Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/3c1b2b0d-4e17-45b2-af22-ba391744a46c.roa
File: 3c1b2b0d-4e17-45b2-af22-ba391744a46c.roa (raw, json)
Hash identifier: F/z6USGCmDfT0oVWVOJndz5YPyWvWiE6akGlJI2OfQI=
Subject key identifier: 98:C5:AD:7A:2A:21:A2:98:B5:FE:37:D9:5A:24:72:5A:54:F0:3B:6D
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 3A52796A4284A5FBB72A94D8DA060CCD751566A1
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/3c1b2b0d-4e17-45b2-af22-ba391744a46c.roa
Signing time: Mon 18 Dec 2023 00:00:00 +0000
ROA not before: Mon 18 Dec 2023 00:00:00 +0000
ROA not after: Mon 22 Jan 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3a:52:79:6a:42:84:a5:fb:b7:2a:94:d8:da:06:0c:cd:75:15:66:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Dec 18 00:00:00 2023 GMT
Not After : Jan 22 23:59:59 2024 GMT
Subject: serialNumber=59851d0cbd577eaec69270624e59bae9464b3e4b382c5338a04e9cbf074b592a, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:57:05:58:95:0f:58:1b:9d:b8:f0:81:05:cf:
de:87:46:68:d7:e5:1e:30:c5:9c:bb:9a:e5:94:a3:
49:c0:4a:a8:23:de:77:2a:ae:54:09:6d:9c:18:c0:
26:a7:af:40:2e:34:b5:f1:71:35:b2:0a:2c:98:bb:
01:9c:6d:62:47:96:35:ff:6d:8f:fa:ed:d1:fc:8e:
be:f0:ab:d0:a5:50:c7:6b:e5:77:d0:2f:4d:ae:77:
47:ff:7f:39:24:90:c2:63:ca:98:44:3f:2e:0f:1d:
93:a1:88:39:c6:e2:91:a7:8a:48:12:0d:8b:59:ab:
ab:a0:f7:1e:29:3c:74:e6:3f:60:99:a8:69:80:4a:
4f:42:fa:a3:50:18:d5:01:63:24:8f:d8:c5:0d:50:
40:5c:eb:19:80:6e:2d:62:81:ef:fd:0c:36:a0:ee:
2b:ce:91:78:a8:af:28:4f:89:24:a5:81:b9:5c:77:
ad:1d:23:fa:0a:e7:51:2f:64:45:31:a2:df:74:e8:
0b:21:e1:78:aa:ee:f9:5c:8a:c1:51:4e:68:ba:2e:
ef:e1:6c:bc:f3:1e:ea:63:80:91:a0:3c:6b:24:13:
77:3f:d0:76:e9:46:fe:62:88:1b:27:b0:4e:ae:30:
3c:bd:11:f1:ba:68:b2:20:f5:0c:27:de:51:6d:8f:
ae:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:C5:AD:7A:2A:21:A2:98:B5:FE:37:D9:5A:24:72:5A:54:F0:3B:6D
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/3c1b2b0d-4e17-45b2-af22-ba391744a46c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
2d:74:73:6f:0d:18:81:bd:a9:3a:d1:31:4a:c7:3f:63:a6:ed:
38:3b:99:8a:fc:ea:89:01:1f:bf:e3:1e:38:b6:b4:84:2c:60:
d8:93:0d:aa:88:6b:b1:4c:24:cf:8b:59:eb:a4:32:4b:38:f0:
6f:25:f7:84:8b:58:bb:3e:0d:91:68:ab:7a:1f:f9:4c:07:4a:
40:58:d2:7f:94:81:5c:79:eb:5e:d1:94:bc:38:c9:c1:c6:0d:
cf:3d:6d:bb:24:38:fc:75:dc:e1:9f:e3:62:09:ef:e9:e1:29:
