Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/6740a089-bf4f-4b4a-a15c-6b24c541650d.roa
File: 6740a089-bf4f-4b4a-a15c-6b24c541650d.roa (raw, json)
Hash identifier: YzXMwZMFPO8q9KMmHmHN+t8qJDv0kANrB8pjFvZznYg=
Subject key identifier: 89:2D:66:A0:A8:66:C4:CF:1C:CE:BB:EE:3B:EA:B4:09:11:49:80:5A
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 6C2C4550BD077C74323D16F7C4AA0E8D0EE4DE33
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/6740a089-bf4f-4b4a-a15c-6b24c541650d.roa
Signing time: Mon 01 Apr 2024 00:00:00 +0000
ROA not before: Mon 01 Apr 2024 00:00:00 +0000
ROA not after: Mon 06 May 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6c:2c:45:50:bd:07:7c:74:32:3d:16:f7:c4:aa:0e:8d:0e:e4:de:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Apr 1 00:00:00 2024 GMT
Not After : May 6 23:59:59 2024 GMT
Subject: serialNumber=fb4932473a0e9fc5f5e975e676da870e269f4b18a73a3a2d8f853af583d735af, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:58:99:a7:0f:38:3f:99:be:57:c6:5c:c6:34:
c8:e4:b8:a0:aa:3f:74:69:45:37:ef:db:bc:29:58:
53:c3:cb:b6:75:b7:88:af:ef:3a:d6:b5:f9:34:7e:
47:39:f6:9c:de:ff:b5:4a:21:3b:81:60:55:d1:1c:
a9:1e:71:c4:7f:b2:2a:79:f5:60:90:a8:2d:bf:52:
88:2b:ca:61:fd:9c:4f:f8:e2:fa:5e:5b:df:7b:ed:
7c:fe:ae:04:0a:a5:3c:ac:6e:69:e6:4b:cd:be:da:
3b:65:cb:8f:e0:2f:aa:27:37:3b:00:81:47:8c:eb:
48:5c:24:10:fd:12:15:3a:2b:25:cf:89:3d:24:ae:
1f:61:7a:62:b2:41:e6:7d:98:05:b8:2d:49:05:ff:
bd:31:ac:c9:cd:22:eb:bb:1e:74:13:4b:5f:96:cd:
e4:b3:bf:95:07:58:f4:d5:af:2d:e4:66:98:78:9d:
02:82:cf:99:21:1c:50:1c:80:89:30:ce:5a:f9:22:
67:3a:fd:81:72:d3:75:cb:48:38:79:d8:61:e2:32:
f2:f0:be:40:3b:af:ed:f7:3d:a6:41:b7:08:90:89:
53:b4:ae:09:73:57:f3:29:f4:e4:f7:81:1c:05:06:
ef:0b:7b:68:e4:85:68:c4:31:78:d5:7a:bc:24:05:
44:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:2D:66:A0:A8:66:C4:CF:1C:CE:BB:EE:3B:EA:B4:09:11:49:80:5A
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/6740a089-bf4f-4b4a-a15c-6b24c541650d.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
b4:4f:4b:7f:34:59:7d:29:ce:13:c2:05:a0:d0:8b:24:23:f0:
ca:a9:84:74:a3:a9:2e:64:e7:43:5e:b9:05:6d:41:a0:dc:e5:
66:61:5d:04:77:73:59:cd:96:17:53:f4:a0:35:d5:fa:a1:ce:
07:32:8b:57:e5:5a:74:91:8c:1d:6e:4f:f0:1e:52:96:f3:b1:
49:f2:f0:a9:30:b8:3b:83:0f:1b:20:93:dc:aa:83:de:06:4f:
89:a8:58:4a:18:0d:61:87:67:92:01:71:30:03:b8:60:b0:80:
