Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/58565c98-5166-4a3f-8f8f-1e544bc759c8.roa
File: 58565c98-5166-4a3f-8f8f-1e544bc759c8.roa (raw, json)
Hash identifier: RmdlhxtGyZv2TD3sQwoHv/ejqv67tUgn5rinp9HJ1/w=
Subject key identifier: D9:0B:34:D2:4A:94:ED:6E:AE:88:B2:7C:47:1A:EA:62:E1:CF:BA:DB
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 40F84CB019F4CB3D36026BD58B84616A46F20AE8
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/58565c98-5166-4a3f-8f8f-1e544bc759c8.roa
Signing time: Fri 04 Aug 2023 00:00:00 +0000
ROA not before: Fri 04 Aug 2023 00:00:00 +0000
ROA not after: Fri 08 Sep 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
40:f8:4c:b0:19:f4:cb:3d:36:02:6b:d5:8b:84:61:6a:46:f2:0a:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Aug 4 00:00:00 2023 GMT
Not After : Sep 8 23:59:59 2023 GMT
Subject: serialNumber=2543079917593eadd1ed1f19287c7b90b29db362f4a98f14b89b1d17ec31a47a, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:51:e6:c3:fe:df:c0:dc:7e:b8:46:c3:28:f4:
07:d3:2e:17:ab:e4:76:9a:70:ef:e0:40:69:1c:0c:
0f:51:cf:6a:cb:7c:ab:97:56:75:5e:21:7c:87:5e:
c5:5c:df:21:c8:35:9c:72:27:42:6a:29:0e:ad:a4:
cf:57:91:a0:4a:bd:63:9e:2f:92:2a:c4:8f:a6:43:
eb:57:9a:d3:6b:f7:7b:3c:4f:2f:9a:6e:0d:63:1b:
5b:0b:08:ad:fb:66:4e:5d:bf:12:9f:f1:6f:d6:84:
56:49:38:8a:c1:47:f4:95:36:f1:62:70:e9:b1:ee:
a7:02:fd:3a:9f:d1:5f:46:57:43:8f:be:c5:81:49:
c7:1a:c7:5f:59:6b:cf:1b:4e:94:6c:5d:5b:fb:fa:
44:9f:98:7f:e4:c1:8c:2c:97:26:d4:24:85:9d:fc:
98:94:89:0c:f8:45:6e:7a:a6:3c:da:39:a9:a8:c8:
60:15:60:38:45:63:5a:0f:4c:0c:8f:a1:d4:31:86:
c1:25:bf:7e:f6:3f:e0:ea:8d:8e:81:93:38:8d:e4:
21:19:4c:f2:e0:8b:26:86:51:29:06:ed:6f:bf:69:
2d:6f:06:62:3c:f7:8e:ea:38:08:eb:57:00:80:aa:
aa:89:c3:3f:2d:d0:03:2e:8c:7b:99:7f:7c:cf:0e:
f5:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:0B:34:D2:4A:94:ED:6E:AE:88:B2:7C:47:1A:EA:62:E1:CF:BA:DB
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/58565c98-5166-4a3f-8f8f-1e544bc759c8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
87:88:b7:a2:8e:57:cc:e2:21:e4:cd:71:7a:6f:2e:68:18:eb:
98:93:0c:8f:4a:44:c8:9e:b4:e5:a0:ea:db:30:24:6f:4a:f7:
0c:95:39:64:58:57:e7:f8:a4:07:6c:88:aa:78:08:c5:46:01:
b1:73:f0:1c:29:da:be:b1:74:58:2e:5b:be:35:d1:63:0c:2e:
f5:84:f3:a1:97:70:1f:08:4d:84:fc:85:d4:49:5e:fd:c8:99:
df:8b:a9:bb:8c:52:a2:a6:a5:99:5e:60:45:ca:bb:d1:4a:6b:
68:b2:02:ea:3d:ce:68:43:ba:b0:9a:b3:ab:58:77:db:57:88:
6b:f1:33:61:62:6a:db:be:66:97:a1:67:40:54:01:95:91:07:
c6:1d:f7:64:4d:e7:c4:58:64:57:8e:07:ee:a3:7c:f8:29:f5:
c5:4a:92:58:7c:a4:53:f4:5b:15:c2:fe:f6:df:ad:10:7e:d4:
fb:ad:61:9e:d7:07:68:59:5c:64:2c:f5:56:aa:28:54:e7:f6:
01:ca:b1:dd:73:a1:ee:73:14:67:01:e3:e0:b8:74:e2:8d:27:
a8:d0:40:47:3a:7e:45:9d:ca:75:fa:6b:fa:18:fd:66:b7:04:
76:84:4e:55:cf:da:cc:2a:90:2e:f1:d0:c6:cf:6e:dd:b5:d6:
ca:a2:20:10
-----BEGIN CERTIFICATE-----
MIIF+DCCBOCgAwIBAgIUQPhMsBn0yz02AmvVi4RhakbyCugwDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyMjc4YWFiODc4ZjI2NjJjZTE0ZTkwNWUxOGViY2I3NTIy
ZjkyYjM2ODRiYzQ4NjViNGQwHhcNMjMwODA0MDAwMDAwWhcNMjMwOTA4MjM1OTU5
WjB6MUkwRwYDVQQFE0AyNTQzMDc5OTE3NTkzZWFkZDFlZDFmMTkyODdjN2I5MGIy
OWRiMzYyZjRhOThmMTRiODliMWQxN2VjMzFhNDdhMS0wKwYDVQQDEyRjMGNlMjNl
YS00M2ZjLTRiZTQtYmVlZS1jMDE0NzgxMjJhMGUwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQDqUebD/t/A3H64RsMo9AfTLher5HaacO/gQGkcDA9Rz2rL
fKuXVnVeIXyHXsVc3yHINZxyJ0JqKQ6tpM9XkaBKvWOeL5IqxI+mQ+tXmtNr93s8
Ty+abg1jG1sLCK37Zk5dvxKf8W/WhFZJOIrBR/SVNvFicOmx7qcC/Tqf0V9GV0OP
vsWBSccax19Za88bTpRsXVv7+kSfmH/kwYwslybUJIWd/JiUiQz4RW56pjzaOamo
yGAVYDhFY1oPTAyPodQxhsElv372P+DqjY6BkziN5CEZTPLgiyaGUSkG7W+/aS1v
BmI8947qOAjrVwCAqqqJwz8t0AMujHuZf3zPDvUHAgMBAAGjggKxMIICrTAdBgNV
HQ4EFgQU2Qs00kqU7W6uiLJ8RxrqYuHPutswHwYDVR0jBBgwFoAUVajdRdlEE/nR
kvUsY86M+8YUlrgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy8xNDMzZWJmZi1k
ZmQ2LTRjNWMtYjdmZi05OWM4NTEzOWQ0YTgvMjc4YWFiODc4ZjI2NjJjZTE0ZTkw
NWUxOGViY2I3NTIyZjkyYjM2ODRiYzQ4NjViNGQuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvMTZmMWZmZWUtNzQ2MS00Njc0LWJiMDUtZmRk
ZWZhOWEwMmM2LzU4NTY1Yzk4LTUxNjYtNGEzZi04ZjhmLTFlNTQ0YmM3NTljOC5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzE2ZjFmZmVlLTc0NjEtNDY3NC1iYjA1
LWZkZGVmYTlhMDJjNi9KbUxPRk9rRjRZNjh0MUl2a3JOb1M4U0dXMDAuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBADHJHgwDQYJKoZIhvcNAQELBQADggEBAIeIt6KOV8ziIeTNcXpvLmgY65iT
DI9KRMietOWg6tswJG9K9wyVOWRYV+f4pAdsiKp4CMVGAbFz8Bwp2r6xdFguW741
0WMMLvWE86GXcB8ITYT8hdRJXv3Imd+LqbuMUqKmpZleYEXKu9FKa2iyAuo9zmhD
urCas6tYd9tXiGvxM2Fiatu+ZpehZ0BUAZWRB8Yd92RN58RYZFeOB+6jfPgp9cVK
klh8pFP0WxXC/vbfrRB+1PutYZ7XB2hZXGQs9VaqKFTn9gHKsd1zoe5zFGcB4+C4
dOKNJ6jQQEc6fkWdynX6a/oY/Wa3BHaETlXP2swqkC7x0MbPbt211sqiIBA=
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:41:28 2024 by rpki-client on console-fra.rpki-client.org