84:8c:5f:ba:05:0e:f2:3a:7a:ba:25:ef:b8:d4:6b:68:ee:af:
ea:34:f7:4e:47:06:40:3f:4b:80:e2:2f:32:59:6a:90:fb:36:
6a:24:c3:86:dd:cf:73:f8:fa:3c:4c:bf:5e:b6:2b:00:08:11:
25:e9:31:f1:c1:ff:05:3b:22:15:85:4a:3d:d9:5f:22:09:65:
22:5d:c2:fa:7e:19:cc:a5:f1:10:2a:59:7a:6c:eb:02:69:07:
ac:1b:4c:b5:7a:78:02:27:89:22:bc:4e:e6:5f:93:84:c9:a2:
44:6d:72:2d:72:15:89:8c:20:ae:f1:fb:9b:82:07:84:f7:3c:
eb:65:17:a6:2f:94:76:12:2e:f9:7f:5e:9f:da:b9:9e:97:bf:
fe:4d:ae:8b
-----BEGIN CERTIFICATE-----
MIIF+DCCBOCgAwIBAgIUOlJ5akKEpfu3KpTY2gYMzXUVZqEwDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyMjc4YWFiODc4ZjI2NjJjZTE0ZTkwNWUxOGViY2I3NTIy
ZjkyYjM2ODRiYzQ4NjViNGQwHhcNMjMxMjE4MDAwMDAwWhcNMjQwMTIyMjM1OTU5
WjB6MUkwRwYDVQQFE0A1OTg1MWQwY2JkNTc3ZWFlYzY5MjcwNjI0ZTU5YmFlOTQ2
NGIzZTRiMzgyYzUzMzhhMDRlOWNiZjA3NGI1OTJhMS0wKwYDVQQDEyRjMGNlMjNl
YS00M2ZjLTRiZTQtYmVlZS1jMDE0NzgxMjJhMGUwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQCzVwVYlQ9YG5248IEFz96HRmjX5R4wxZy7muWUo0nASqgj
3ncqrlQJbZwYwCanr0AuNLXxcTWyCiyYuwGcbWJHljX/bY/67dH8jr7wq9ClUMdr
5XfQL02ud0f/fzkkkMJjyphEPy4PHZOhiDnG4pGnikgSDYtZq6ug9x4pPHTmP2CZ
qGmASk9C+qNQGNUBYySP2MUNUEBc6xmAbi1ige/9DDag7ivOkXioryhPiSSlgblc
d60dI/oK51EvZEUxot906Ash4Xiq7vlcisFRTmi6Lu/hbLzzHupjgJGgPGskE3c/
0HbpRv5iiBsnsE6uMDy9EfG6aLIg9Qwn3lFtj66vAgMBAAGjggKxMIICrTAdBgNV
HQ4EFgQUmMWteiohopi1/jfZWiRyWlTwO20wHwYDVR0jBBgwFoAUVajdRdlEE/nR
kvUsY86M+8YUlrgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy8xNDMzZWJmZi1k
ZmQ2LTRjNWMtYjdmZi05OWM4NTEzOWQ0YTgvMjc4YWFiODc4ZjI2NjJjZTE0ZTkw
NWUxOGViY2I3NTIyZjkyYjM2ODRiYzQ4NjViNGQuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvMTZmMWZmZWUtNzQ2MS00Njc0LWJiMDUtZmRk
ZWZhOWEwMmM2LzNjMWIyYjBkLTRlMTctNDViMi1hZjIyLWJhMzkxNzQ0YTQ2Yy5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzE2ZjFmZmVlLTc0NjEtNDY3NC1iYjA1
LWZkZGVmYTlhMDJjNi9KbUxPRk9rRjRZNjh0MUl2a3JOb1M4U0dXMDAuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBADHJHgwDQYJKoZIhvcNAQELBQADggEBAC10c28NGIG9qTrRMUrHP2Om7Tg7
mYr86okBH7/jHji2tIQsYNiTDaqIa7FMJM+LWeukMks48G8l94SLWLs+DZFoq3of
+UwHSkBY0n+UgVx5617RlLw4ycHGDc89bbskOPx13OGf42IJ7+nhKYSMX7oFDvI6
erol77jUa2jur+o0905HBkA/S4DiLzJZapD7Nmokw4bdz3P4+jxMv162KwAIESXp
MfHB/wU7IhWFSj3ZXyIJZSJdwvp+Gcyl8RAqWXps6wJpB6wbTLV6eAIniSK8TuZf
k4TJokRtci1yFYmMIK7x+5uCB4T3POtlF6YvlHYSLvl/Xp/auZ6Xv/5Nros=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:47:01 2024 by rpki-client on console-ams.rpki-client.org