Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/6ec66b44-cfd5-40d1-926c-bc3a7ca67b60.roa
File: 6ec66b44-cfd5-40d1-926c-bc3a7ca67b60.roa (raw, json)
Hash identifier: 1hpKWlaQinRP4FUILfDtLfbGOcYxaiTkgWOimhRXwKw=
Subject key identifier: FB:79:81:6C:A5:5B:37:CC:F1:44:56:35:C3:85:6B:60:6E:3E:C5:DD
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 1228E31947DAB418B6F053C41CA63686354162AA
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/6ec66b44-cfd5-40d1-926c-bc3a7ca67b60.roa
Signing time: Sun 24 Sep 2023 00:00:00 +0000
ROA not before: Sun 24 Sep 2023 00:00:00 +0000
ROA not after: Sun 29 Oct 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
12:28:e3:19:47:da:b4:18:b6:f0:53:c4:1c:a6:36:86:35:41:62:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Sep 24 00:00:00 2023 GMT
Not After : Oct 29 23:59:59 2023 GMT
Subject: serialNumber=099c6af8fb0dd00ef56a00bd0317d8903e0db3e387b3773167efa6d4fb18fd6e, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:7e:1a:36:c5:87:59:b7:e1:e3:94:b9:f1:eb:
f0:d6:10:35:86:ba:13:77:60:8e:46:19:92:7d:5a:
33:00:3d:1f:4a:e1:4d:84:ce:fc:88:3f:fc:c6:a8:
33:90:f2:7b:63:6f:94:50:2d:30:45:a4:22:a1:f4:
28:19:15:ce:c8:0d:28:a8:91:d5:75:e4:9b:55:53:
9a:08:bf:1f:ff:30:1e:22:14:56:76:04:4d:be:dc:
a7:5d:f8:62:b6:7d:18:2f:e2:c5:1b:30:56:d8:0a:
09:57:bf:5a:cf:c9:2e:f6:33:91:5b:5f:7a:34:aa:
4c:af:26:82:aa:92:f4:0d:63:d1:6a:4f:2a:0a:1c:
de:99:e8:49:be:ed:a3:4c:42:32:07:65:11:6e:0d:
ac:d1:93:20:9c:d1:16:f9:12:bc:f6:67:15:74:f5:
84:19:e5:f4:82:27:20:80:9b:17:c0:5a:f5:4e:96:
9c:1a:e0:03:43:b9:c6:1d:f2:53:0e:ad:d4:62:50:
3d:71:dd:d6:6a:ce:79:a2:0a:b3:b1:54:7a:9c:c4:
0d:47:e7:ce:7f:5b:5e:f4:81:a4:e4:fe:d4:7d:e8:
da:d8:2a:df:47:46:f8:71:8b:16:b1:69:d0:1d:50:
0c:8f:d1:d7:2c:a8:94:70:74:a4:ed:4c:23:e4:ef:
a4:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:79:81:6C:A5:5B:37:CC:F1:44:56:35:C3:85:6B:60:6E:3E:C5:DD
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/6ec66b44-cfd5-40d1-926c-bc3a7ca67b60.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
0e:d9:64:d7:76:1d:08:b2:c9:0b:dd:2c:33:3f:c8:21:c0:e5:
7b:f2:36:eb:dd:71:02:25:97:7b:42:a0:91:ec:f9:d5:8c:9b:
fd:c8:ff:7f:f6:c5:81:ec:f9:4c:92:d9:15:0f:e5:bd:ef:8a:
1f:18:44:79:09:f9:ec:10:16:89:e6:d5:30:0b:8c:dc:84:ec:
d0:cb:54:f0:2b:42:90:7a:0b:25:91:2a:d9:ed:be:d6:e8:d7:
cb:8f:10:41:b6:e7:5b:87:fb:1e:54:9a:62:4c:e0:99:b0:f7:
