Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/59cbbac4-1490-4b1c-b269-5c3814d111e6.roa
File: 59cbbac4-1490-4b1c-b269-5c3814d111e6.roa (raw, json)
Hash identifier: DME5TCQLy9X5uvH0/wTfcajQ8+Fb5Pe4fQTcWE6XJlc=
Subject key identifier: 6F:4A:0A:CC:EB:91:A5:EA:BE:FC:C6:74:2A:BD:E2:26:73:CB:F2:30
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 1F7D3079FA6FB8AD1E033216860659CA8C50E691
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/59cbbac4-1490-4b1c-b269-5c3814d111e6.roa
Signing time: Sat 04 Nov 2023 00:00:00 +0000
ROA not before: Sat 04 Nov 2023 00:00:00 +0000
ROA not after: Sat 09 Dec 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1f:7d:30:79:fa:6f:b8:ad:1e:03:32:16:86:06:59:ca:8c:50:e6:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Nov 4 00:00:00 2023 GMT
Not After : Dec 9 23:59:59 2023 GMT
Subject: serialNumber=6f02286376052618671990f0ad12e6c56352892efa2746a84c75507991cca703, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:b0:50:30:7a:dc:5c:3a:86:dd:86:84:e5:b4:
6b:ca:ac:78:e2:99:4c:fa:af:af:6c:b4:ca:5b:84:
12:e3:e3:9e:40:cf:73:f8:b2:a2:9a:e8:dc:e1:b9:
02:17:0e:4c:1a:9e:34:7c:aa:cb:f8:e4:4b:05:5c:
6d:fb:c9:5d:d9:86:de:7e:63:cc:11:1a:9e:f0:c0:
1d:78:1c:64:dd:e7:55:91:4f:93:a3:ac:1d:b3:0e:
56:90:9c:6b:05:6c:42:d5:1a:12:fe:41:04:a0:b7:
29:80:a9:95:74:14:bd:93:e8:46:c8:ff:b6:13:81:
42:78:9e:71:5a:e8:fd:cd:e8:0d:07:c6:31:b3:bb:
fe:55:26:eb:bb:b8:6a:8c:3b:db:38:2a:3a:20:3c:
c8:37:be:da:3c:ac:2e:e8:6b:1d:45:ba:24:82:17:
00:97:4a:d3:e5:90:dc:fa:e0:fa:e7:59:f3:9e:12:
c6:2a:34:97:18:79:40:d5:27:c3:5d:60:cd:7b:9b:
6c:b7:82:e4:b2:0f:7e:44:60:a6:45:69:c1:59:96:
81:5b:f9:11:e9:e8:95:8c:5a:ff:ec:19:aa:f5:91:
8b:aa:ce:4d:11:c1:09:47:fb:c4:69:3a:44:36:b3:
94:06:4d:8f:0b:ef:2b:ef:01:ef:2c:e1:06:34:51:
a2:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:4A:0A:CC:EB:91:A5:EA:BE:FC:C6:74:2A:BD:E2:26:73:CB:F2:30
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/59cbbac4-1490-4b1c-b269-5c3814d111e6.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
42:94:17:26:3a:a4:f9:96:8b:32:df:d8:bd:41:96:ff:ec:9f:
15:47:6c:7c:38:cb:eb:3b:9f:8a:5e:68:ad:be:93:30:24:24:
eb:e3:ca:c1:9f:d3:28:98:17:81:8f:74:d6:ec:ef:c2:de:44:
ba:7e:21:4e:fd:34:9c:a1:20:87:eb:96:50:bd:df:f3:3a:4a:
fa:53:c4:b2:31:f8:dc:08:47:17:5f:fe:ce:2e:f4:ab:08:1a:
5b:f6:86:91:97:1e:24:d6:11:1a:9c:4a:09:28:3f:d7:ff:f5:
47:1f:8b:8c:54:83:3c:5d:a4:6d:32:18:2c:e4:3a:93:d0:01:
08:66:b2:53:b4:17:74:13:ae:49:95:fa:f3:dd:ff:2e:34:6c:
34:a3:2e:27:9c:31:23:d3:41:46:f8:5a:50:d7:ad:31:b6:10:
50:c3:da:03:9d:9a:2d:4f:67:fa:68:ed:5e:45:20:eb:f7:c5:
bc:cd:37:0a:0c:24:e5:18:c7:1a:ef:de:11:6b:5f:b0:0f:d1:
d3:d2:20:29:6c:4b:50:23:8d:da:b4:1d:93:a8:d0:2b:77:e9:
df:0c:1a:3c:c2:d6:3b:42:56:ad:48:de:d5:93:f5:5f:9b:af:
e1:31:70:05:05:e3:a1:fd:5e:75:1c:60:75:cd:c2:fa:5d:ae:
be:28:04:ad
-----BEGIN CERTIFICATE-----
MIIF+DCCBOCgAwIBAgIUH30wefpvuK0eAzIWhgZZyoxQ5pEwDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyMjc4YWFiODc4ZjI2NjJjZTE0ZTkwNWUxOGViY2I3NTIy
ZjkyYjM2ODRiYzQ4NjViNGQwHhcNMjMxMTA0MDAwMDAwWhcNMjMxMjA5MjM1OTU5
WjB6MUkwRwYDVQQFE0A2ZjAyMjg2Mzc2MDUyNjE4NjcxOTkwZjBhZDEyZTZjNTYz
NTI4OTJlZmEyNzQ2YTg0Yzc1NTA3OTkxY2NhNzAzMS0wKwYDVQQDEyRjMGNlMjNl
YS00M2ZjLTRiZTQtYmVlZS1jMDE0NzgxMjJhMGUwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQCOsFAwetxcOobdhoTltGvKrHjimUz6r69stMpbhBLj455A
z3P4sqKa6NzhuQIXDkwanjR8qsv45EsFXG37yV3Zht5+Y8wRGp7wwB14HGTd51WR
T5OjrB2zDlaQnGsFbELVGhL+QQSgtymAqZV0FL2T6EbI/7YTgUJ4nnFa6P3N6A0H
xjGzu/5VJuu7uGqMO9s4KjogPMg3vto8rC7oax1FuiSCFwCXStPlkNz64PrnWfOe
EsYqNJcYeUDVJ8NdYM17m2y3guSyD35EYKZFacFZloFb+RHp6JWMWv/sGar1kYuq
zk0RwQlH+8RpOkQ2s5QGTY8L7yvvAe8s4QY0UaL/AgMBAAGjggKxMIICrTAdBgNV
HQ4EFgQUb0oKzOuRpeq+/MZ0Kr3iJnPL8jAwHwYDVR0jBBgwFoAUVajdRdlEE/nR
kvUsY86M+8YUlrgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy8xNDMzZWJmZi1k
ZmQ2LTRjNWMtYjdmZi05OWM4NTEzOWQ0YTgvMjc4YWFiODc4ZjI2NjJjZTE0ZTkw
NWUxOGViY2I3NTIyZjkyYjM2ODRiYzQ4NjViNGQuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvMTZmMWZmZWUtNzQ2MS00Njc0LWJiMDUtZmRk
ZWZhOWEwMmM2LzU5Y2JiYWM0LTE0OTAtNGIxYy1iMjY5LTVjMzgxNGQxMTFlNi5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzE2ZjFmZmVlLTc0NjEtNDY3NC1iYjA1
LWZkZGVmYTlhMDJjNi9KbUxPRk9rRjRZNjh0MUl2a3JOb1M4U0dXMDAuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBADHJHgwDQYJKoZIhvcNAQELBQADggEBAEKUFyY6pPmWizLf2L1Blv/snxVH
bHw4y+s7n4peaK2+kzAkJOvjysGf0yiYF4GPdNbs78LeRLp+IU79NJyhIIfrllC9
3/M6SvpTxLIx+NwIRxdf/s4u9KsIGlv2hpGXHiTWERqcSgkoP9f/9Ucfi4xUgzxd
pG0yGCzkOpPQAQhmslO0F3QTrkmV+vPd/y40bDSjLiecMSPTQUb4WlDXrTG2EFDD
2gOdmi1PZ/po7V5FIOv3xbzNNwoMJOUYxxrv3hFrX7AP0dPSIClsS1Ajjdq0HZOo
0Ct36d8MGjzC1jtCVq1I3tWT9V+br+ExcAUF46H9XnUcYHXNwvpdrr4oBK0=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:47:47 2024 by rpki-client on console-ams.rpki-client.org