Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/5442c85c-d605-4a9e-9357-84e6c83ed0d4.roa
File: 5442c85c-d605-4a9e-9357-84e6c83ed0d4.roa (raw, json)
Hash identifier: UmUlYmIKAuLVmz0A18F1ZHFTD+xo8H+OXWgKHpsht1A=
Subject key identifier: DA:72:F2:30:9D:DE:A9:6F:EA:A4:6F:93:40:0B:FB:5D:93:DA:4D:8D
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 36F3B2DF243438A68A6DCA45030E1A4310ACCEE4
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/5442c85c-d605-4a9e-9357-84e6c83ed0d4.roa
Signing time: Wed 06 Sep 2023 00:00:00 +0000
ROA not before: Wed 06 Sep 2023 00:00:00 +0000
ROA not after: Wed 11 Oct 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
36:f3:b2:df:24:34:38:a6:8a:6d:ca:45:03:0e:1a:43:10:ac:ce:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Sep 6 00:00:00 2023 GMT
Not After : Oct 11 23:59:59 2023 GMT
Subject: serialNumber=a8d11658c27ecd25278edeefcef3cc6dac96af867fe09618a8f49c6e49bdc752, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:02:0c:05:75:a3:44:97:d1:85:50:db:9a:60:
b1:ad:c3:2c:4b:7a:1c:5e:f2:e0:a3:97:8d:95:61:
72:37:8b:1f:ba:8e:11:61:9f:9b:e4:d9:19:62:3d:
61:d4:36:56:ea:8b:98:fa:1b:d3:65:38:60:19:52:
05:f2:66:9a:06:fb:00:06:7d:98:63:d6:6e:1d:d3:
54:f4:32:26:75:2c:62:f8:bb:cc:bc:fe:03:69:a5:
49:fb:24:f7:02:9f:7b:65:56:54:a1:14:e7:1f:95:
2f:19:49:67:1d:fa:20:04:09:6c:98:7d:b9:03:f1:
b8:80:8a:18:1a:a5:ab:5d:4f:8f:08:15:82:47:63:
23:a5:db:b3:14:c3:07:e5:c9:6f:fc:c2:1f:16:04:
10:bc:4a:0d:d9:54:88:cd:d4:cf:82:b5:89:a3:c1:
89:d5:05:f2:fa:9f:d0:32:a4:e2:cc:97:b4:aa:4a:
ac:b6:18:dd:93:ef:7b:b3:0c:ab:e4:ae:6e:28:f3:
a0:09:f1:dd:8c:3e:dc:9d:c7:10:ac:d0:81:44:26:
5d:2c:0e:60:b0:a4:17:d7:db:4a:9d:14:9d:7a:e8:
b1:ea:a6:1e:07:39:bd:be:a8:0e:cf:87:70:ea:69:
27:d3:5d:ac:ef:6f:9a:4e:2e:1b:27:04:9e:29:6b:
1d:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:72:F2:30:9D:DE:A9:6F:EA:A4:6F:93:40:0B:FB:5D:93:DA:4D:8D
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/5442c85c-d605-4a9e-9357-84e6c83ed0d4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
14:a4:3a:d2:43:cf:e0:48:7c:d1:b2:07:f1:f6:08:ec:a2:b2:
9b:b7:a5:09:1f:72:68:4e:73:40:dd:62:8c:a3:f4:55:25:25:
55:2d:ee:53:24:1a:a3:2b:1a:e0:6d:dc:dd:16:49:90:b2:36:
a9:f4:2d:7d:a9:96:bc:46:51:55:ca:c8:80:f3:fd:ce:45:90:
5f:fb:2d:a0:37:8b:5f:f1:f6:1f:1f:76:28:74:89:58:86:d5:
a6:b1:d5:c3:19:c1:d6:53:d5:03:ce:7e:25:15:13:0d:5f:d7:
