Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/63528f76-dcdb-4e6f-94a0-6197d1eea05a.roa
File: 63528f76-dcdb-4e6f-94a0-6197d1eea05a.roa (raw, json)
Hash identifier: /0EEdTQ+4ZcHJ6izQyZCwki5JfViSnoBgBEy/alqDBo=
Subject key identifier: 20:82:9F:D0:1F:B9:F0:54:7F:A5:14:B5:9C:BB:95:7C:0B:75:48:D0
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 38262CD026A23A52CB2B7ABD3BDBF2549D4F2FD3
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/63528f76-dcdb-4e6f-94a0-6197d1eea05a.roa
Signing time: Sat 02 Dec 2023 00:00:00 +0000
ROA not before: Sat 02 Dec 2023 00:00:00 +0000
ROA not after: Sat 06 Jan 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
38:26:2c:d0:26:a2:3a:52:cb:2b:7a:bd:3b:db:f2:54:9d:4f:2f:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Dec 2 00:00:00 2023 GMT
Not After : Jan 6 23:59:59 2024 GMT
Subject: serialNumber=071e946fd7584215c0c347ec836446039eb66ff4c651859d861ccb3477465328, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:26:dd:eb:80:a1:57:d6:4f:98:a0:39:74:83:
be:18:ef:a9:49:4c:0c:b3:cf:ab:6d:a0:81:7d:31:
10:31:27:e5:e4:8a:ba:d8:e6:70:02:6e:58:ba:6c:
c0:3f:c6:89:13:c6:0d:40:d7:49:ab:65:0f:bb:2a:
80:d1:cd:d7:db:9d:19:d6:88:01:0d:8b:9f:ba:9d:
20:ed:36:f3:a0:be:5e:cb:3b:20:6d:5a:c1:0b:a3:
77:48:a4:67:a9:3a:0a:5e:a9:19:c4:e7:a5:97:06:
ee:41:9a:fe:e9:29:63:2f:cd:44:1a:f6:24:3b:05:
56:90:38:19:06:f6:0b:d1:85:3f:ee:92:db:45:eb:
e1:4a:6b:53:08:dc:9f:35:f2:5d:dc:1b:a5:19:ed:
91:1e:f2:2b:27:c2:24:9a:f1:98:88:15:e6:f1:a2:
fa:82:88:53:01:ff:8f:e4:c5:30:c3:a3:b5:cd:13:
76:52:6b:54:17:b1:fb:0d:3c:ab:38:8f:56:37:4a:
81:fa:b9:24:65:e1:77:51:15:8e:05:0f:e3:77:4e:
63:32:a4:86:f5:34:37:4b:49:46:9f:a5:c5:cb:4f:
6f:b3:6c:0a:c3:a2:52:be:c7:4f:1f:a8:a9:08:4f:
7a:8d:92:9e:aa:56:c4:c2:b0:36:61:9a:99:a7:f7:
9f:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:82:9F:D0:1F:B9:F0:54:7F:A5:14:B5:9C:BB:95:7C:0B:75:48:D0
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/63528f76-dcdb-4e6f-94a0-6197d1eea05a.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
ae:82:54:d2:ca:c7:a6:16:ec:6a:03:3b:bc:ff:e7:26:64:5c:
c8:1f:e4:b0:77:5f:37:51:77:b9:a3:7a:4f:47:3f:81:9e:14:
b6:d5:ad:36:f9:0d:b9:b4:57:28:51:ad:0a:48:14:0c:d9:22:
d9:a8:59:b4:0e:39:70:87:05:08:a0:fd:50:78:46:3d:3a:73:
35:11:b9:fd:35:d8:78:c2:0f:a0:9b:29:e2:ba:f9:95:42:03:
e4:5c:8c:3c:57:5c:f9:de:6d:b5:b8:f7:8f:b8:5e:be:5a:ea:
