Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/3a85af88-25a1-4563-b04d-8aa8de239182.roa
File: 3a85af88-25a1-4563-b04d-8aa8de239182.roa (raw, json)
Hash identifier: JWjVr75EyIJlr9Zzspmpsb6sDxDHT2wvh5FOm10QI+w=
Subject key identifier: EF:2F:7C:78:8B:E3:43:42:67:A3:CF:C5:7F:97:1D:E5:85:57:A1:B9
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 672A05B1B4653236E09CD1C5C93387102FFC21D1
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/3a85af88-25a1-4563-b04d-8aa8de239182.roa
Signing time: Sun 16 Jul 2023 00:00:00 +0000
ROA not before: Sun 16 Jul 2023 00:00:00 +0000
ROA not after: Sun 20 Aug 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
67:2a:05:b1:b4:65:32:36:e0:9c:d1:c5:c9:33:87:10:2f:fc:21:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Jul 16 00:00:00 2023 GMT
Not After : Aug 20 23:59:59 2023 GMT
Subject: serialNumber=be033080778f8d1ea5632719d2cf922f30b195863a7a2e7cce8cb2448a00143d, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:6c:32:94:4f:1e:76:51:3a:00:29:a4:97:ad:
8d:65:d8:f9:79:ac:9e:44:88:b8:40:44:83:bd:0d:
e3:3c:78:7f:2b:0a:d4:e5:83:a1:71:c1:11:a8:16:
04:41:01:25:ee:8a:a4:d2:c5:08:40:79:d4:98:62:
55:c2:e0:4a:1b:76:c5:a4:7b:18:4e:ea:17:64:7e:
fe:d7:f5:6f:a2:e6:e8:69:28:26:52:2f:f6:eb:c5:
7d:13:25:54:a9:06:7b:28:f4:f6:58:d9:34:9f:e9:
c2:bb:3e:ca:06:35:0d:72:05:44:97:41:cd:5a:60:
52:e0:27:1d:38:94:2c:46:2b:89:7d:e6:77:ef:63:
0a:11:31:15:3e:08:f6:90:d0:3a:36:5a:82:5c:45:
1e:3f:16:69:ce:5b:cb:83:71:e4:62:13:cb:a7:8c:
f1:7d:1a:2f:20:51:03:93:dc:47:9b:ee:13:03:11:
b1:a3:a4:f9:3b:72:2e:d9:05:89:26:98:67:10:fa:
5c:72:45:83:d4:5a:6d:9c:ac:95:ae:63:f6:8a:b9:
7a:d4:12:0c:bd:82:2f:80:53:01:4a:2d:14:fb:86:
9a:64:51:51:11:92:a1:60:98:95:10:ae:a6:c8:e4:
04:f7:ff:7d:f1:dc:0f:5d:16:6a:41:77:94:bd:68:
af:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:2F:7C:78:8B:E3:43:42:67:A3:CF:C5:7F:97:1D:E5:85:57:A1:B9
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/3a85af88-25a1-4563-b04d-8aa8de239182.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
11:a7:63:c0:5d:74:49:4d:1d:f1:f6:fc:8f:2e:5b:8a:57:7b:
ff:b4:c3:d2:1f:3a:89:ad:e2:4b:4d:bd:19:04:28:0e:5d:b7:
b9:ab:ed:03:8b:7f:bb:e4:ac:8c:e5:8e:f5:05:af:58:83:21:
a2:4f:5b:7f:fc:d6:c3:ff:0b:d8:2c:1c:4a:4b:11:99:0c:3f:
f6:75:11:57:1c:82:13:e3:4f:3f:0b:07:7e:45:77:aa:0f:7d:
7d:31:ea:37:75:8c:63:00:1e:5d:96:97:b8:9c:de:95:b4:30:
