Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/8143b58c-5f09-4458-bc1e-3904fb371e1d.roa
File: 8143b58c-5f09-4458-bc1e-3904fb371e1d.roa (raw, json)
Hash identifier: WGQzs4KvtkhpuniByvu1LVnyWC1tVZZMH4CFQ0SnPm0=
Subject key identifier: C7:34:D6:1C:3E:D4:6E:BE:0F:E6:4F:26:85:78:EC:62:6E:CE:43:54
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 5F010966AEFEFA1E68A4D861AAC2BE6978CAAD38
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/8143b58c-5f09-4458-bc1e-3904fb371e1d.roa
Signing time: Mon 19 Jun 2023 00:00:00 +0000
ROA not before: Mon 19 Jun 2023 00:00:00 +0000
ROA not after: Mon 24 Jul 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5f:01:09:66:ae:fe:fa:1e:68:a4:d8:61:aa:c2:be:69:78:ca:ad:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Jun 19 00:00:00 2023 GMT
Not After : Jul 24 23:59:59 2023 GMT
Subject: serialNumber=fc7848be1bea085cb52868cc535a9e2fb0c36ae2d8082889acbe49c8055038db, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:8a:a0:e0:5d:df:29:df:3d:98:61:6f:4d:5a:
47:82:a3:d5:67:72:e9:5a:95:84:45:a0:44:29:73:
29:4c:44:df:f4:05:0e:9c:21:d8:61:65:0e:da:3d:
92:4d:ba:14:58:15:38:aa:da:e3:64:6f:80:99:d1:
d7:38:f6:86:34:5e:fb:8c:1c:ad:f1:7a:17:42:af:
c1:7a:97:2e:a1:c3:ef:95:71:7b:86:67:7f:0a:6d:
b6:b2:1a:2c:42:3e:cf:a9:99:9b:11:ed:91:12:04:
5c:d2:71:f6:35:da:f4:d8:db:37:ef:87:0e:7b:7d:
5b:16:8c:ae:03:9f:fd:1b:c8:ee:0f:10:37:33:ed:
d7:06:b2:ed:7f:96:69:2a:84:a8:16:58:3f:d4:b9:
1f:61:35:f4:07:e8:c4:ca:da:b3:57:d2:23:3e:cc:
20:40:55:0e:fe:81:12:67:91:a9:f3:f8:ae:8c:8f:
21:4b:76:54:a0:a7:3d:d5:a2:2a:af:91:e0:40:4a:
d5:f5:e1:5e:5c:4e:aa:6f:61:0a:fb:9c:c2:3d:f2:
c0:0b:81:21:f6:95:29:72:de:c5:15:34:6a:24:d0:
69:74:ce:76:6f:8c:28:e0:4c:70:54:4b:fd:a7:84:
fd:f6:cb:95:04:c9:4c:c1:ff:e9:e0:8c:2c:0c:30:
8e:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:34:D6:1C:3E:D4:6E:BE:0F:E6:4F:26:85:78:EC:62:6E:CE:43:54
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/8143b58c-5f09-4458-bc1e-3904fb371e1d.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
59:6a:26:57:93:3b:5a:f4:70:fa:d0:42:e2:b1:cf:c6:ac:ff:
7a:18:80:7d:42:6a:42:25:15:e0:a3:3a:c4:89:76:b5:88:dd:
c1:e5:2b:fa:5f:5e:1f:fe:58:5c:54:1e:b7:9b:cb:a5:10:27:
f5:64:e1:c7:30:0b:ad:e4:4f:84:5c:f5:f1:79:8c:c6:28:0f:
f4:2f:88:55:27:60:f4:9d:d0:4f:5f:41:be:93:b8:c0:1f:67:
e7:58:fd:49:25:d7:c7:0f:63:10:b0:87:35:a1:46:32:a8:cd:
5e:63:51:ae:cd:cf:f1:60:9c:8d:16:fc:02:68:3e:36:fd:74:
a1:ec:ac:ce:00:ef:ca:6a:01:31:c1:df:78:ce:3f:44:74:07:
1d:a6:07:93:44:45:dd:d0:8b:1a:f7:b8:45:52:f7:0a:36:89:
73:a9:76:4c:f9:f2:2e:2c:e8:cc:c1:f8:fb:ef:fb:19:95:16:
17:76:c5:88:a4:48:f5:57:77:ca:b2:4c:b9:5a:3f:5b:72:ad:
3a:8a:8a:9f:c0:47:b6:42:0f:57:c8:52:f9:f6:c0:b7:46:6c:
7b:35:27:65:52:1c:a8:ec:ad:3e:0f:02:bd:78:59:c7:21:53:
03:b4:e4:e3:fc:b8:d9:41:9d:1a:30:30:e5:ba:5c:21:ab:8e:
bb:73:81:d8
-----BEGIN CERTIFICATE-----
MIIF+DCCBOCgAwIBAgIUXwEJZq7++h5opNhhqsK+aXjKrTgwDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyMjc4YWFiODc4ZjI2NjJjZTE0ZTkwNWUxOGViY2I3NTIy
ZjkyYjM2ODRiYzQ4NjViNGQwHhcNMjMwNjE5MDAwMDAwWhcNMjMwNzI0MjM1OTU5
WjB6MUkwRwYDVQQFE0BmYzc4NDhiZTFiZWEwODVjYjUyODY4Y2M1MzVhOWUyZmIw
YzM2YWUyZDgwODI4ODlhY2JlNDljODA1NTAzOGRiMS0wKwYDVQQDEyRjMGNlMjNl
YS00M2ZjLTRiZTQtYmVlZS1jMDE0NzgxMjJhMGUwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQDCiqDgXd8p3z2YYW9NWkeCo9VnculalYRFoEQpcylMRN/0
BQ6cIdhhZQ7aPZJNuhRYFTiq2uNkb4CZ0dc49oY0XvuMHK3xehdCr8F6ly6hw++V
cXuGZ38KbbayGixCPs+pmZsR7ZESBFzScfY12vTY2zfvhw57fVsWjK4Dn/0byO4P
EDcz7dcGsu1/lmkqhKgWWD/UuR9hNfQH6MTK2rNX0iM+zCBAVQ7+gRJnkanz+K6M
jyFLdlSgpz3VoiqvkeBAStX14V5cTqpvYQr7nMI98sALgSH2lSly3sUVNGok0Gl0
znZvjCjgTHBUS/2nhP32y5UEyUzB/+ngjCwMMI6/AgMBAAGjggKxMIICrTAdBgNV
HQ4EFgQUxzTWHD7Ubr4P5k8mhXjsYm7OQ1QwHwYDVR0jBBgwFoAUVajdRdlEE/nR
kvUsY86M+8YUlrgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy8xNDMzZWJmZi1k
ZmQ2LTRjNWMtYjdmZi05OWM4NTEzOWQ0YTgvMjc4YWFiODc4ZjI2NjJjZTE0ZTkw
NWUxOGViY2I3NTIyZjkyYjM2ODRiYzQ4NjViNGQuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvMTZmMWZmZWUtNzQ2MS00Njc0LWJiMDUtZmRk
ZWZhOWEwMmM2LzgxNDNiNThjLTVmMDktNDQ1OC1iYzFlLTM5MDRmYjM3MWUxZC5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzE2ZjFmZmVlLTc0NjEtNDY3NC1iYjA1
LWZkZGVmYTlhMDJjNi9KbUxPRk9rRjRZNjh0MUl2a3JOb1M4U0dXMDAuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBADHJHgwDQYJKoZIhvcNAQELBQADggEBAFlqJleTO1r0cPrQQuKxz8as/3oY
gH1CakIlFeCjOsSJdrWI3cHlK/pfXh/+WFxUHreby6UQJ/Vk4ccwC63kT4Rc9fF5
jMYoD/QviFUnYPSd0E9fQb6TuMAfZ+dY/Ukl18cPYxCwhzWhRjKozV5jUa7Nz/Fg
nI0W/AJoPjb9dKHsrM4A78pqATHB33jOP0R0Bx2mB5NERd3Qixr3uEVS9wo2iXOp
dkz58i4s6MzB+Pvv+xmVFhd2xYikSPVXd8qyTLlaP1tyrTqKip/AR7ZCD1fIUvn2
wLdGbHs1J2VSHKjsrT4PAr14WcchUwO05OP8uNlBnRowMOW6XCGrjrtzgdg=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:47:56 2024 by rpki-client on console-ams.rpki-client.org