Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/55dd8a63-d08d-4a22-8337-9d1f6102e86c.roa
File: 55dd8a63-d08d-4a22-8337-9d1f6102e86c.roa (raw, json)
Hash identifier: vQDJorcUqzVt2gSZ7a4H1HXNdlV9BIkjC/Y/DjgeHn4=
Subject key identifier: 86:84:9C:FE:95:62:5E:FA:B8:F8:CC:05:10:C9:4F:78:8C:50:2E:A3
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 17DCB1DBB9A87F3E2CF9F7CA0B75E626CA10C6CF
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/55dd8a63-d08d-4a22-8337-9d1f6102e86c.roa
Signing time: Fri 16 Jun 2023 00:00:00 +0000
ROA not before: Fri 16 Jun 2023 00:00:00 +0000
ROA not after: Fri 21 Jul 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
17:dc:b1:db:b9:a8:7f:3e:2c:f9:f7:ca:0b:75:e6:26:ca:10:c6:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Jun 16 00:00:00 2023 GMT
Not After : Jul 21 23:59:59 2023 GMT
Subject: serialNumber=6ec333e3cf4267c2c989f763608eac6c2826d7aeade94f2f9b751d3d25e3ac38, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:26:97:43:e4:42:fa:98:95:e2:80:cd:b6:1b:
1f:d4:97:c2:94:61:19:82:33:ff:5d:3d:d9:00:6c:
d6:3a:ed:d2:5d:fa:96:be:ef:48:fb:4e:66:30:db:
db:45:cd:6b:01:c0:04:fb:8b:a0:e7:da:7e:26:49:
be:e7:7e:99:2e:b6:d2:f7:34:5a:88:f2:f2:04:46:
37:e6:73:ad:77:5d:9f:de:a3:93:d7:4c:51:4e:58:
a6:8c:1a:94:42:b4:4a:44:4c:1d:84:6d:a1:d1:db:
eb:89:48:84:12:bf:da:8c:02:ac:fb:79:28:d0:90:
5a:ac:15:1c:07:2a:5c:e1:82:96:cf:f2:1c:09:e5:
b8:9b:96:54:07:5d:ff:a1:1e:62:92:48:b1:d9:5c:
72:03:e0:78:0d:32:ab:29:5f:41:67:54:b2:78:4b:
8e:29:f2:71:2c:55:16:6b:b3:ed:1d:77:2c:eb:21:
ec:4f:ac:b0:95:74:b0:81:64:80:0c:42:1d:53:5c:
f4:05:db:4e:1a:f7:02:14:a5:c5:d3:7d:7c:44:dc:
c8:a4:62:33:98:a9:3c:0c:c8:a4:f3:1e:dc:9b:68:
64:78:c0:ed:27:c2:85:43:25:30:65:a4:55:31:a0:
6d:d0:0b:ec:c7:62:7b:62:c1:cc:47:17:6a:a0:fd:
78:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:84:9C:FE:95:62:5E:FA:B8:F8:CC:05:10:C9:4F:78:8C:50:2E:A3
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/55dd8a63-d08d-4a22-8337-9d1f6102e86c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
9e:a4:b6:59:28:31:39:32:0e:fa:34:05:a2:25:93:ec:ff:46:
77:af:ef:ea:a5:c8:4f:0e:23:34:ee:d2:8f:27:70:dc:d5:61:
ac:8c:63:e8:f8:e1:0b:76:e0:1c:d5:50:41:be:8b:38:fa:49:
b1:83:b1:64:81:ae:db:a0:1c:c5:54:61:0e:0d:95:0b:fb:25:
3f:0e:9a:45:ab:67:4e:e8:2c:11:4e:1a:be:34:3a:d9:8f:51:
3c:a9:fa:2f:52:b4:d9:4d:db:26:91:a4:10:df:69:c9:9e:ad:
32:76:58:b4:c3:95:85:1e:c8:c8:f4:d1:b7:fa:13:4f:1d:c4:
03:db:81:ca:cc:2e:cb:fe:49:20:e3:27:60:3d:3c:42:ce:f9:
07:e7:04:70:17:dd:c5:66:89:bd:a4:c1:d9:49:6f:fa:b6:ee:
54:5b:d9:78:40:3b:c9:5a:b9:b2:ea:dd:5b:c1:08:06:d9:4d:
e7:fd:78:7c:e8:d1:4b:cc:3c:27:5f:e2:ed:06:eb:5c:aa:80:
2c:63:8b:c1:2b:d7:cf:65:3f:bd:e5:a1:b9:e3:30:86:29:08:
a5:98:57:ff:d6:6b:a1:37:12:b1:b4:4f:74:f7:62:00:04:10:
b3:17:69:1b:9c:24:e0:1f:dd:2b:b9:18:c6:3a:18:81:6d:16:
5c:2b:9e:e4
-----BEGIN CERTIFICATE-----
MIIF+DCCBOCgAwIBAgIUF9yx27mofz4s+ffKC3XmJsoQxs8wDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyMjc4YWFiODc4ZjI2NjJjZTE0ZTkwNWUxOGViY2I3NTIy
ZjkyYjM2ODRiYzQ4NjViNGQwHhcNMjMwNjE2MDAwMDAwWhcNMjMwNzIxMjM1OTU5
WjB6MUkwRwYDVQQFE0A2ZWMzMzNlM2NmNDI2N2MyYzk4OWY3NjM2MDhlYWM2YzI4
MjZkN2FlYWRlOTRmMmY5Yjc1MWQzZDI1ZTNhYzM4MS0wKwYDVQQDEyRjMGNlMjNl
YS00M2ZjLTRiZTQtYmVlZS1jMDE0NzgxMjJhMGUwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQCPJpdD5EL6mJXigM22Gx/Ul8KUYRmCM/9dPdkAbNY67dJd
+pa+70j7TmYw29tFzWsBwAT7i6Dn2n4mSb7nfpkuttL3NFqI8vIERjfmc613XZ/e
o5PXTFFOWKaMGpRCtEpETB2EbaHR2+uJSIQSv9qMAqz7eSjQkFqsFRwHKlzhgpbP
8hwJ5bibllQHXf+hHmKSSLHZXHID4HgNMqspX0FnVLJ4S44p8nEsVRZrs+0ddyzr
IexPrLCVdLCBZIAMQh1TXPQF204a9wIUpcXTfXxE3MikYjOYqTwMyKTzHtybaGR4
wO0nwoVDJTBlpFUxoG3QC+zHYntiwcxHF2qg/XjzAgMBAAGjggKxMIICrTAdBgNV
HQ4EFgQUhoSc/pViXvq4+MwFEMlPeIxQLqMwHwYDVR0jBBgwFoAUVajdRdlEE/nR
kvUsY86M+8YUlrgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy8xNDMzZWJmZi1k
ZmQ2LTRjNWMtYjdmZi05OWM4NTEzOWQ0YTgvMjc4YWFiODc4ZjI2NjJjZTE0ZTkw
NWUxOGViY2I3NTIyZjkyYjM2ODRiYzQ4NjViNGQuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvMTZmMWZmZWUtNzQ2MS00Njc0LWJiMDUtZmRk
ZWZhOWEwMmM2LzU1ZGQ4YTYzLWQwOGQtNGEyMi04MzM3LTlkMWY2MTAyZTg2Yy5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzE2ZjFmZmVlLTc0NjEtNDY3NC1iYjA1
LWZkZGVmYTlhMDJjNi9KbUxPRk9rRjRZNjh0MUl2a3JOb1M4U0dXMDAuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBADHJHgwDQYJKoZIhvcNAQELBQADggEBAJ6ktlkoMTkyDvo0BaIlk+z/Rnev
7+qlyE8OIzTu0o8ncNzVYayMY+j44Qt24BzVUEG+izj6SbGDsWSBrtugHMVUYQ4N
lQv7JT8OmkWrZ07oLBFOGr40OtmPUTyp+i9StNlN2yaRpBDfacmerTJ2WLTDlYUe
yMj00bf6E08dxAPbgcrMLsv+SSDjJ2A9PELO+QfnBHAX3cVmib2kwdlJb/q27lRb
2XhAO8laubLq3VvBCAbZTef9eHzo0UvMPCdf4u0G61yqgCxji8Er189lP73lobnj
MIYpCKWYV//Wa6E3ErG0T3T3YgAEELMXaRucJOAf3Su5GMY6GIFtFlwrnuQ=
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:41:27 2024 by rpki-client on console-fra.rpki-client.org