37:3f:0d:09:71:40:7e:aa:cb:cc:1f:46:8e:2b:f0:1b:6a:63:
e5:83:2d:5a:00:e0:1e:9f:c5:62:a5:90:37:d3:25:d4:c5:c9:
87:7e:d8:d8:52:47:fa:3e:b4:b4:43:29:71:00:b9:be:89:cf:
bf:dc:d0:d1:44:55:4f:e5:6a:6f:ff:97:cc:6f:36:42:9c:31:
6a:54:c2:9f:3b:58:38:ce:5b:14:7d:8a:50:f1:98:f6:59:94:
ad:36:37:d3:f0:ee:bf:b2:8b:88:79:28:87:68:6c:ba:ae:16:
07:62:50:57:e8:37:1e:d2:1f:b2:c3:22:1c:d9:11:00:76:31:
b0:e5:8b:6d:d4:84:27:cc:31:68:56:2e:df:77:e0:12:62:07:
36:f5:c7:5c
-----BEGIN CERTIFICATE-----
MIIF+DCCBOCgAwIBAgIUEijjGUfatBi28FPEHKY2hjVBYqowDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyMjc4YWFiODc4ZjI2NjJjZTE0ZTkwNWUxOGViY2I3NTIy
ZjkyYjM2ODRiYzQ4NjViNGQwHhcNMjMwOTI0MDAwMDAwWhcNMjMxMDI5MjM1OTU5
WjB6MUkwRwYDVQQFE0AwOTljNmFmOGZiMGRkMDBlZjU2YTAwYmQwMzE3ZDg5MDNl
MGRiM2UzODdiMzc3MzE2N2VmYTZkNGZiMThmZDZlMS0wKwYDVQQDEyRjMGNlMjNl
YS00M2ZjLTRiZTQtYmVlZS1jMDE0NzgxMjJhMGUwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQCZfho2xYdZt+HjlLnx6/DWEDWGuhN3YI5GGZJ9WjMAPR9K
4U2EzvyIP/zGqDOQ8ntjb5RQLTBFpCKh9CgZFc7IDSiokdV15JtVU5oIvx//MB4i
FFZ2BE2+3Kdd+GK2fRgv4sUbMFbYCglXv1rPyS72M5FbX3o0qkyvJoKqkvQNY9Fq
TyoKHN6Z6Em+7aNMQjIHZRFuDazRkyCc0Rb5Erz2ZxV09YQZ5fSCJyCAmxfAWvVO
lpwa4ANDucYd8lMOrdRiUD1x3dZqznmiCrOxVHqcxA1H585/W170gaTk/tR96NrY
Kt9HRvhxixaxadAdUAyP0dcsqJRwdKTtTCPk76SPAgMBAAGjggKxMIICrTAdBgNV
HQ4EFgQU+3mBbKVbN8zxRFY1w4VrYG4+xd0wHwYDVR0jBBgwFoAUVajdRdlEE/nR
kvUsY86M+8YUlrgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy8xNDMzZWJmZi1k
ZmQ2LTRjNWMtYjdmZi05OWM4NTEzOWQ0YTgvMjc4YWFiODc4ZjI2NjJjZTE0ZTkw
NWUxOGViY2I3NTIyZjkyYjM2ODRiYzQ4NjViNGQuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvMTZmMWZmZWUtNzQ2MS00Njc0LWJiMDUtZmRk
ZWZhOWEwMmM2LzZlYzY2YjQ0LWNmZDUtNDBkMS05MjZjLWJjM2E3Y2E2N2I2MC5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzE2ZjFmZmVlLTc0NjEtNDY3NC1iYjA1
LWZkZGVmYTlhMDJjNi9KbUxPRk9rRjRZNjh0MUl2a3JOb1M4U0dXMDAuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBADHJHgwDQYJKoZIhvcNAQELBQADggEBAA7ZZNd2HQiyyQvdLDM/yCHA5Xvy
NuvdcQIll3tCoJHs+dWMm/3I/3/2xYHs+UyS2RUP5b3vih8YRHkJ+ewQFonm1TAL
jNyE7NDLVPArQpB6CyWRKtntvtbo18uPEEG251uH+x5UmmJM4Jmw9zc/DQlxQH6q
y8wfRo4r8BtqY+WDLVoA4B6fxWKlkDfTJdTFyYd+2NhSR/o+tLRDKXEAub6Jz7/c
0NFEVU/lam//l8xvNkKcMWpUwp87WDjOWxR9ilDxmPZZlK02N9Pw7r+yi4h5KIdo
bLquFgdiUFfoNx7SH7LDIhzZEQB2MbDli23UhCfMMWhWLt934BJiBzb1x1w=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:47:51 2024 by rpki-client on console-ams.rpki-client.org