Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/846cf935-5344-4e0f-aae4-3a2ceef53917.roa
File: 846cf935-5344-4e0f-aae4-3a2ceef53917.roa (raw, json)
Hash identifier: i0IQMQ/6EDba8ZSZ7C5ZAOeDOjJWGO1s1QD6SBXz2bE=
Subject key identifier: 15:A5:14:1D:4C:81:8A:FA:75:AB:C5:2F:73:DF:36:70:B8:FA:98:61
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 34B62367BEF0E5C7EEC06E3F2815B8C5F0AB2DF2
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/846cf935-5344-4e0f-aae4-3a2ceef53917.roa
Signing time: Sun 14 Jan 2024 00:00:00 +0000
ROA not before: Sun 14 Jan 2024 00:00:00 +0000
ROA not after: Sun 18 Feb 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
34:b6:23:67:be:f0:e5:c7:ee:c0:6e:3f:28:15:b8:c5:f0:ab:2d:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Jan 14 00:00:00 2024 GMT
Not After : Feb 18 23:59:59 2024 GMT
Subject: serialNumber=4b5c071923b6ac43c7cb34fe21264c3a9a6406953341f367c23e2eb7a7b773f0, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:d3:9f:04:78:0e:91:96:e7:b0:e4:c7:f9:3a:
ac:b5:ea:c0:2d:ed:41:5d:60:aa:26:ce:aa:c8:f9:
18:4e:c8:65:b4:f2:41:3d:d2:9a:ae:19:5a:5c:13:
e3:f9:e2:3b:ba:a9:1b:cd:c3:86:9e:fc:a4:1a:b7:
57:66:2d:bc:05:4d:cc:8d:bd:b8:30:5d:fd:c1:19:
38:0c:52:be:f3:4b:6a:2e:ab:de:3b:d1:54:3e:d7:
f7:c6:f8:f1:da:a1:c1:c3:89:54:68:7d:92:c5:2a:
45:7c:57:33:0b:bd:c5:6d:0d:95:63:32:37:4d:5a:
f1:e7:94:a4:a7:3d:5b:39:0c:c1:e0:a2:6d:4b:af:
ea:be:0a:63:04:86:d5:ea:3d:4a:71:7f:bc:f1:57:
05:93:e2:68:33:58:fa:3a:4a:66:6d:4e:c4:1b:33:
c3:5f:70:9c:53:bf:7e:21:a4:8c:d4:1f:b9:d5:ba:
59:dd:bc:e7:44:e7:17:34:0c:9a:2b:67:5a:9d:25:
2d:de:8f:a4:0a:86:c7:17:5e:82:c6:c5:ff:97:51:
0e:22:71:23:69:d6:a4:76:a2:96:56:3f:36:13:fc:
c7:a1:19:07:2b:9d:84:70:3e:08:46:70:88:7c:7e:
12:40:81:e3:8f:ae:2f:9c:9d:cc:a7:0a:f6:22:d2:
09:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:A5:14:1D:4C:81:8A:FA:75:AB:C5:2F:73:DF:36:70:B8:FA:98:61
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/846cf935-5344-4e0f-aae4-3a2ceef53917.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
b7:0b:2d:fa:84:b6:97:bf:1d:15:81:bd:86:7b:45:bd:df:ed:
e8:e4:7b:c7:f6:61:fd:02:09:60:e0:3c:68:a3:f1:44:ff:b6:
c2:b8:8c:d9:7c:c9:de:41:79:09:f2:18:f0:21:11:27:99:3e:
4d:37:28:95:53:b4:43:2e:7a:4d:0a:8a:49:80:8e:c5:75:4a:
22:57:ee:95:ef:1c:e3:2c:6c:d7:b8:a7:38:79:6e:6a:2f:3c:
8b:41:a8:b9:53:8a:e8:7a:a5:3d:4a:63:53:d3:b9:87:d6:81:
a1:a7:f4:00:b8:83:44:0f:ae:2f:d9:93:45:28:8f:d7:d3:68:
1e:e9:73:c5:e0:ba:da:37:0d:8f:8f:c4:eb:67:d3:35:c4:a1:
ae:ec:ea:16:5d:6c:b0:a8:85:b1:28:86:d0:89:5d:95:a1:ea:
56:53:75:a5:0a:bf:3e:7a:99:95:c5:43:c4:ce:28:ca:4d:c6:
f0:12:28:35:7a:e7:c6:21:f9:95:83:c3:72:6d:52:48:43:be:
c3:c5:b6:df:12:14:2e:ad:a2:fc:20:7b:09:6c:e7:04:59:6f:
87:5f:54:22:1b:48:28:ac:8f:48:6a:6c:e3:d3:c3:7d:d4:e0:
cf:63:06:95:aa:75:13:ba:72:2f:66:53:45:27:0e:98:bc:c3:
bd:73:09:99
-----BEGIN CERTIFICATE-----
MIIF+DCCBOCgAwIBAgIUNLYjZ77w5cfuwG4/KBW4xfCrLfIwDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyMjc4YWFiODc4ZjI2NjJjZTE0ZTkwNWUxOGViY2I3NTIy
ZjkyYjM2ODRiYzQ4NjViNGQwHhcNMjQwMTE0MDAwMDAwWhcNMjQwMjE4MjM1OTU5
WjB6MUkwRwYDVQQFE0A0YjVjMDcxOTIzYjZhYzQzYzdjYjM0ZmUyMTI2NGMzYTlh
NjQwNjk1MzM0MWYzNjdjMjNlMmViN2E3Yjc3M2YwMS0wKwYDVQQDEyRjMGNlMjNl
YS00M2ZjLTRiZTQtYmVlZS1jMDE0NzgxMjJhMGUwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQCn058EeA6Rluew5Mf5Oqy16sAt7UFdYKomzqrI+RhOyGW0
8kE90pquGVpcE+P54ju6qRvNw4ae/KQat1dmLbwFTcyNvbgwXf3BGTgMUr7zS2ou
q9470VQ+1/fG+PHaocHDiVRofZLFKkV8VzMLvcVtDZVjMjdNWvHnlKSnPVs5DMHg
om1Lr+q+CmMEhtXqPUpxf7zxVwWT4mgzWPo6SmZtTsQbM8NfcJxTv34hpIzUH7nV
ulndvOdE5xc0DJorZ1qdJS3ej6QKhscXXoLGxf+XUQ4icSNp1qR2opZWPzYT/Meh
GQcrnYRwPghGcIh8fhJAgeOPri+cncynCvYi0gl1AgMBAAGjggKxMIICrTAdBgNV
HQ4EFgQUFaUUHUyBivp1q8Uvc982cLj6mGEwHwYDVR0jBBgwFoAUVajdRdlEE/nR
kvUsY86M+8YUlrgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy8xNDMzZWJmZi1k
ZmQ2LTRjNWMtYjdmZi05OWM4NTEzOWQ0YTgvMjc4YWFiODc4ZjI2NjJjZTE0ZTkw
NWUxOGViY2I3NTIyZjkyYjM2ODRiYzQ4NjViNGQuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvMTZmMWZmZWUtNzQ2MS00Njc0LWJiMDUtZmRk
ZWZhOWEwMmM2Lzg0NmNmOTM1LTUzNDQtNGUwZi1hYWU0LTNhMmNlZWY1MzkxNy5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzE2ZjFmZmVlLTc0NjEtNDY3NC1iYjA1
LWZkZGVmYTlhMDJjNi9KbUxPRk9rRjRZNjh0MUl2a3JOb1M4U0dXMDAuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBADHJHgwDQYJKoZIhvcNAQELBQADggEBALcLLfqEtpe/HRWBvYZ7Rb3f7ejk
e8f2Yf0CCWDgPGij8UT/tsK4jNl8yd5BeQnyGPAhESeZPk03KJVTtEMuek0KikmA
jsV1SiJX7pXvHOMsbNe4pzh5bmovPItBqLlTiuh6pT1KY1PTuYfWgaGn9AC4g0QP
ri/Zk0Uoj9fTaB7pc8Xguto3DY+PxOtn0zXEoa7s6hZdbLCohbEohtCJXZWh6lZT
daUKvz56mZXFQ8TOKMpNxvASKDV658Yh+ZWDw3JtUkhDvsPFtt8SFC6tovwgewls
5wRZb4dfVCIbSCisj0hqbOPTw33U4M9jBpWqdRO6ci9mU0UnDpi8w71zCZk=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:47:57 2024 by rpki-client on console-ams.rpki-client.org