1c:80:3e:19:0d:c9:d2:60:c6:2c:fd:71:37:76:4f:06:8c:58:
1e:b7:10:f7:9f:1a:64:b4:80:b7:13:6f:55:c9:ee:76:48:83:
b1:17:cc:39:54:90:a4:1b:aa:36:d4:13:6a:37:86:c1:eb:51:
9a:a1:b0:b1:7e:a6:67:4f:24:7c:f9:ed:9d:99:ee:65:ac:91:
01:31:1c:e4:bb:5b:fc:2a:b7:94:4d:fb:78:d3:ac:9e:ea:5a:
bb:48:11:b1:c9:eb:5c:da:00:aa:47:a8:f2:e6:1b:22:61:96:
76:a1:93:51:3b:f9:d2:d1:92:43:ba:4b:fc:d8:c6:33:2c:76:
8f:77:05:98:e8:29:e1:fd:a7:a6:f9:96:0e:25:6a:df:25:de:
19:2f:14:68
-----BEGIN CERTIFICATE-----
MIIF+DCCBOCgAwIBAgIUOCYs0CaiOlLLK3q9O9vyVJ1PL9MwDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyMjc4YWFiODc4ZjI2NjJjZTE0ZTkwNWUxOGViY2I3NTIy
ZjkyYjM2ODRiYzQ4NjViNGQwHhcNMjMxMjAyMDAwMDAwWhcNMjQwMTA2MjM1OTU5
WjB6MUkwRwYDVQQFE0AwNzFlOTQ2ZmQ3NTg0MjE1YzBjMzQ3ZWM4MzY0NDYwMzll
YjY2ZmY0YzY1MTg1OWQ4NjFjY2IzNDc3NDY1MzI4MS0wKwYDVQQDEyRjMGNlMjNl
YS00M2ZjLTRiZTQtYmVlZS1jMDE0NzgxMjJhMGUwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQCUJt3rgKFX1k+YoDl0g74Y76lJTAyzz6ttoIF9MRAxJ+Xk
irrY5nACbli6bMA/xokTxg1A10mrZQ+7KoDRzdfbnRnWiAENi5+6nSDtNvOgvl7L
OyBtWsELo3dIpGepOgpeqRnE56WXBu5Bmv7pKWMvzUQa9iQ7BVaQOBkG9gvRhT/u
kttF6+FKa1MI3J818l3cG6UZ7ZEe8isnwiSa8ZiIFebxovqCiFMB/4/kxTDDo7XN
E3ZSa1QXsfsNPKs4j1Y3SoH6uSRl4XdRFY4FD+N3TmMypIb1NDdLSUafpcXLT2+z
bArDolK+x08fqKkIT3qNkp6qVsTCsDZhmpmn95/dAgMBAAGjggKxMIICrTAdBgNV
HQ4EFgQUIIKf0B+58FR/pRS1nLuVfAt1SNAwHwYDVR0jBBgwFoAUVajdRdlEE/nR
kvUsY86M+8YUlrgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy8xNDMzZWJmZi1k
ZmQ2LTRjNWMtYjdmZi05OWM4NTEzOWQ0YTgvMjc4YWFiODc4ZjI2NjJjZTE0ZTkw
NWUxOGViY2I3NTIyZjkyYjM2ODRiYzQ4NjViNGQuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvMTZmMWZmZWUtNzQ2MS00Njc0LWJiMDUtZmRk
ZWZhOWEwMmM2LzYzNTI4Zjc2LWRjZGItNGU2Zi05NGEwLTYxOTdkMWVlYTA1YS5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzE2ZjFmZmVlLTc0NjEtNDY3NC1iYjA1
LWZkZGVmYTlhMDJjNi9KbUxPRk9rRjRZNjh0MUl2a3JOb1M4U0dXMDAuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBADHJHgwDQYJKoZIhvcNAQELBQADggEBAK6CVNLKx6YW7GoDO7z/5yZkXMgf
5LB3XzdRd7mjek9HP4GeFLbVrTb5Dbm0VyhRrQpIFAzZItmoWbQOOXCHBQig/VB4
Rj06czURuf012HjCD6CbKeK6+ZVCA+RcjDxXXPnebbW494+4Xr5a6hyAPhkNydJg
xiz9cTd2TwaMWB63EPefGmS0gLcTb1XJ7nZIg7EXzDlUkKQbqjbUE2o3hsHrUZqh
sLF+pmdPJHz57Z2Z7mWskQExHOS7W/wqt5RN+3jTrJ7qWrtIEbHJ61zaAKpHqPLm
GyJhlnahk1E7+dLRkkO6S/zYxjMsdo93BZjoKeH9p6b5lg4lat8l3hkvFGg=
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:41:29 2024 by rpki-client on console-fra.rpki-client.org