Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/331f3a49-26cf-4da2-8269-78fd97de8c2d.roa
File: 331f3a49-26cf-4da2-8269-78fd97de8c2d.roa (raw, json)
Hash identifier: G0ywbfw/pGd6SrIwyZn2t7DVQzsH6vAhyqWGedhIfHs=
Subject key identifier: B9:A5:BF:AA:D1:B7:AB:FB:EB:B2:97:A5:00:1D:68:5F:6C:B7:8E:B4
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 728219C77807AA466528E6F7F45E55A52ABB6586
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/331f3a49-26cf-4da2-8269-78fd97de8c2d.roa
Signing time: Mon 04 Mar 2024 00:00:00 +0000
ROA not before: Mon 04 Mar 2024 00:00:00 +0000
ROA not after: Mon 08 Apr 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
72:82:19:c7:78:07:aa:46:65:28:e6:f7:f4:5e:55:a5:2a:bb:65:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Mar 4 00:00:00 2024 GMT
Not After : Apr 8 23:59:59 2024 GMT
Subject: serialNumber=454c744afa46b2677917dd5c623a9292ee9504788e7c03c90a9a48efa8dbc27a, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:7f:9f:f2:33:c4:94:c2:56:a8:6e:f4:08:a6:
f1:7c:ac:84:3e:47:c1:fd:e6:33:0f:ef:8a:91:90:
d3:07:db:30:a5:c1:50:f5:fa:9e:d3:a8:48:c4:ca:
a2:57:2d:f7:82:ab:19:d2:7c:3c:6e:ee:92:74:5f:
f8:aa:45:32:b2:62:f3:6d:0b:9f:45:51:2e:fd:8f:
d8:2a:93:f1:37:e2:ef:5b:37:38:0f:d6:9d:3a:29:
3e:e8:73:cc:fd:15:dc:5f:de:04:5f:ac:e8:84:02:
e5:12:f6:bf:35:96:12:dd:9c:5e:70:44:b4:f7:d6:
91:f6:87:d6:68:59:1e:7c:1d:3b:98:d7:d8:67:4b:
c1:ec:41:6f:6a:8c:f7:22:59:14:7e:06:06:98:74:
19:46:92:8e:1c:e5:37:35:41:95:a9:35:0c:36:8f:
ba:95:eb:62:ce:64:f3:55:fd:d4:b8:b6:5b:cc:c4:
7c:36:47:b3:14:91:2f:49:cc:dc:8e:7f:29:06:97:
5d:a9:6f:54:d6:4c:ba:1a:f7:06:96:f7:d9:16:64:
64:6a:c0:f4:a9:5c:1a:40:48:5a:c6:bd:1a:24:f4:
5c:5e:8a:a3:ee:ec:2a:84:72:18:4e:8b:9a:80:61:
ad:c3:8f:3b:96:7d:92:1b:27:da:58:81:81:b5:98:
3d:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:A5:BF:AA:D1:B7:AB:FB:EB:B2:97:A5:00:1D:68:5F:6C:B7:8E:B4
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/331f3a49-26cf-4da2-8269-78fd97de8c2d.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
87:01:9e:70:43:af:2e:a6:99:0f:99:fd:30:a3:5e:55:0b:22:
20:89:11:dc:3f:b4:d0:7f:fb:16:7b:57:21:9a:4d:3e:e1:19:
e8:ec:36:98:75:33:26:f7:92:d6:d6:71:bd:21:2c:51:b3:36:
ae:63:dc:6d:e7:12:2b:17:52:3d:0f:bf:51:4a:14:d6:ca:37:
a2:10:f8:17:00:9c:dd:23:b2:77:74:93:d1:3f:ca:a1:9a:e0:
1b:ab:1e:b0:86:a9:7a:43:d4:0c:b2:80:47:31:d3:77:4a:76:
b8:58:ca:1d:3b:fa:02:75:76:f1:4c:37:b3:7b:82:e3:cf:a7:
cb:e8:ce:84:79:82:c8:e8:71:c6:a9:d7:93:3f:b9:7c:33:58:
bc:c1:8b:1e:dc:5e:92:c6:29:1f:7c:76:09:7c:dd:07:fb:6b:
a6:34:2e:7d:61:48:7d:5b:9d:32:c2:71:8a:be:c0:03:1f:de:
c4:85:2d:d2:26:72:66:fd:65:25:7e:04:53:37:94:ff:5f:49:
3b:de:79:57:ee:ee:ce:bd:28:4c:18:9c:b3:78:28:2c:da:2e:
0a:af:26:21:38:fb:8f:7b:12:2b:d6:86:a7:f4:b6:03:38:fd:
1f:a9:7d:db:44:81:54:ad:57:3f:91:0b:df:7d:4b:e0:96:a8:
9f:34:ad:d9
-----BEGIN CERTIFICATE-----
MIIF+DCCBOCgAwIBAgIUcoIZx3gHqkZlKOb39F5VpSq7ZYYwDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyMjc4YWFiODc4ZjI2NjJjZTE0ZTkwNWUxOGViY2I3NTIy
ZjkyYjM2ODRiYzQ4NjViNGQwHhcNMjQwMzA0MDAwMDAwWhcNMjQwNDA4MjM1OTU5
WjB6MUkwRwYDVQQFE0A0NTRjNzQ0YWZhNDZiMjY3NzkxN2RkNWM2MjNhOTI5MmVl
OTUwNDc4OGU3YzAzYzkwYTlhNDhlZmE4ZGJjMjdhMS0wKwYDVQQDEyRjMGNlMjNl
YS00M2ZjLTRiZTQtYmVlZS1jMDE0NzgxMjJhMGUwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQDBf5/yM8SUwlaobvQIpvF8rIQ+R8H95jMP74qRkNMH2zCl
wVD1+p7TqEjEyqJXLfeCqxnSfDxu7pJ0X/iqRTKyYvNtC59FUS79j9gqk/E34u9b
NzgP1p06KT7oc8z9Fdxf3gRfrOiEAuUS9r81lhLdnF5wRLT31pH2h9ZoWR58HTuY
19hnS8HsQW9qjPciWRR+BgaYdBlGko4c5Tc1QZWpNQw2j7qV62LOZPNV/dS4tlvM
xHw2R7MUkS9JzNyOfykGl12pb1TWTLoa9waW99kWZGRqwPSpXBpASFrGvRok9Fxe
iqPu7CqEchhOi5qAYa3DjzuWfZIbJ9pYgYG1mD1HAgMBAAGjggKxMIICrTAdBgNV
HQ4EFgQUuaW/qtG3q/vrspelAB1oX2y3jrQwHwYDVR0jBBgwFoAUVajdRdlEE/nR
kvUsY86M+8YUlrgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy8xNDMzZWJmZi1k
ZmQ2LTRjNWMtYjdmZi05OWM4NTEzOWQ0YTgvMjc4YWFiODc4ZjI2NjJjZTE0ZTkw
NWUxOGViY2I3NTIyZjkyYjM2ODRiYzQ4NjViNGQuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvMTZmMWZmZWUtNzQ2MS00Njc0LWJiMDUtZmRk
ZWZhOWEwMmM2LzMzMWYzYTQ5LTI2Y2YtNGRhMi04MjY5LTc4ZmQ5N2RlOGMyZC5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzE2ZjFmZmVlLTc0NjEtNDY3NC1iYjA1
LWZkZGVmYTlhMDJjNi9KbUxPRk9rRjRZNjh0MUl2a3JOb1M4U0dXMDAuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBADHJHgwDQYJKoZIhvcNAQELBQADggEBAIcBnnBDry6mmQ+Z/TCjXlULIiCJ
Edw/tNB/+xZ7VyGaTT7hGejsNph1Myb3ktbWcb0hLFGzNq5j3G3nEisXUj0Pv1FK
FNbKN6IQ+BcAnN0jsnd0k9E/yqGa4BurHrCGqXpD1AyygEcx03dKdrhYyh07+gJ1
dvFMN7N7guPPp8vozoR5gsjoccap15M/uXwzWLzBix7cXpLGKR98dgl83Qf7a6Y0
Ln1hSH1bnTLCcYq+wAMf3sSFLdImcmb9ZSV+BFM3lP9fSTveeVfu7s69KEwYnLN4
KCzaLgqvJiE4+497EivWhqf0tgM4/R+pfdtEgVStVz+RC999S+CWqJ80rdk=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:46:59 2024 by rpki-client on console-ams.rpki-client.org