Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/5d07f08c-b9f8-4c6c-922f-fb259e8c99ff.roa
File: 5d07f08c-b9f8-4c6c-922f-fb259e8c99ff.roa (raw, json)
Hash identifier: aawih7y6BedmfPpyf3ri4swcFL65DsbYgAV3ux7L+Wg=
Subject key identifier: 98:D7:E2:15:92:F0:D7:01:AA:5A:00:8D:4F:AE:4F:82:79:77:6D:89
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 0403100D59440C857EA241826E9BB72E06EF03D0
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/5d07f08c-b9f8-4c6c-922f-fb259e8c99ff.roa
Signing time: Fri 20 Oct 2023 00:00:00 +0000
ROA not before: Fri 20 Oct 2023 00:00:00 +0000
ROA not after: Fri 24 Nov 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
04:03:10:0d:59:44:0c:85:7e:a2:41:82:6e:9b:b7:2e:06:ef:03:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Oct 20 00:00:00 2023 GMT
Not After : Nov 24 23:59:59 2023 GMT
Subject: serialNumber=bcf30178a2027a077986dcc4acf2ff35be8f7dc9bcf868fd3424809813ca0e44, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:88:4d:41:a4:5d:a9:23:31:33:6b:e6:b1:b2:
2a:b6:c3:2c:fe:32:11:7f:46:0b:71:4a:88:bb:43:
cc:1a:ca:b4:f3:21:ee:77:70:ad:43:89:93:77:2c:
14:f8:e7:0a:55:b1:76:30:03:67:d0:6c:0b:69:bc:
26:b2:ed:04:1e:99:87:4d:b2:4d:ec:7a:28:4c:83:
dc:c2:c1:b4:12:0e:33:2e:0f:da:c4:cd:30:96:f7:
b0:54:8e:10:a3:5f:db:24:6f:06:05:d0:24:72:66:
83:cc:74:55:be:98:7f:c3:84:c3:b4:75:a7:10:0f:
fb:a0:20:77:92:64:71:8c:f3:d8:17:6d:05:01:b6:
9c:25:00:b1:9e:0f:c3:64:56:6e:25:b9:fd:33:3f:
a8:39:8e:36:e2:f3:47:6c:f1:f6:2c:95:e0:d5:f2:
c2:35:d1:1f:04:32:83:fc:ef:14:a3:86:6e:56:9e:
32:eb:5a:03:c6:8c:72:82:10:45:70:2c:d0:4f:86:
5d:e7:21:bb:52:8e:d9:c2:c1:dd:e0:a1:ab:e0:97:
72:d8:ac:bf:2f:55:41:e6:22:3c:cc:74:0e:5c:4f:
bb:6b:b6:cf:03:fd:81:d0:91:90:b6:6e:47:10:9d:
9f:ac:43:24:9f:d6:af:28:a2:2c:2a:19:13:df:0a:
f2:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:D7:E2:15:92:F0:D7:01:AA:5A:00:8D:4F:AE:4F:82:79:77:6D:89
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/5d07f08c-b9f8-4c6c-922f-fb259e8c99ff.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
10:3f:66:2e:45:06:a3:54:ff:a9:76:cb:32:6d:ca:b6:21:70:
05:46:2b:2c:02:37:1b:ee:26:44:cc:03:28:70:00:e5:dc:dc:
98:db:2e:cf:12:9e:d7:c8:86:40:22:b5:cf:ad:4d:54:0a:c6:
6d:d7:35:71:c8:6e:e9:ec:c5:59:e7:0d:80:94:fe:9a:09:5c:
41:a5:82:c0:80:3b:ca:c2:f3:1d:80:74:d0:cb:7d:7b:0b:34:
03:c2:11:d7:c4:f4:52:97:6d:41:2f:da:49:73:54:18:4e:d1:
