Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/6cd5fa16-85a3-4682-97f6-beee4544ae2e.roa
File: 6cd5fa16-85a3-4682-97f6-beee4544ae2e.roa (raw, json)
Hash identifier: R0hLrH97BXp92AgwUONzP/+uTfYY21iig84enanfO88=
Subject key identifier: 45:FA:C8:00:B7:66:62:66:8A:A0:69:73:EF:E6:2C:00:2E:91:9B:77
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 0AEA9540D06F16518C9DA81C997CF0ABBD79C7F4
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/6cd5fa16-85a3-4682-97f6-beee4544ae2e.roa
Signing time: Fri 24 Nov 2023 00:00:00 +0000
ROA not before: Fri 24 Nov 2023 00:00:00 +0000
ROA not after: Fri 29 Dec 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0a:ea:95:40:d0:6f:16:51:8c:9d:a8:1c:99:7c:f0:ab:bd:79:c7:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Nov 24 00:00:00 2023 GMT
Not After : Dec 29 23:59:59 2023 GMT
Subject: serialNumber=c706aff80db0755bb5b2e5eff1e327ac6c480af2b8e55ee89c557089eba2aac6, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:d4:db:0f:ef:e3:fc:b9:46:fa:51:c1:61:7f:
92:76:be:55:a1:18:6f:76:87:d1:b6:06:9c:00:e6:
7c:8d:7b:b1:f8:86:3d:9a:3a:1f:0c:11:ec:55:2e:
b7:26:30:0f:48:97:23:8c:50:71:74:30:3c:0b:47:
c2:24:50:e6:4f:63:09:6e:8e:95:34:1b:de:39:62:
c0:ee:d9:4b:8b:be:18:18:76:3b:35:0c:67:ee:c8:
a7:85:00:4f:83:6c:ce:97:75:91:c0:04:cc:62:16:
74:d5:0b:e5:69:7d:41:d7:e4:07:ab:e8:7f:39:01:
dc:24:fc:44:de:6a:42:87:16:0e:30:54:50:1d:19:
5e:6f:e3:1d:3e:29:5f:a6:e5:b6:9a:5b:d4:2d:40:
4d:d0:7e:30:bd:a7:f9:7e:6d:fe:91:1e:0c:40:60:
33:41:8b:74:f6:24:4e:34:7f:9d:a8:84:2f:02:06:
d9:06:0d:24:dd:35:8a:21:c2:d8:79:6c:9e:ed:4c:
c2:6a:5d:b8:99:8f:82:7a:77:7a:87:06:e2:9d:11:
34:a9:21:4b:74:33:79:f6:74:aa:00:0d:06:7d:f1:
c0:f2:51:a4:5b:07:d1:22:26:4b:eb:7f:ca:f3:54:
83:a6:89:84:0f:d4:6a:90:6a:15:d6:db:fd:ad:36:
75:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:FA:C8:00:B7:66:62:66:8A:A0:69:73:EF:E6:2C:00:2E:91:9B:77
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/6cd5fa16-85a3-4682-97f6-beee4544ae2e.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
27:d8:b3:28:ff:83:ce:eb:4a:18:7d:f3:be:ae:8e:4c:ab:f1:
af:ee:53:f4:8b:44:8a:06:a5:13:4e:54:8c:09:e0:33:08:9a:
bf:09:26:36:0f:bf:26:6b:10:2b:ea:55:3b:8b:8c:bc:c1:63:
09:fa:ab:f2:9b:e7:3c:8b:9b:12:89:c8:7a:69:d8:32:ba:03:
54:e9:26:da:83:d7:95:b8:26:4c:d8:ae:dc:7c:ae:63:5d:c6:
f5:6f:21:ae:18:66:c9:cc:3a:86:6f:cc:85:28:c9:90:e3:75:
05:83:b5:f9:0c:78:8c:80:b1:b7:01:9b:dd:35:03:ce:94:84:
73:f8:3a:17:2c:87:83:c9:71:db:87:13:43:7e:ee:0e:55:0e:
6f:66:1d:0f:d4:20:97:5a:38:14:7f:ac:c4:95:57:0a:0a:2b:
11:55:5d:4d:5f:c3:59:12:91:3e:bb:e1:e2:21:e7:b8:be:9e:
2d:b1:fa:5b:3c:da:90:8c:2e:a9:ca:8d:1a:a7:1d:41:fc:97:
d3:d8:89:2a:b4:28:07:6f:e6:c4:ea:3f:e8:e5:9a:79:21:dd:
7c:16:ba:0a:f5:d3:a6:7c:bd:38:8b:14:08:f3:ae:93:79:47:
82:76:d5:6a:7c:38:7d:50:2b:c2:de:32:04:c5:90:97:41:f6:
1e:87:73:8c
-----BEGIN CERTIFICATE-----
MIIF+DCCBOCgAwIBAgIUCuqVQNBvFlGMnagcmXzwq715x/QwDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyMjc4YWFiODc4ZjI2NjJjZTE0ZTkwNWUxOGViY2I3NTIy
ZjkyYjM2ODRiYzQ4NjViNGQwHhcNMjMxMTI0MDAwMDAwWhcNMjMxMjI5MjM1OTU5
WjB6MUkwRwYDVQQFE0BjNzA2YWZmODBkYjA3NTViYjViMmU1ZWZmMWUzMjdhYzZj
NDgwYWYyYjhlNTVlZTg5YzU1NzA4OWViYTJhYWM2MS0wKwYDVQQDEyRjMGNlMjNl
YS00M2ZjLTRiZTQtYmVlZS1jMDE0NzgxMjJhMGUwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQCl1NsP7+P8uUb6UcFhf5J2vlWhGG92h9G2BpwA5nyNe7H4
hj2aOh8MEexVLrcmMA9IlyOMUHF0MDwLR8IkUOZPYwlujpU0G945YsDu2UuLvhgY
djs1DGfuyKeFAE+DbM6XdZHABMxiFnTVC+VpfUHX5Aer6H85Adwk/ETeakKHFg4w
VFAdGV5v4x0+KV+m5baaW9QtQE3QfjC9p/l+bf6RHgxAYDNBi3T2JE40f52ohC8C
BtkGDSTdNYohwth5bJ7tTMJqXbiZj4J6d3qHBuKdETSpIUt0M3n2dKoADQZ98cDy
UaRbB9EiJkvrf8rzVIOmiYQP1GqQahXW2/2tNnX5AgMBAAGjggKxMIICrTAdBgNV
HQ4EFgQURfrIALdmYmaKoGlz7+YsAC6Rm3cwHwYDVR0jBBgwFoAUVajdRdlEE/nR
kvUsY86M+8YUlrgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy8xNDMzZWJmZi1k
ZmQ2LTRjNWMtYjdmZi05OWM4NTEzOWQ0YTgvMjc4YWFiODc4ZjI2NjJjZTE0ZTkw
NWUxOGViY2I3NTIyZjkyYjM2ODRiYzQ4NjViNGQuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvMTZmMWZmZWUtNzQ2MS00Njc0LWJiMDUtZmRk
ZWZhOWEwMmM2LzZjZDVmYTE2LTg1YTMtNDY4Mi05N2Y2LWJlZWU0NTQ0YWUyZS5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzE2ZjFmZmVlLTc0NjEtNDY3NC1iYjA1
LWZkZGVmYTlhMDJjNi9KbUxPRk9rRjRZNjh0MUl2a3JOb1M4U0dXMDAuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBADHJHgwDQYJKoZIhvcNAQELBQADggEBACfYsyj/g87rShh9876ujkyr8a/u
U/SLRIoGpRNOVIwJ4DMImr8JJjYPvyZrECvqVTuLjLzBYwn6q/Kb5zyLmxKJyHpp
2DK6A1TpJtqD15W4JkzYrtx8rmNdxvVvIa4YZsnMOoZvzIUoyZDjdQWDtfkMeIyA
sbcBm901A86UhHP4Ohcsh4PJcduHE0N+7g5VDm9mHQ/UIJdaOBR/rMSVVwoKKxFV
XU1fw1kSkT674eIh57i+ni2x+ls82pCMLqnKjRqnHUH8l9PYiSq0KAdv5sTqP+jl
mnkh3XwWugr106Z8vTiLFAjzrpN5R4J21Wp8OH1QK8LeMgTFkJdB9h6Hc4w=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:47:51 2024 by rpki-client on console-ams.rpki-client.org