61:f6:36:f9:61:ff:c2:2b:b1:e3:20:2a:bc:e1:cd:df:c7:88:
e5:ee:fa:31:25:27:4f:1d:21:f8:27:8a:6f:d8:66:de:8a:43:
09:84:4c:a0:90:d5:8d:c5:9c:d9:d1:73:fa:58:33:d6:12:66:
7b:9a:b5:b8:4b:f5:88:01:eb:00:07:8b:ae:7f:74:16:76:dd:
ba:92:67:de:95:8a:70:be:3b:af:95:62:8d:8e:b1:89:96:52:
aa:c2:22:b6:84:b5:23:4c:1e:92:0d:27:30:d7:6a:56:1d:fa:
51:e8:e5:14:95:73:6e:cf:ec:47:f3:9b:7a:1b:74:62:e5:64:
5d:72:a0:10:4a:3d:0f:f2:ea:9b:88:62:15:8f:97:02:29:8d:
74:01:b8:e1
-----BEGIN CERTIFICATE-----
MIIF+DCCBOCgAwIBAgIUZyoFsbRlMjbgnNHFyTOHEC/8IdEwDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyMjc4YWFiODc4ZjI2NjJjZTE0ZTkwNWUxOGViY2I3NTIy
ZjkyYjM2ODRiYzQ4NjViNGQwHhcNMjMwNzE2MDAwMDAwWhcNMjMwODIwMjM1OTU5
WjB6MUkwRwYDVQQFE0BiZTAzMzA4MDc3OGY4ZDFlYTU2MzI3MTlkMmNmOTIyZjMw
YjE5NTg2M2E3YTJlN2NjZThjYjI0NDhhMDAxNDNkMS0wKwYDVQQDEyRjMGNlMjNl
YS00M2ZjLTRiZTQtYmVlZS1jMDE0NzgxMjJhMGUwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQDIbDKUTx52UToAKaSXrY1l2Pl5rJ5EiLhARIO9DeM8eH8r
CtTlg6FxwRGoFgRBASXuiqTSxQhAedSYYlXC4EobdsWkexhO6hdkfv7X9W+i5uhp
KCZSL/brxX0TJVSpBnso9PZY2TSf6cK7PsoGNQ1yBUSXQc1aYFLgJx04lCxGK4l9
5nfvYwoRMRU+CPaQ0Do2WoJcRR4/FmnOW8uDceRiE8unjPF9Gi8gUQOT3Eeb7hMD
EbGjpPk7ci7ZBYkmmGcQ+lxyRYPUWm2crJWuY/aKuXrUEgy9gi+AUwFKLRT7hppk
UVERkqFgmJUQrqbI5AT3/33x3A9dFmpBd5S9aK/rAgMBAAGjggKxMIICrTAdBgNV
HQ4EFgQU7y98eIvjQ0Jno8/Ff5cd5YVXobkwHwYDVR0jBBgwFoAUVajdRdlEE/nR
kvUsY86M+8YUlrgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy8xNDMzZWJmZi1k
ZmQ2LTRjNWMtYjdmZi05OWM4NTEzOWQ0YTgvMjc4YWFiODc4ZjI2NjJjZTE0ZTkw
NWUxOGViY2I3NTIyZjkyYjM2ODRiYzQ4NjViNGQuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvMTZmMWZmZWUtNzQ2MS00Njc0LWJiMDUtZmRk
ZWZhOWEwMmM2LzNhODVhZjg4LTI1YTEtNDU2My1iMDRkLThhYThkZTIzOTE4Mi5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzE2ZjFmZmVlLTc0NjEtNDY3NC1iYjA1
LWZkZGVmYTlhMDJjNi9KbUxPRk9rRjRZNjh0MUl2a3JOb1M4U0dXMDAuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBADHJHgwDQYJKoZIhvcNAQELBQADggEBABGnY8BddElNHfH2/I8uW4pXe/+0
w9IfOomt4ktNvRkEKA5dt7mr7QOLf7vkrIzljvUFr1iDIaJPW3/81sP/C9gsHEpL
EZkMP/Z1EVccghPjTz8LB35Fd6oPfX0x6jd1jGMAHl2Wl7ic3pW0MGH2Nvlh/8Ir
seMgKrzhzd/HiOXu+jElJ08dIfgnim/YZt6KQwmETKCQ1Y3FnNnRc/pYM9YSZnua
tbhL9YgB6wAHi65/dBZ23bqSZ96VinC+O6+VYo2OsYmWUqrCIraEtSNMHpINJzDX
alYd+lHo5RSVc27P7Efzm3obdGLlZF1yoBBKPQ/y6puIYhWPlwIpjXQBuOE=
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:41:18 2024 by rpki-client on console-fra.rpki-client.org