10:fa:4b:43:f6:ed:52:79:1e:bf:a6:d5:e5:bb:04:0c:35:45:
bf:26:1a:16:7a:95:d0:70:0d:a8:76:93:4b:57:ff:c9:09:c1:
89:72:91:22:c5:14:58:75:16:82:6d:27:89:31:45:6a:22:92:
eb:97:6f:10:0e:bc:bf:26:87:0b:ef:a9:04:34:d4:2d:97:f6:
98:0f:cc:7f:74:d1:1f:27:83:73:3e:7f:55:98:37:e3:08:f7:
5f:d4:14:44:32:3a:54:5d:4c:45:ae:d8:00:c5:31:e5:d5:da:
cd:f5:d6:fb:a8:1c:d7:bd:c8:3f:7e:37:54:7a:c3:75:24:c3:
28:f1:2e:fd:32:fe:ca:8c:a3:5c:5f:a6:d8:a0:da:19:d1:1d:
08:a9:d4:90
-----BEGIN CERTIFICATE-----
MIIF+DCCBOCgAwIBAgIUNvOy3yQ0OKaKbcpFAw4aQxCszuQwDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyMjc4YWFiODc4ZjI2NjJjZTE0ZTkwNWUxOGViY2I3NTIy
ZjkyYjM2ODRiYzQ4NjViNGQwHhcNMjMwOTA2MDAwMDAwWhcNMjMxMDExMjM1OTU5
WjB6MUkwRwYDVQQFE0BhOGQxMTY1OGMyN2VjZDI1Mjc4ZWRlZWZjZWYzY2M2ZGFj
OTZhZjg2N2ZlMDk2MThhOGY0OWM2ZTQ5YmRjNzUyMS0wKwYDVQQDEyRjMGNlMjNl
YS00M2ZjLTRiZTQtYmVlZS1jMDE0NzgxMjJhMGUwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQC0AgwFdaNEl9GFUNuaYLGtwyxLehxe8uCjl42VYXI3ix+6
jhFhn5vk2RliPWHUNlbqi5j6G9NlOGAZUgXyZpoG+wAGfZhj1m4d01T0MiZ1LGL4
u8y8/gNppUn7JPcCn3tlVlShFOcflS8ZSWcd+iAECWyYfbkD8biAihgapatdT48I
FYJHYyOl27MUwwflyW/8wh8WBBC8Sg3ZVIjN1M+CtYmjwYnVBfL6n9AypOLMl7Sq
Sqy2GN2T73uzDKvkrm4o86AJ8d2MPtydxxCs0IFEJl0sDmCwpBfX20qdFJ166LHq
ph4HOb2+qA7Ph3DqaSfTXazvb5pOLhsnBJ4pax03AgMBAAGjggKxMIICrTAdBgNV
HQ4EFgQU2nLyMJ3eqW/qpG+TQAv7XZPaTY0wHwYDVR0jBBgwFoAUVajdRdlEE/nR
kvUsY86M+8YUlrgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy8xNDMzZWJmZi1k
ZmQ2LTRjNWMtYjdmZi05OWM4NTEzOWQ0YTgvMjc4YWFiODc4ZjI2NjJjZTE0ZTkw
NWUxOGViY2I3NTIyZjkyYjM2ODRiYzQ4NjViNGQuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvMTZmMWZmZWUtNzQ2MS00Njc0LWJiMDUtZmRk
ZWZhOWEwMmM2LzU0NDJjODVjLWQ2MDUtNGE5ZS05MzU3LTg0ZTZjODNlZDBkNC5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzE2ZjFmZmVlLTc0NjEtNDY3NC1iYjA1
LWZkZGVmYTlhMDJjNi9KbUxPRk9rRjRZNjh0MUl2a3JOb1M4U0dXMDAuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBADHJHgwDQYJKoZIhvcNAQELBQADggEBABSkOtJDz+BIfNGyB/H2COyispu3
pQkfcmhOc0DdYoyj9FUlJVUt7lMkGqMrGuBt3N0WSZCyNqn0LX2plrxGUVXKyIDz
/c5FkF/7LaA3i1/x9h8fdih0iViG1aax1cMZwdZT1QPOfiUVEw1f1xD6S0P27VJ5
Hr+m1eW7BAw1Rb8mGhZ6ldBwDah2k0tX/8kJwYlykSLFFFh1FoJtJ4kxRWoikuuX
bxAOvL8mhwvvqQQ01C2X9pgPzH900R8ng3M+f1WYN+MI91/UFEQyOlRdTEWu2ADF
MeXV2s311vuoHNe9yD9+N1R6w3UkwyjxLv0y/sqMo1xfptig2hnRHQip1JA=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:47:46 2024 by rpki-client on console-ams.rpki-client.org