Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/51c82a85-a7f4-4678-89fe-7bc08e191f12.roa
File: 51c82a85-a7f4-4678-89fe-7bc08e191f12.roa (raw, json)
Hash identifier: z2bSIwfpuB4ij8fPD5UD7d4zwezjiD+oXF/5BQIq01Y=
Subject key identifier: 48:F9:4C:41:10:4A:21:D3:5B:73:3A:41:98:08:F5:20:15:42:34:0F
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 26D84EA62D3667168F04C62B5193D0504BD986B5
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/51c82a85-a7f4-4678-89fe-7bc08e191f12.roa
Signing time: Tue 31 Oct 2023 00:00:00 +0000
ROA not before: Tue 31 Oct 2023 00:00:00 +0000
ROA not after: Tue 05 Dec 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
26:d8:4e:a6:2d:36:67:16:8f:04:c6:2b:51:93:d0:50:4b:d9:86:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Oct 31 00:00:00 2023 GMT
Not After : Dec 5 23:59:59 2023 GMT
Subject: serialNumber=9273f14828f9f31d2c676d6e7461a0f6e15939d57c6fb8f37a799fddcfac9911, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:37:32:9d:08:16:f0:88:8e:3b:f5:77:ab:8f:
98:79:27:cf:5c:f7:51:a7:c2:e2:7c:37:3d:71:cb:
89:08:1d:b2:1e:34:8d:59:3e:ed:59:f1:fb:d0:4b:
1b:2b:8a:35:ab:77:21:e1:fe:4f:f4:13:3f:b9:7c:
ea:cb:d6:b4:e8:d7:f7:6a:b3:48:56:f1:4e:a7:c1:
8a:7e:04:65:bc:4b:ce:56:0d:26:f4:89:82:23:b5:
2a:0d:9b:b4:c9:d1:4d:aa:f2:e5:ad:8b:27:df:91:
2d:fb:e2:4a:13:8c:f1:0a:e0:ce:c6:b0:95:36:a7:
8c:e8:a4:9e:c9:ec:7b:9a:df:3c:f8:1a:db:65:c4:
ba:7e:33:df:0f:23:44:5a:b7:93:d3:da:52:30:75:
90:af:5b:f6:10:5c:cb:2c:9e:65:3a:d0:89:b0:fa:
8f:75:ea:19:7f:a4:1b:d3:93:18:66:04:08:7a:e3:
e0:23:1f:14:b6:88:57:ce:ab:07:1b:95:a4:b6:1d:
be:29:b3:58:54:7f:94:00:2d:a9:8f:3c:3c:09:7e:
65:94:07:e3:84:a4:48:99:86:5c:6f:8e:87:8a:0e:
e4:c4:52:40:54:1c:20:1f:ec:0e:26:b9:67:35:54:
5e:4f:6f:21:4e:bc:96:5a:70:ca:5c:0b:9d:24:29:
10:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:F9:4C:41:10:4A:21:D3:5B:73:3A:41:98:08:F5:20:15:42:34:0F
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/51c82a85-a7f4-4678-89fe-7bc08e191f12.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
79:05:d7:f4:31:de:de:08:98:e1:bd:5c:fb:b2:c7:1b:bd:9a:
9c:99:17:fb:72:db:ac:1f:29:78:c4:3e:c3:38:b8:e8:fa:c5:
5f:dc:1d:dc:cc:c7:de:c2:af:fa:2a:6a:c8:f2:c2:4c:aa:11:
9a:be:fc:0e:db:fa:92:73:80:7a:bf:c6:c8:72:c1:b8:e1:37:
21:9a:c6:b0:13:6f:e3:04:26:0b:63:13:61:13:a1:0d:20:d8:
e7:a4:a7:4d:eb:9c:7e:88:56:8c:2b:0f:48:8a:2b:a6:86:8d:
48:7e:51:d0:e1:8d:25:bf:8d:c6:62:f0:57:fe:16:72:e1:21:
6b:ca:31:18:73:46:34:8b:c1:a6:e1:e7:f3:2c:61:2c:25:55:
7c:57:86:c0:06:d0:3d:18:44:00:af:18:5d:a1:9f:92:c7:65:
4b:5f:4e:53:cf:c8:eb:57:01:3c:fc:7f:3d:77:bc:6f:7b:41:
a2:a2:06:b7:d4:43:49:e2:5f:ef:ac:db:19:69:41:4f:60:e9:
ab:bc:e2:83:2c:14:55:0a:34:40:e8:b7:7e:e2:fb:42:6c:fc:
ab:46:92:ba:6a:ae:46:b7:a5:e6:ff:55:1e:b3:b8:41:27:55:
ec:9b:0f:58:40:50:c4:ab:9e:fe:9a:73:65:a1:bf:d9:6d:e1:
8f:58:27:04
-----BEGIN CERTIFICATE-----
MIIF+DCCBOCgAwIBAgIUJthOpi02ZxaPBMYrUZPQUEvZhrUwDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyMjc4YWFiODc4ZjI2NjJjZTE0ZTkwNWUxOGViY2I3NTIy
ZjkyYjM2ODRiYzQ4NjViNGQwHhcNMjMxMDMxMDAwMDAwWhcNMjMxMjA1MjM1OTU5
WjB6MUkwRwYDVQQFE0A5MjczZjE0ODI4ZjlmMzFkMmM2NzZkNmU3NDYxYTBmNmUx
NTkzOWQ1N2M2ZmI4ZjM3YTc5OWZkZGNmYWM5OTExMS0wKwYDVQQDEyRjMGNlMjNl
YS00M2ZjLTRiZTQtYmVlZS1jMDE0NzgxMjJhMGUwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQC7NzKdCBbwiI479Xerj5h5J89c91GnwuJ8Nz1xy4kIHbIe
NI1ZPu1Z8fvQSxsrijWrdyHh/k/0Ez+5fOrL1rTo1/dqs0hW8U6nwYp+BGW8S85W
DSb0iYIjtSoNm7TJ0U2q8uWtiyffkS374koTjPEK4M7GsJU2p4zopJ7J7Hua3zz4
GttlxLp+M98PI0Rat5PT2lIwdZCvW/YQXMssnmU60Imw+o916hl/pBvTkxhmBAh6
4+AjHxS2iFfOqwcblaS2Hb4ps1hUf5QALamPPDwJfmWUB+OEpEiZhlxvjoeKDuTE
UkBUHCAf7A4muWc1VF5PbyFOvJZacMpcC50kKRBhAgMBAAGjggKxMIICrTAdBgNV
HQ4EFgQUSPlMQRBKIdNbczpBmAj1IBVCNA8wHwYDVR0jBBgwFoAUVajdRdlEE/nR
kvUsY86M+8YUlrgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy8xNDMzZWJmZi1k
ZmQ2LTRjNWMtYjdmZi05OWM4NTEzOWQ0YTgvMjc4YWFiODc4ZjI2NjJjZTE0ZTkw
NWUxOGViY2I3NTIyZjkyYjM2ODRiYzQ4NjViNGQuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvMTZmMWZmZWUtNzQ2MS00Njc0LWJiMDUtZmRk
ZWZhOWEwMmM2LzUxYzgyYTg1LWE3ZjQtNDY3OC04OWZlLTdiYzA4ZTE5MWYxMi5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzE2ZjFmZmVlLTc0NjEtNDY3NC1iYjA1
LWZkZGVmYTlhMDJjNi9KbUxPRk9rRjRZNjh0MUl2a3JOb1M4U0dXMDAuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBADHJHgwDQYJKoZIhvcNAQELBQADggEBAHkF1/Qx3t4ImOG9XPuyxxu9mpyZ
F/ty26wfKXjEPsM4uOj6xV/cHdzMx97Cr/oqasjywkyqEZq+/A7b+pJzgHq/xshy
wbjhNyGaxrATb+MEJgtjE2EToQ0g2Oekp03rnH6IVowrD0iKK6aGjUh+UdDhjSW/
jcZi8Ff+FnLhIWvKMRhzRjSLwabh5/MsYSwlVXxXhsAG0D0YRACvGF2hn5LHZUtf
TlPPyOtXATz8fz13vG97QaKiBrfUQ0niX++s2xlpQU9g6au84oMsFFUKNEDot37i
+0Js/KtGkrpqrka3peb/VR6zuEEnVeybD1hAUMSrnv6ac2Whv9lt4Y9YJwQ=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:47:45 2024 by rpki-client on console-ams.rpki-client.org