Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/4a34e563-05c5-49e3-865e-b17f66a9e5b9.roa
File: 4a34e563-05c5-49e3-865e-b17f66a9e5b9.roa (raw, json)
Hash identifier: dOzExRQesA7qaTRbcuM4J8n9iz6M1sgzC9E/+JWyM6g=
Subject key identifier: F7:64:E2:99:36:AF:86:7D:DB:52:C7:57:0C:09:78:2D:23:4B:6C:EC
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 4831B9E11FB067CB7A076C008E81ECEE86A5821E
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/4a34e563-05c5-49e3-865e-b17f66a9e5b9.roa
Signing time: Fri 01 Sep 2023 00:00:00 +0000
ROA not before: Fri 01 Sep 2023 00:00:00 +0000
ROA not after: Fri 06 Oct 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
48:31:b9:e1:1f:b0:67:cb:7a:07:6c:00:8e:81:ec:ee:86:a5:82:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Sep 1 00:00:00 2023 GMT
Not After : Oct 6 23:59:59 2023 GMT
Subject: serialNumber=09064ace8a5327135ca34716ca076b895ce60e5a835254f8d5dc8eb7ac04fa9e, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:56:e1:3f:fc:45:0c:3f:e0:91:25:79:dc:c1:
c2:96:74:a8:cf:de:d9:76:e7:40:67:1d:af:35:7a:
90:fd:3c:38:5f:19:79:30:b4:4f:48:d8:80:6c:38:
04:65:b8:27:1a:40:37:fb:d5:dd:3b:f8:1e:23:1f:
40:34:1b:be:11:49:61:2c:fb:a8:d6:05:76:8f:c6:
c4:f2:5e:f7:1a:9f:af:8e:21:07:2a:42:f9:7b:79:
cb:14:32:e8:34:f9:92:9a:91:df:b0:1a:a7:bf:14:
10:08:8f:e5:1d:37:ca:e5:9e:55:ef:9a:b5:60:1d:
c7:dd:86:98:50:c8:55:49:16:cb:04:2f:48:61:74:
0c:76:2e:73:7a:22:85:ae:32:a7:1b:54:60:05:3e:
79:8f:f3:84:d0:7b:c8:10:97:02:b2:f4:93:1d:89:
e5:8f:d9:b5:16:94:6d:3d:6f:f1:02:6d:4d:56:1f:
9c:66:33:68:cf:3b:57:0e:21:e5:4f:36:b2:94:bb:
93:d3:a0:15:4a:2d:cf:75:3c:53:d6:a1:7e:43:d4:
97:21:52:20:7c:28:0c:4a:6d:64:7a:49:1e:25:05:
b1:32:61:4e:46:51:f2:8c:a6:44:b0:be:97:9f:7f:
c4:af:1e:06:ce:48:30:12:82:87:b2:8b:06:35:31:
ec:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:64:E2:99:36:AF:86:7D:DB:52:C7:57:0C:09:78:2D:23:4B:6C:EC
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/4a34e563-05c5-49e3-865e-b17f66a9e5b9.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
42:d8:b2:81:4c:45:b9:9a:fe:01:fe:fb:82:df:5f:0f:51:9a:
43:73:35:0b:21:8f:cf:7f:5c:f4:1b:8f:79:cd:d5:c2:a1:c7:
b7:4f:bd:c8:0f:41:79:24:41:50:31:87:1c:08:7d:74:10:d1:
9d:a4:bf:f6:fa:1d:ac:c5:0e:f8:83:0e:f8:eb:a7:7b:b9:d6:
69:41:70:8c:15:20:7d:50:09:2f:66:ab:d0:49:3c:f3:94:51:
1e:3a:ea:a5:ca:89:e4:f1:6d:50:f8:77:e5:af:34:22:a1:3c:
