Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/7637f202-6838-4ea2-9807-b594ee11d6c4.roa
File: 7637f202-6838-4ea2-9807-b594ee11d6c4.roa (raw, json)
Hash identifier: zOD/HXR+1PFT07wPOMGr5jbBVBWSZdMHq8XAsKDlcIM=
Subject key identifier: 4E:B6:69:1A:E3:2F:88:C6:E7:99:D6:FF:94:B1:D1:F0:28:A9:49:FC
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 2FE7BC2ECB104434353A963D2BACEBC163693C22
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/7637f202-6838-4ea2-9807-b594ee11d6c4.roa
Signing time: Wed 28 Jun 2023 00:00:00 +0000
ROA not before: Wed 28 Jun 2023 00:00:00 +0000
ROA not after: Wed 02 Aug 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2f:e7:bc:2e:cb:10:44:34:35:3a:96:3d:2b:ac:eb:c1:63:69:3c:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Jun 28 00:00:00 2023 GMT
Not After : Aug 2 23:59:59 2023 GMT
Subject: serialNumber=97ef6816b4b65c320b0265af2b2d8d73f8f42636c8f10384fa567aed241dabd0, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:d5:b6:72:90:09:87:e5:06:04:7a:87:15:b2:
9b:8f:c6:4d:9b:aa:64:4b:4b:3c:a2:f5:8d:d4:b2:
1b:65:36:a5:36:45:c9:9d:92:2d:21:db:96:ea:db:
b3:11:b0:aa:0d:02:d5:39:32:e7:7d:b4:95:26:7f:
22:3c:2e:5b:47:51:65:94:39:40:0e:b3:b2:58:f0:
d1:96:21:c2:83:fa:50:79:e0:b8:3a:5c:65:4b:ac:
75:99:32:e4:a2:1e:c4:4d:20:99:86:b2:fe:aa:14:
0d:64:79:43:07:0b:79:0d:e8:29:14:12:f7:c5:61:
d0:7a:12:46:ae:50:0e:82:74:d7:b5:81:55:e6:37:
34:92:80:26:ed:5a:7b:4e:d9:3c:f0:df:0b:e7:a0:
73:d6:50:cb:da:f4:63:b1:93:2a:d5:31:60:4b:9d:
a4:3d:36:f5:61:85:15:c4:f1:84:f4:79:17:30:9c:
50:46:5f:ef:ee:2c:d4:1d:aa:fe:d8:a4:d3:50:e9:
6c:ec:2f:81:d4:d5:a7:25:98:53:83:01:e6:3d:49:
e5:b4:b2:df:38:a1:e2:c0:70:e6:0c:50:6a:6b:75:
09:cc:4f:ef:b0:53:7a:5e:2c:e0:f1:36:ce:44:7c:
6d:2c:e5:1b:b3:6a:f0:d5:fc:db:dc:98:9d:8a:71:
11:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:B6:69:1A:E3:2F:88:C6:E7:99:D6:FF:94:B1:D1:F0:28:A9:49:FC
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/7637f202-6838-4ea2-9807-b594ee11d6c4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
b4:22:d9:99:55:c7:e6:55:6c:a5:8e:73:de:31:0e:3b:a1:0e:
03:f9:fc:5f:fa:df:83:e6:bb:9c:60:c1:b8:af:ad:85:73:9f:
79:93:86:3b:c9:7d:7b:c5:e1:46:7d:be:f0:bf:c5:74:6f:0b:
b7:48:d6:78:9e:6a:e7:04:20:35:bc:dc:6f:f0:6b:2e:e8:d6:
3e:27:39:f1:2e:57:15:bb:3b:af:16:cc:f5:4e:cd:e9:eb:28:
4a:0a:25:6d:bf:dc:64:0d:cf:a1:b7:a0:a9:ad:f0:71:93:df:
b6:da:2b:be:68:19:b9:2f:82:84:92:7c:de:2b:10:3b:71:39:
08:ea:e0:43:68:36:bd:86:56:77:8e:89:f2:8a:a1:48:9b:23:
51:e1:34:00:74:e5:84:fc:a6:c2:d7:fb:9d:f9:14:fe:36:de:
27:d5:9d:62:8f:7a:87:a0:e7:b1:78:e8:b7:53:62:93:36:6d:
e1:39:5f:a6:90:82:f1:3f:b0:55:58:3c:9e:32:20:82:2a:c6:
43:0c:cc:84:87:47:59:51:a5:bc:3e:e3:cd:12:55:f9:92:e1:
e5:88:45:f0:4c:fd:a9:61:83:99:b6:25:bd:af:8d:e1:a7:b5:
4e:88:1e:31:cb:06:5f:93:29:65:f1:25:82:bc:a4:8b:b9:6b:
00:32:59:d9
-----BEGIN CERTIFICATE-----
MIIF+DCCBOCgAwIBAgIUL+e8LssQRDQ1OpY9K6zrwWNpPCIwDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyMjc4YWFiODc4ZjI2NjJjZTE0ZTkwNWUxOGViY2I3NTIy
ZjkyYjM2ODRiYzQ4NjViNGQwHhcNMjMwNjI4MDAwMDAwWhcNMjMwODAyMjM1OTU5
WjB6MUkwRwYDVQQFE0A5N2VmNjgxNmI0YjY1YzMyMGIwMjY1YWYyYjJkOGQ3M2Y4
ZjQyNjM2YzhmMTAzODRmYTU2N2FlZDI0MWRhYmQwMS0wKwYDVQQDEyRjMGNlMjNl
YS00M2ZjLTRiZTQtYmVlZS1jMDE0NzgxMjJhMGUwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQCN1bZykAmH5QYEeocVspuPxk2bqmRLSzyi9Y3UshtlNqU2
Rcmdki0h25bq27MRsKoNAtU5Mud9tJUmfyI8LltHUWWUOUAOs7JY8NGWIcKD+lB5
4Lg6XGVLrHWZMuSiHsRNIJmGsv6qFA1keUMHC3kN6CkUEvfFYdB6EkauUA6CdNe1
gVXmNzSSgCbtWntO2Tzw3wvnoHPWUMva9GOxkyrVMWBLnaQ9NvVhhRXE8YT0eRcw
nFBGX+/uLNQdqv7YpNNQ6WzsL4HU1aclmFODAeY9SeW0st84oeLAcOYMUGprdQnM
T++wU3peLODxNs5EfG0s5RuzavDV/NvcmJ2KcRHXAgMBAAGjggKxMIICrTAdBgNV
HQ4EFgQUTrZpGuMviMbnmdb/lLHR8CipSfwwHwYDVR0jBBgwFoAUVajdRdlEE/nR
kvUsY86M+8YUlrgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy8xNDMzZWJmZi1k
ZmQ2LTRjNWMtYjdmZi05OWM4NTEzOWQ0YTgvMjc4YWFiODc4ZjI2NjJjZTE0ZTkw
NWUxOGViY2I3NTIyZjkyYjM2ODRiYzQ4NjViNGQuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvMTZmMWZmZWUtNzQ2MS00Njc0LWJiMDUtZmRk
ZWZhOWEwMmM2Lzc2MzdmMjAyLTY4MzgtNGVhMi05ODA3LWI1OTRlZTExZDZjNC5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzE2ZjFmZmVlLTc0NjEtNDY3NC1iYjA1
LWZkZGVmYTlhMDJjNi9KbUxPRk9rRjRZNjh0MUl2a3JOb1M4U0dXMDAuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBADHJHgwDQYJKoZIhvcNAQELBQADggEBALQi2ZlVx+ZVbKWOc94xDjuhDgP5
/F/634Pmu5xgwbivrYVzn3mThjvJfXvF4UZ9vvC/xXRvC7dI1nieaucEIDW83G/w
ay7o1j4nOfEuVxW7O68WzPVOzenrKEoKJW2/3GQNz6G3oKmt8HGT37baK75oGbkv
goSSfN4rEDtxOQjq4ENoNr2GVneOifKKoUibI1HhNAB05YT8psLX+535FP423ifV
nWKPeoeg57F46LdTYpM2beE5X6aQgvE/sFVYPJ4yIIIqxkMMzISHR1lRpbw+480S
VfmS4eWIRfBM/alhg5m2Jb2vjeGntU6IHjHLBl+TKWXxJYK8pIu5awAyWdk=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:47:53 2024 by rpki-client on console-ams.rpki-client.org