Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/6a4d2645-67fb-4a6a-bece-19d6f5230a12.roa
File: 6a4d2645-67fb-4a6a-bece-19d6f5230a12.roa (raw, json)
Hash identifier: RtED5vIaewlDK+9gYLcGZmSH81L9V0FyI+myZYNtQi8=
Subject key identifier: BA:41:5A:21:8E:7C:9F:17:60:2A:3B:0B:D0:66:41:99:59:1D:F5:1B
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 63971B9AE4C0C567A14658D92E0A05D4F04C40
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/6a4d2645-67fb-4a6a-bece-19d6f5230a12.roa
Signing time: Sun 30 Jul 2023 00:00:00 +0000
ROA not before: Sun 30 Jul 2023 00:00:00 +0000
ROA not after: Sun 03 Sep 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
63:97:1b:9a:e4:c0:c5:67:a1:46:58:d9:2e:0a:05:d4:f0:4c:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Jul 30 00:00:00 2023 GMT
Not After : Sep 3 23:59:59 2023 GMT
Subject: serialNumber=9a13dbe26c7055c76f4bedf1ee75e662f4c7736d87e7dcdb268f2ec24ff2bb6c, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:a1:05:d4:f7:22:ce:c7:21:46:47:bd:66:67:
ea:ac:46:c7:b4:08:1e:20:8e:7e:e2:8a:75:4a:27:
42:5d:72:9b:db:f7:27:44:58:5e:ed:b5:8a:60:74:
69:14:ae:ea:ab:f4:47:90:7e:8f:e0:d5:c0:51:b3:
97:25:bc:97:44:7d:8d:72:ac:35:19:02:c3:2f:cf:
8a:1d:7d:cf:5d:8c:9a:68:c3:e7:d8:1b:0d:e1:66:
1a:ea:d1:22:4d:b0:83:9f:89:d0:42:0d:e1:64:30:
1f:10:1c:68:19:e4:ef:0f:7d:fe:7a:32:d5:e2:c3:
7c:b0:2d:b3:dd:26:96:cb:58:ce:af:cf:6d:82:98:
e8:cc:d0:f5:08:59:a7:d9:87:50:0f:c0:23:d1:14:
8e:f0:08:be:65:ae:16:ad:ea:eb:3d:aa:ce:c4:a3:
ca:f0:ec:6e:44:8c:14:c9:a8:d4:bd:54:11:ec:45:
8d:0f:62:fb:af:4e:2c:b4:5b:13:79:46:1a:c7:ee:
c0:b0:60:10:06:a1:2b:12:0f:39:07:dd:b3:eb:2d:
8f:e8:2e:ec:0a:1e:d5:51:cc:18:49:b2:fc:a4:20:
91:ff:9a:bf:cc:06:8a:a3:5e:6d:eb:7a:f6:26:28:
26:2a:c8:d6:b0:33:23:e0:6e:bf:21:89:41:98:0f:
25:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:41:5A:21:8E:7C:9F:17:60:2A:3B:0B:D0:66:41:99:59:1D:F5:1B
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/6a4d2645-67fb-4a6a-bece-19d6f5230a12.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
7a:7f:f6:35:fc:2e:a7:40:69:e0:44:59:32:ef:8e:d0:99:1f:
da:c8:dd:f0:31:9c:10:c9:c3:f4:f9:99:77:cd:ae:da:a9:3b:
5b:98:55:6c:1e:1c:9d:8a:da:72:09:cf:15:3b:10:e0:59:a8:
d8:02:a1:38:09:b7:8b:8b:32:06:83:69:9b:2e:21:89:6e:54:
ee:0c:21:c7:67:36:36:b0:cc:01:bb:d5:b8:e5:4b:51:ee:4b:
ce:60:93:22:07:58:ef:be:a4:84:8a:08:70:e5:bc:ec:f8:23:
3d:ee:5c:c7:bc:2c:69:ff:5f:05:d7:20:af:06:62:45:1f:8f:
2d:fe:81:11:7d:17:a4:b7:5a:b5:7c:1e:db:10:21:94:ab:b1:
12:44:81:0a:88:fb:af:89:d3:ea:bb:5c:1a:7c:41:1d:b4:9b:
de:95:d7:ae:2d:d9:af:d5:9e:83:0c:9f:7e:4a:4e:53:1d:96:
24:83:c0:15:3c:6e:14:65:5a:42:dd:74:ee:df:73:f4:43:4f:
24:81:80:eb:66:87:19:84:2f:0f:cc:04:83:f9:07:3f:01:8b:
13:96:aa:3e:8a:b6:73:03:8c:ed:fa:14:b1:0e:e7:d0:af:1b:
79:ef:a6:ef:e3:55:dc:b6:76:dc:1e:f4:11:14:88:45:93:ef:
de:fa:45:81
-----BEGIN CERTIFICATE-----
MIIF9zCCBN+gAwIBAgITY5cbmuTAxWehRljZLgoF1PBMQDANBgkqhkiG9w0BAQsF
ADA9MTswOQYDVQQDEzIyNzhhYWI4NzhmMjY2MmNlMTRlOTA1ZTE4ZWJjYjc1MjJm
OTJiMzY4NGJjNDg2NWI0ZDAeFw0yMzA3MzAwMDAwMDBaFw0yMzA5MDMyMzU5NTla
MHoxSTBHBgNVBAUTQDlhMTNkYmUyNmM3MDU1Yzc2ZjRiZWRmMWVlNzVlNjYyZjRj
NzczNmQ4N2U3ZGNkYjI2OGYyZWMyNGZmMmJiNmMxLTArBgNVBAMTJGMwY2UyM2Vh
LTQzZmMtNGJlNC1iZWVlLWMwMTQ3ODEyMmEwZTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAOOhBdT3Is7HIUZHvWZn6qxGx7QIHiCOfuKKdUonQl1ym9v3
J0RYXu21imB0aRSu6qv0R5B+j+DVwFGzlyW8l0R9jXKsNRkCwy/Pih19z12MmmjD
59gbDeFmGurRIk2wg5+J0EIN4WQwHxAcaBnk7w99/noy1eLDfLAts90mlstYzq/P
bYKY6MzQ9QhZp9mHUA/AI9EUjvAIvmWuFq3q6z2qzsSjyvDsbkSMFMmo1L1UEexF
jQ9i+69OLLRbE3lGGsfuwLBgEAahKxIPOQfds+stj+gu7Aoe1VHMGEmy/KQgkf+a
v8wGiqNebet69iYoJirI1rAzI+BuvyGJQZgPJXMCAwEAAaOCArEwggKtMB0GA1Ud
DgQWBBS6QVohjnyfF2AqOwvQZkGZWR31GzAfBgNVHSMEGDAWgBRVqN1F2UQT+dGS
9Sxjzoz7xhSWuDAOBgNVHQ8BAf8EBAMCB4AwgfMGCCsGAQUFBwEBBIHmMIHjMIHg
BggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2Fy
aW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMv
MDM1NzI3MmMtYTc5YS00NWJmLTk1ODYtOTJkZDQ5ZWYzMjIzLzE0MzNlYmZmLWRm
ZDYtNGM1Yy1iN2ZmLTk5Yzg1MTM5ZDRhOC8yNzhhYWI4NzhmMjY2MmNlMTRlOTA1
ZTE4ZWJjYjc1MjJmOTJiMzY4NGJjNDg2NWI0ZC5jZXIwgZ4GCCsGAQUFBwELBIGR
MIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h
bWF6b25hd3MuY29tL3ZvbHVtZS8xNmYxZmZlZS03NDYxLTQ2NzQtYmIwNS1mZGRl
ZmE5YTAyYzYvNmE0ZDI2NDUtNjdmYi00YTZhLWJlY2UtMTlkNmY1MjMwYTEyLnJv
YTCBiAYDVR0fBIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0
LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvMTZmMWZmZWUtNzQ2MS00Njc0LWJiMDUt
ZmRkZWZhOWEwMmM2L0ptTE9GT2tGNFk2OHQxSXZrck5vUzhTR1cwMC5jcmwwGAYD
VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw
BgMEAMckeDANBgkqhkiG9w0BAQsFAAOCAQEAen/2Nfwup0Bp4ERZMu+O0Jkf2sjd
8DGcEMnD9PmZd82u2qk7W5hVbB4cnYracgnPFTsQ4Fmo2AKhOAm3i4syBoNpmy4h
iW5U7gwhx2c2NrDMAbvVuOVLUe5LzmCTIgdY776khIoIcOW87PgjPe5cx7wsaf9f
BdcgrwZiRR+PLf6BEX0XpLdatXwe2xAhlKuxEkSBCoj7r4nT6rtcGnxBHbSb3pXX
ri3Zr9WegwyffkpOUx2WJIPAFTxuFGVaQt107t9z9ENPJIGA62aHGYQvD8wEg/kH
PwGLE5aqPoq2cwOM7foUsQ7n0K8bee+m7+NV3LZ23B70ERSIRZPv3vpFgQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:41:30 2024 by rpki-client on console-fra.rpki-client.org