3c:dd:ac:59:b0:87:6c:92:3f:31:9f:19:fe:4d:1e:d2:40:53:
e9:da:c3:d8:b8:df:12:bf:8f:80:28:f9:cb:2a:68:a3:db:65:
8b:13:68:c0:e7:5a:07:1d:1e:cd:02:f9:0e:c6:35:73:f6:b6:
a0:5d:f0:ee:cf:eb:c2:82:61:b4:72:4e:35:7f:db:74:69:8a:
22:f4:7b:5d:ca:70:2a:21:ef:c0:55:4a:72:52:b7:20:79:94:
28:92:e2:d7:2d:31:46:2e:64:0a:bd:1b:f6:a0:c1:93:92:b7:
4a:e1:77:67:ce:90:bb:05:ab:d8:4c:6b:83:af:f8:1b:13:3f:
d0:64:50:64:96:dd:fc:7e:36:3c:20:83:2d:1b:b6:7f:d0:26:
83:e8:35:7f
-----BEGIN CERTIFICATE-----
MIIF+DCCBOCgAwIBAgIUSDG54R+wZ8t6B2wAjoHs7oalgh4wDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyMjc4YWFiODc4ZjI2NjJjZTE0ZTkwNWUxOGViY2I3NTIy
ZjkyYjM2ODRiYzQ4NjViNGQwHhcNMjMwOTAxMDAwMDAwWhcNMjMxMDA2MjM1OTU5
WjB6MUkwRwYDVQQFE0AwOTA2NGFjZThhNTMyNzEzNWNhMzQ3MTZjYTA3NmI4OTVj
ZTYwZTVhODM1MjU0ZjhkNWRjOGViN2FjMDRmYTllMS0wKwYDVQQDEyRjMGNlMjNl
YS00M2ZjLTRiZTQtYmVlZS1jMDE0NzgxMjJhMGUwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQDNVuE//EUMP+CRJXncwcKWdKjP3tl250BnHa81epD9PDhf
GXkwtE9I2IBsOARluCcaQDf71d07+B4jH0A0G74RSWEs+6jWBXaPxsTyXvcan6+O
IQcqQvl7ecsUMug0+ZKakd+wGqe/FBAIj+UdN8rlnlXvmrVgHcfdhphQyFVJFssE
L0hhdAx2LnN6IoWuMqcbVGAFPnmP84TQe8gQlwKy9JMdieWP2bUWlG09b/ECbU1W
H5xmM2jPO1cOIeVPNrKUu5PToBVKLc91PFPWoX5D1JchUiB8KAxKbWR6SR4lBbEy
YU5GUfKMpkSwvpeff8SvHgbOSDASgoeyiwY1MexzAgMBAAGjggKxMIICrTAdBgNV
HQ4EFgQU92TimTavhn3bUsdXDAl4LSNLbOwwHwYDVR0jBBgwFoAUVajdRdlEE/nR
kvUsY86M+8YUlrgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy8xNDMzZWJmZi1k
ZmQ2LTRjNWMtYjdmZi05OWM4NTEzOWQ0YTgvMjc4YWFiODc4ZjI2NjJjZTE0ZTkw
NWUxOGViY2I3NTIyZjkyYjM2ODRiYzQ4NjViNGQuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvMTZmMWZmZWUtNzQ2MS00Njc0LWJiMDUtZmRk
ZWZhOWEwMmM2LzRhMzRlNTYzLTA1YzUtNDllMy04NjVlLWIxN2Y2NmE5ZTViOS5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzE2ZjFmZmVlLTc0NjEtNDY3NC1iYjA1
LWZkZGVmYTlhMDJjNi9KbUxPRk9rRjRZNjh0MUl2a3JOb1M4U0dXMDAuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBADHJHgwDQYJKoZIhvcNAQELBQADggEBAELYsoFMRbma/gH++4LfXw9RmkNz
NQshj89/XPQbj3nN1cKhx7dPvcgPQXkkQVAxhxwIfXQQ0Z2kv/b6HazFDviDDvjr
p3u51mlBcIwVIH1QCS9mq9BJPPOUUR466qXKieTxbVD4d+WvNCKhPDzdrFmwh2yS
PzGfGf5NHtJAU+naw9i43xK/j4Ao+csqaKPbZYsTaMDnWgcdHs0C+Q7GNXP2tqBd
8O7P68KCYbRyTjV/23RpiiL0e13KcCoh78BVSnJStyB5lCiS4tctMUYuZAq9G/ag
wZOSt0rhd2fOkLsFq9hMa4Ov+BsTP9BkUGSW3fx+Njwggy0btn/QJoPoNX8=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:47:08 2024 by rpki-client on console-ams.rpki-client.org