Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/676f1c98-ee10-46e7-a17d-6e618f9783b2.roa
File: 676f1c98-ee10-46e7-a17d-6e618f9783b2.roa (raw, json)
Hash identifier: fKolDjAdhiAIfq/xd9AHCzgUqi6WaiojpBaevVB8Fs0=
Subject key identifier: 3F:63:58:73:11:45:AB:B3:95:75:72:2B:24:8D:3F:C3:21:37:64:9F
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 4EE01D232DF9B22387D9ADA296C6C5BE2293CAA3
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/676f1c98-ee10-46e7-a17d-6e618f9783b2.roa
Signing time: Sun 12 Nov 2023 00:00:00 +0000
ROA not before: Sun 12 Nov 2023 00:00:00 +0000
ROA not after: Sun 17 Dec 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4e:e0:1d:23:2d:f9:b2:23:87:d9:ad:a2:96:c6:c5:be:22:93:ca:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Nov 12 00:00:00 2023 GMT
Not After : Dec 17 23:59:59 2023 GMT
Subject: serialNumber=7f6e93abeb99812e5b1f08fc5b5682db113ab5b34ac67212a5d08bc2c7bfd53f, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:62:ba:85:84:49:ef:0b:c1:57:1e:58:54:b8:
47:06:02:69:f0:df:7a:89:ae:c3:04:d9:17:bc:37:
9b:52:21:d8:9c:4c:5d:8f:5f:16:83:32:bf:f8:a7:
4b:7a:42:2f:d5:aa:87:b9:db:86:2b:df:85:b2:fc:
c0:5a:80:a7:ab:04:e1:03:d5:0e:2f:86:a2:7c:18:
37:cc:cc:1f:18:ce:b2:06:16:40:d0:e9:8d:c7:a1:
d5:67:e7:75:a9:54:3a:b9:3d:88:5f:0b:42:b3:44:
77:d5:60:71:a2:76:34:a1:06:e0:54:5d:8a:67:08:
2d:51:48:be:e8:70:71:a6:6d:6c:01:8a:07:80:8c:
1b:da:93:44:b0:a8:d2:8d:e3:cb:31:3c:b3:c0:b7:
9b:d3:b4:1e:b9:15:6e:a3:04:2c:28:a6:13:b3:7a:
53:d5:08:d0:ce:3b:78:c8:34:d9:86:bc:17:30:20:
aa:13:b0:99:fe:95:0d:76:85:6c:30:5b:92:4f:de:
4e:c9:a2:88:14:77:d8:38:e2:e6:f2:89:4d:cf:ce:
22:e8:24:27:23:7e:d2:f7:bd:00:ea:e2:f8:6a:f5:
d0:b0:2a:47:e8:ee:78:6b:17:b0:08:9c:b4:46:0d:
fc:33:b7:79:c4:e0:d0:d5:ac:20:2c:bb:fd:5f:75:
ca:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:63:58:73:11:45:AB:B3:95:75:72:2B:24:8D:3F:C3:21:37:64:9F
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/676f1c98-ee10-46e7-a17d-6e618f9783b2.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
18:1d:4f:e8:c7:58:64:c0:3e:62:06:d0:ef:0a:01:76:fb:6c:
e4:42:d1:8b:ad:7f:85:a7:ea:0f:35:41:ce:a1:49:3e:75:bf:
2f:ac:03:d9:3e:83:2f:ac:14:aa:f8:6b:95:68:b0:76:64:c9:
af:f4:ff:f5:4c:69:de:1c:f3:80:58:a8:30:ca:11:18:ba:18:
7d:20:f5:41:27:94:06:64:32:62:6c:33:ff:63:1f:d8:d9:23:
bf:8f:d7:fd:f6:ce:fc:ce:af:58:81:96:a0:e7:b3:b5:72:73:
49:58:40:ae:a4:e8:c5:f6:04:84:5e:c2:31:fa:7e:a2:22:ce:
01:f1:4d:a6:41:6d:f3:19:8a:26:c3:2d:b7:0d:2d:31:bd:0a:
db:b7:62:ea:ad:a2:65:2d:8b:c0:b5:dd:ef:57:b6:3e:5f:cc:
27:39:5b:41:71:05:62:63:00:8b:b6:13:09:91:d8:3f:88:2d:
0b:a5:7a:ad:83:86:a2:5a:bc:04:00:74:d9:b9:0b:ba:65:b3:
2f:17:89:fe:cf:d5:5f:a6:ec:82:a7:ed:cd:c4:91:98:5b:28:
7e:3b:3d:3e:15:e2:62:7a:c9:87:bd:e2:3a:97:19:7e:71:0a:
d6:15:0f:cf:20:38:08:b3:82:95:a4:6d:0b:60:ed:80:40:5e:
bf:b8:18:fe
-----BEGIN CERTIFICATE-----
MIIF+DCCBOCgAwIBAgIUTuAdIy35siOH2a2ilsbFviKTyqMwDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyMjc4YWFiODc4ZjI2NjJjZTE0ZTkwNWUxOGViY2I3NTIy
ZjkyYjM2ODRiYzQ4NjViNGQwHhcNMjMxMTEyMDAwMDAwWhcNMjMxMjE3MjM1OTU5
WjB6MUkwRwYDVQQFE0A3ZjZlOTNhYmViOTk4MTJlNWIxZjA4ZmM1YjU2ODJkYjEx
M2FiNWIzNGFjNjcyMTJhNWQwOGJjMmM3YmZkNTNmMS0wKwYDVQQDEyRjMGNlMjNl
YS00M2ZjLTRiZTQtYmVlZS1jMDE0NzgxMjJhMGUwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQC9YrqFhEnvC8FXHlhUuEcGAmnw33qJrsME2Re8N5tSIdic
TF2PXxaDMr/4p0t6Qi/Vqoe524Yr34Wy/MBagKerBOED1Q4vhqJ8GDfMzB8YzrIG
FkDQ6Y3HodVn53WpVDq5PYhfC0KzRHfVYHGidjShBuBUXYpnCC1RSL7ocHGmbWwB
igeAjBvak0SwqNKN48sxPLPAt5vTtB65FW6jBCwophOzelPVCNDOO3jINNmGvBcw
IKoTsJn+lQ12hWwwW5JP3k7JoogUd9g44ubyiU3PziLoJCcjftL3vQDq4vhq9dCw
Kkfo7nhrF7AInLRGDfwzt3nE4NDVrCAsu/1fdcq5AgMBAAGjggKxMIICrTAdBgNV
HQ4EFgQUP2NYcxFFq7OVdXIrJI0/wyE3ZJ8wHwYDVR0jBBgwFoAUVajdRdlEE/nR
kvUsY86M+8YUlrgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy8xNDMzZWJmZi1k
ZmQ2LTRjNWMtYjdmZi05OWM4NTEzOWQ0YTgvMjc4YWFiODc4ZjI2NjJjZTE0ZTkw
NWUxOGViY2I3NTIyZjkyYjM2ODRiYzQ4NjViNGQuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvMTZmMWZmZWUtNzQ2MS00Njc0LWJiMDUtZmRk
ZWZhOWEwMmM2LzY3NmYxYzk4LWVlMTAtNDZlNy1hMTdkLTZlNjE4Zjk3ODNiMi5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzE2ZjFmZmVlLTc0NjEtNDY3NC1iYjA1
LWZkZGVmYTlhMDJjNi9KbUxPRk9rRjRZNjh0MUl2a3JOb1M4U0dXMDAuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBADHJHgwDQYJKoZIhvcNAQELBQADggEBABgdT+jHWGTAPmIG0O8KAXb7bORC
0Yutf4Wn6g81Qc6hST51vy+sA9k+gy+sFKr4a5VosHZkya/0//VMad4c84BYqDDK
ERi6GH0g9UEnlAZkMmJsM/9jH9jZI7+P1/32zvzOr1iBlqDns7Vyc0lYQK6k6MX2
BIRewjH6fqIizgHxTaZBbfMZiibDLbcNLTG9Ctu3YuqtomUti8C13e9Xtj5fzCc5
W0FxBWJjAIu2EwmR2D+ILQuleq2DhqJavAQAdNm5C7plsy8Xif7P1V+m7IKn7c3E
kZhbKH47PT4V4mJ6yYe94jqXGX5xCtYVD88gOAizgpWkbQtg7YBAXr+4GP4=
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:41:30 2024 by rpki-client on console-fra.rpki-client.org