6f:c9:00:97:28:4a:ea:ef:cf:7c:dd:86:d7:9f:d4:e4:82:0d:
c5:47:99:51:c4:e0:a7:f7:52:be:00:85:bb:37:eb:09:7b:dc:
5d:b1:a7:21:88:13:22:1e:1b:30:1f:7c:fc:d7:6d:2d:e8:18:
c6:e7:91:b3:1c:59:29:83:44:56:aa:06:85:39:a4:69:0c:80:
de:87:89:a6:74:aa:53:38:f5:44:e2:94:7f:1c:37:ca:a9:fb:
4d:8a:09:01:05:c5:27:c0:0f:ee:63:4a:32:01:96:85:06:10:
10:9f:34:cb:6e:c5:c5:0b:c2:0f:49:d4:d5:8b:09:e0:0d:59:
50:8d:c4:5a:8c:a3:10:64:33:9c:4b:bb:66:8f:8a:5c:f9:4d:
60:1c:c5:52
-----BEGIN CERTIFICATE-----
MIIF+DCCBOCgAwIBAgIUBAMQDVlEDIV+okGCbpu3LgbvA9AwDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyMjc4YWFiODc4ZjI2NjJjZTE0ZTkwNWUxOGViY2I3NTIy
ZjkyYjM2ODRiYzQ4NjViNGQwHhcNMjMxMDIwMDAwMDAwWhcNMjMxMTI0MjM1OTU5
WjB6MUkwRwYDVQQFE0BiY2YzMDE3OGEyMDI3YTA3Nzk4NmRjYzRhY2YyZmYzNWJl
OGY3ZGM5YmNmODY4ZmQzNDI0ODA5ODEzY2EwZTQ0MS0wKwYDVQQDEyRjMGNlMjNl
YS00M2ZjLTRiZTQtYmVlZS1jMDE0NzgxMjJhMGUwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQDdiE1BpF2pIzEza+axsiq2wyz+MhF/RgtxSoi7Q8wayrTz
Ie53cK1DiZN3LBT45wpVsXYwA2fQbAtpvCay7QQemYdNsk3seihMg9zCwbQSDjMu
D9rEzTCW97BUjhCjX9skbwYF0CRyZoPMdFW+mH/DhMO0dacQD/ugIHeSZHGM89gX
bQUBtpwlALGeD8NkVm4luf0zP6g5jjbi80ds8fYsleDV8sI10R8EMoP87xSjhm5W
njLrWgPGjHKCEEVwLNBPhl3nIbtSjtnCwd3goavgl3LYrL8vVUHmIjzMdA5cT7tr
ts8D/YHQkZC2bkcQnZ+sQySf1q8ooiwqGRPfCvLPAgMBAAGjggKxMIICrTAdBgNV
HQ4EFgQUmNfiFZLw1wGqWgCNT65Pgnl3bYkwHwYDVR0jBBgwFoAUVajdRdlEE/nR
kvUsY86M+8YUlrgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy8xNDMzZWJmZi1k
ZmQ2LTRjNWMtYjdmZi05OWM4NTEzOWQ0YTgvMjc4YWFiODc4ZjI2NjJjZTE0ZTkw
NWUxOGViY2I3NTIyZjkyYjM2ODRiYzQ4NjViNGQuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvMTZmMWZmZWUtNzQ2MS00Njc0LWJiMDUtZmRk
ZWZhOWEwMmM2LzVkMDdmMDhjLWI5ZjgtNGM2Yy05MjJmLWZiMjU5ZThjOTlmZi5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzE2ZjFmZmVlLTc0NjEtNDY3NC1iYjA1
LWZkZGVmYTlhMDJjNi9KbUxPRk9rRjRZNjh0MUl2a3JOb1M4U0dXMDAuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBADHJHgwDQYJKoZIhvcNAQELBQADggEBABA/Zi5FBqNU/6l2yzJtyrYhcAVG
KywCNxvuJkTMAyhwAOXc3JjbLs8SntfIhkAitc+tTVQKxm3XNXHIbunsxVnnDYCU
/poJXEGlgsCAO8rC8x2AdNDLfXsLNAPCEdfE9FKXbUEv2klzVBhO0W/JAJcoSurv
z3zdhtef1OSCDcVHmVHE4Kf3Ur4Ahbs36wl73F2xpyGIEyIeGzAffPzXbS3oGMbn
kbMcWSmDRFaqBoU5pGkMgN6HiaZ0qlM49UTilH8cN8qp+02KCQEFxSfAD+5jSjIB
loUGEBCfNMtuxcULwg9J1NWLCeANWVCNxFqMoxBkM5xLu2aPilz5TWAcxVI=
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:41:28 2024 by rpki-client on console-fra.rpki-client.org