Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/42fd1f99-d2d3-4b84-9ff1-ca00c910bd8a.roa
File: 42fd1f99-d2d3-4b84-9ff1-ca00c910bd8a.roa (raw, json)
Hash identifier: 8wHeGX0nOjj8bIGiDGnvcOIaODZHwElW9PZz6qET+N8=
Subject key identifier: 1F:59:70:28:70:B4:04:82:CB:88:3C:0C:34:AF:A8:49:CB:D6:89:49
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 4091FD9881F78B9CD59EC424BB48E4B206B96243
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/42fd1f99-d2d3-4b84-9ff1-ca00c910bd8a.roa
Signing time: Tue 15 Aug 2023 00:00:00 +0000
ROA not before: Tue 15 Aug 2023 00:00:00 +0000
ROA not after: Tue 19 Sep 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
40:91:fd:98:81:f7:8b:9c:d5:9e:c4:24:bb:48:e4:b2:06:b9:62:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Aug 15 00:00:00 2023 GMT
Not After : Sep 19 23:59:59 2023 GMT
Subject: serialNumber=eec73fa0fbdd60f8594cad880412547f415f1efc3ba2ff9d03a42331bd62ea02, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:3e:b9:e0:e9:87:ca:93:a9:09:d0:70:2f:d1:
48:ca:ea:48:8c:0a:10:73:31:82:69:87:8a:96:cb:
ef:28:7e:5a:09:ba:99:ba:08:f3:db:fc:4d:af:2c:
ad:54:18:b6:d3:d1:c0:91:f7:6a:e6:51:ca:8c:fd:
61:16:26:76:7e:35:3f:5e:ec:69:77:2c:58:3b:0c:
52:a2:13:46:05:d1:79:98:3e:d7:4c:8c:94:bd:4b:
e4:bf:db:9d:59:c8:fc:e1:2d:8f:6e:8a:5f:4a:42:
6e:e2:7f:35:80:af:3b:84:2a:d7:70:c7:bd:c6:7a:
66:e1:38:58:99:2a:a7:f0:60:7b:da:28:44:35:e0:
35:8e:a6:04:c8:9e:2b:51:69:10:0b:f7:9b:63:7b:
56:be:5e:4e:ad:35:78:26:d3:14:cf:d8:2f:79:49:
99:f7:7d:76:0f:df:d1:82:8b:e3:16:12:5a:c0:11:
9f:d6:2c:7f:ce:97:7f:52:32:6b:a4:06:02:40:f9:
97:4f:45:de:90:55:b6:92:55:69:13:2a:6c:c6:37:
7b:15:27:fb:93:2b:29:6b:50:d0:f3:73:a2:ad:63:
d7:d0:8b:60:91:bd:7b:d4:5e:1a:63:bf:3a:89:fc:
d8:0e:43:3c:29:e7:1d:0d:b2:39:0a:4b:1e:bb:4e:
0b:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:59:70:28:70:B4:04:82:CB:88:3C:0C:34:AF:A8:49:CB:D6:89:49
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/42fd1f99-d2d3-4b84-9ff1-ca00c910bd8a.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
2a:97:44:ce:48:e3:42:5c:12:04:97:52:a0:4a:c0:86:6e:bf:
dc:19:cd:39:d8:a9:f4:7f:20:70:1f:72:4e:4e:90:c0:48:31:
b2:8f:35:22:ba:64:e7:6d:16:6a:4f:79:ee:78:ad:cf:5c:76:
43:96:c6:01:29:98:8f:37:f1:17:d9:d2:2b:aa:34:0b:f8:3e:
68:b9:67:2d:83:61:1d:99:aa:b9:ed:59:79:8b:f7:eb:5b:81:
29:f4:ae:27:69:25:ec:82:d7:af:d0:c6:04:c5:09:2e:70:ca:
b5:0b:a1:9b:71:10:e0:4d:51:4f:12:d1:cf:d3:89:3d:98:0e:
0e:d3:1e:bc:78:7a:44:38:7a:8f:6c:57:b0:48:a7:b8:a3:d0:
77:79:a8:e5:d6:e1:b2:08:b7:8b:b2:53:e6:b5:98:92:1c:f9:
94:42:10:2d:66:a8:77:1b:e9:d9:5b:c0:b3:3b:fe:d7:e0:32:
b9:51:9f:36:9a:cd:82:44:59:1d:db:75:70:9f:67:b5:3d:37:
a1:f4:80:3d:73:1f:c3:d3:50:6c:ca:16:a9:9f:96:ab:63:3c:
e6:cc:66:3b:e2:4b:24:39:30:20:0c:71:0b:6c:be:39:b2:73:
5a:df:e4:1b:2e:81:5b:e4:1e:37:98:9d:dd:4e:2d:20:50:29:
d4:2f:2b:68
-----BEGIN CERTIFICATE-----
MIIF+DCCBOCgAwIBAgIUQJH9mIH3i5zVnsQku0jksga5YkMwDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyMjc4YWFiODc4ZjI2NjJjZTE0ZTkwNWUxOGViY2I3NTIy
ZjkyYjM2ODRiYzQ4NjViNGQwHhcNMjMwODE1MDAwMDAwWhcNMjMwOTE5MjM1OTU5
WjB6MUkwRwYDVQQFE0BlZWM3M2ZhMGZiZGQ2MGY4NTk0Y2FkODgwNDEyNTQ3ZjQx
NWYxZWZjM2JhMmZmOWQwM2E0MjMzMWJkNjJlYTAyMS0wKwYDVQQDEyRjMGNlMjNl
YS00M2ZjLTRiZTQtYmVlZS1jMDE0NzgxMjJhMGUwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQCHPrng6YfKk6kJ0HAv0UjK6kiMChBzMYJph4qWy+8ofloJ
upm6CPPb/E2vLK1UGLbT0cCR92rmUcqM/WEWJnZ+NT9e7Gl3LFg7DFKiE0YF0XmY
PtdMjJS9S+S/251ZyPzhLY9uil9KQm7ifzWArzuEKtdwx73GembhOFiZKqfwYHva
KEQ14DWOpgTInitRaRAL95tje1a+Xk6tNXgm0xTP2C95SZn3fXYP39GCi+MWElrA
EZ/WLH/Ol39SMmukBgJA+ZdPRd6QVbaSVWkTKmzGN3sVJ/uTKylrUNDzc6KtY9fQ
i2CRvXvUXhpjvzqJ/NgOQzwp5x0NsjkKSx67TgvdAgMBAAGjggKxMIICrTAdBgNV
HQ4EFgQUH1lwKHC0BILLiDwMNK+oScvWiUkwHwYDVR0jBBgwFoAUVajdRdlEE/nR
kvUsY86M+8YUlrgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy8xNDMzZWJmZi1k
ZmQ2LTRjNWMtYjdmZi05OWM4NTEzOWQ0YTgvMjc4YWFiODc4ZjI2NjJjZTE0ZTkw
NWUxOGViY2I3NTIyZjkyYjM2ODRiYzQ4NjViNGQuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvMTZmMWZmZWUtNzQ2MS00Njc0LWJiMDUtZmRk
ZWZhOWEwMmM2LzQyZmQxZjk5LWQyZDMtNGI4NC05ZmYxLWNhMDBjOTEwYmQ4YS5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzE2ZjFmZmVlLTc0NjEtNDY3NC1iYjA1
LWZkZGVmYTlhMDJjNi9KbUxPRk9rRjRZNjh0MUl2a3JOb1M4U0dXMDAuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBADHJHgwDQYJKoZIhvcNAQELBQADggEBACqXRM5I40JcEgSXUqBKwIZuv9wZ
zTnYqfR/IHAfck5OkMBIMbKPNSK6ZOdtFmpPee54rc9cdkOWxgEpmI838RfZ0iuq
NAv4Pmi5Zy2DYR2ZqrntWXmL9+tbgSn0ridpJeyC16/QxgTFCS5wyrULoZtxEOBN
UU8S0c/TiT2YDg7THrx4ekQ4eo9sV7BIp7ij0Hd5qOXW4bIIt4uyU+a1mJIc+ZRC
EC1mqHcb6dlbwLM7/tfgMrlRnzaazYJEWR3bdXCfZ7U9N6H0gD1zH8PTUGzKFqmf
lqtjPObMZjviSyQ5MCAMcQtsvjmyc1rf5BsugVvkHjeYnd1OLSBQKdQvK2g=
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:41:19 2024 by rpki-client on console-fra.rpki-client.org