90:ce:93:38:fc:56:a3:4a:bf:e9:92:0c:9c:39:f3:cd:41:d9:
e7:03:e0:b4:ba:3c:ce:5a:87:14:46:c8:c7:8a:96:12:72:0d:
2c:7c:57:68:45:e2:24:97:c4:36:0b:6a:42:14:fb:21:6f:6b:
15:38:0f:1f:f4:e8:8b:55:e8:03:19:d2:ca:40:c9:f8:3d:b1:
34:4b:92:18:a9:6d:4f:9d:6a:55:a5:60:5a:4c:7d:84:eb:a9:
7b:6c:a1:bb:aa:7f:d1:75:fa:79:41:9f:b4:ed:7a:08:52:64:
07:9b:74:5e:5e:43:9a:70:bd:f3:d2:47:c5:63:6a:1c:b0:c7:
de:69:bf:31:14:fa:4a:fe:c3:54:31:4b:da:65:29:3f:3d:62:
84:f9:59:96
-----BEGIN CERTIFICATE-----
MIIF+DCCBOCgAwIBAgIUbCxFUL0HfHQyPRb3xKoOjQ7k3jMwDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyMjc4YWFiODc4ZjI2NjJjZTE0ZTkwNWUxOGViY2I3NTIy
ZjkyYjM2ODRiYzQ4NjViNGQwHhcNMjQwNDAxMDAwMDAwWhcNMjQwNTA2MjM1OTU5
WjB6MUkwRwYDVQQFE0BmYjQ5MzI0NzNhMGU5ZmM1ZjVlOTc1ZTY3NmRhODcwZTI2
OWY0YjE4YTczYTNhMmQ4Zjg1M2FmNTgzZDczNWFmMS0wKwYDVQQDEyRjMGNlMjNl
YS00M2ZjLTRiZTQtYmVlZS1jMDE0NzgxMjJhMGUwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQCmWJmnDzg/mb5XxlzGNMjkuKCqP3RpRTfv27wpWFPDy7Z1
t4iv7zrWtfk0fkc59pze/7VKITuBYFXRHKkeccR/sip59WCQqC2/UogrymH9nE/4
4vpeW9977Xz+rgQKpTysbmnmS82+2jtly4/gL6onNzsAgUeM60hcJBD9EhU6KyXP
iT0krh9hemKyQeZ9mAW4LUkF/70xrMnNIuu7HnQTS1+WzeSzv5UHWPTVry3kZph4
nQKCz5khHFAcgIkwzlr5Imc6/YFy03XLSDh52GHiMvLwvkA7r+33PaZBtwiQiVO0
rglzV/Mp9OT3gRwFBu8Le2jkhWjEMXjVerwkBURPAgMBAAGjggKxMIICrTAdBgNV
HQ4EFgQUiS1moKhmxM8czrvuO+q0CRFJgFowHwYDVR0jBBgwFoAUVajdRdlEE/nR
kvUsY86M+8YUlrgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy8xNDMzZWJmZi1k
ZmQ2LTRjNWMtYjdmZi05OWM4NTEzOWQ0YTgvMjc4YWFiODc4ZjI2NjJjZTE0ZTkw
NWUxOGViY2I3NTIyZjkyYjM2ODRiYzQ4NjViNGQuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvMTZmMWZmZWUtNzQ2MS00Njc0LWJiMDUtZmRk
ZWZhOWEwMmM2LzY3NDBhMDg5LWJmNGYtNGI0YS1hMTVjLTZiMjRjNTQxNjUwZC5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzE2ZjFmZmVlLTc0NjEtNDY3NC1iYjA1
LWZkZGVmYTlhMDJjNi9KbUxPRk9rRjRZNjh0MUl2a3JOb1M4U0dXMDAuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBADHJHgwDQYJKoZIhvcNAQELBQADggEBALRPS380WX0pzhPCBaDQiyQj8Mqp
hHSjqS5k50NeuQVtQaDc5WZhXQR3c1nNlhdT9KA11fqhzgcyi1flWnSRjB1uT/Ae
UpbzsUny8KkwuDuDDxsgk9yqg94GT4moWEoYDWGHZ5IBcTADuGCwgJDOkzj8VqNK
v+mSDJw5881B2ecD4LS6PM5ahxRGyMeKlhJyDSx8V2hF4iSXxDYLakIU+yFvaxU4
Dx/06ItV6AMZ0spAyfg9sTRLkhipbU+dalWlYFpMfYTrqXtsobuqf9F1+nlBn7Tt
eghSZAebdF5eQ5pwvfPSR8Vjahywx95pvzEU+kr+w1QxS9plKT89YoT5WZY=
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:41:30 2024 by rpki-client on console-fra.rpki-client.org