKyAkeaSQXL1ZIl37PtlEPWSumv1sbDoHf
8xlX1i6bZTuf8DehKiQm66VciIGIDF7lNE3JWu76wiMkCKrdQLvVR9npLOSGBref
k5+O8I0t+DjA/YcAUSGWnZ7kmdTs+qnnF2itcVgi37AE5dz+XvoKT0Vpm/YtB0ed
vnH73rd00sIEaux1Mj/1IYCXTQ7NJyncSA0tgertAgMBAAGjggKxMIICrTAdBgNV
HQ4EFgQUE71KMjvI+X9iNCjhItQYm9NXGx4wHwYDVR0jBBgwFoAUVajdRdlEE/nR
kvUsY86M+8YUlrgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy8xNDMzZWJmZi1k
ZmQ2LTRjNWMtYjdmZi05OWM4NTEzOWQ0YTgvMjc4YWFiODc4ZjI2NjJjZTE0ZTkw
NWUxOGViY2I3NTIyZjkyYjM2ODRiYzQ4NjViNGQuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvMTZmMWZmZWUtNzQ2MS00Njc0LWJiMDUtZmRk
ZWZhOWEwMmM2LzMwMDcxZGMyLWUxYTEtNDg5My05MTAzLWY2YjVjZmZhNDlmMC5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzE2ZjFmZmVlLTc0NjEtNDY3NC1iYjA1
LWZkZGVmYTlhMDJjNi9KbUxPRk9rRjRZNjh0MUl2a3JOb1M4U0dXMDAuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBADHJHgwDQYJKoZIhvcNAQELBQADggEBALbvKaXi/EQ8GqqBGinpcNBMhYpN
ioT+q/IMkIGLihyQNqCS5UvP2x/GFkZ3Tv+JssDj1LpPdPx9CXfwSoqJwSrW7edm
ZmnJhb6w+amscyYNhz+Bpi9iZ04DBFKW8QlfDVpJradQYX7IIzNc22yM1aldxtrh
AB6+BaOVTapHm/Hn1rnJ7NgNdfslREJIvoSh3EzuQHRZ4yv2eiYjfv8kLO0+dtVp
0pG5KoxwL9RjAy2HdC+ZzORLDsB82kBcoRlx/VTuK0OwNS7/zzE0I5ZrsFwFUIQ0
mODzAG5Dw8ZdT5PB7WxSecS8yQyx4jnGoooxklhB8mOp+mkFhsHD5JqpLio=
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:41:16 2024 by rpki-client on console-fra.rpki-client.org