Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/91ffb165-8467-443c-b7ba-f4c30eb320d6.roa
File: 91ffb165-8467-443c-b7ba-f4c30eb320d6.roa (raw, json)
Hash identifier: AmBUrP8NpCjsKDafBUMXSZph/wAtqUQ/QXbzvG8KsNk=
Subject key identifier: 25:78:B3:40:E2:32:04:E6:D1:34:3A:01:7D:91:2C:61:5E:64:2D:70
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 0FAE1C3F4CF5F7096F0B99E242BDF97CCDA6FD88
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/91ffb165-8467-443c-b7ba-f4c30eb320d6.roa
Signing time: Sun 01 Oct 2023 00:00:00 +0000
ROA not before: Sun 01 Oct 2023 00:00:00 +0000
ROA not after: Sun 05 Nov 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0f:ae:1c:3f:4c:f5:f7:09:6f:0b:99:e2:42:bd:f9:7c:cd:a6:fd:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Oct 1 00:00:00 2023 GMT
Not After : Nov 5 23:59:59 2023 GMT
Subject: serialNumber=d418fafa4b2a98995ff1dd743fc2a1812b0d4a8d791aea70d926734d57ee93f1, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:9a:96:d3:5d:13:38:60:94:d4:e3:3a:13:a4:
0d:2e:b6:80:b8:c3:48:ae:11:a9:cd:88:51:29:82:
8b:02:44:0e:84:9e:a8:46:b5:86:fc:a0:1f:43:bf:
66:cc:f2:bc:48:eb:bd:8b:a5:30:61:2a:1d:4d:8b:
d9:f3:b3:d0:8a:14:33:84:a6:e1:9f:b3:39:26:96:
89:da:03:f6:76:f3:dc:47:7c:ef:68:f8:57:4d:41:
42:bc:11:06:2d:ec:c6:3f:f9:0e:14:94:b0:cf:02:
db:2a:2f:ca:b9:5b:44:bc:f4:e7:fa:ae:97:15:3c:
36:a1:09:d0:a9:73:b5:4c:22:f8:d8:0e:0a:4e:4f:
f7:57:11:41:fa:87:a2:c3:2f:65:75:53:07:99:19:
e6:e3:2e:f1:73:28:7e:a2:24:0f:2f:35:3f:60:59:
c7:b5:04:ee:ec:5c:19:a7:00:71:8b:7a:c7:34:d1:
c1:18:95:23:9a:e2:c4:d6:a9:a7:76:f7:63:b6:85:
22:21:95:08:99:cd:a2:6e:c0:85:87:24:87:2c:26:
e1:8d:f2:b2:e4:62:83:32:4a:1b:53:bf:5f:e7:83:
91:0a:53:41:83:cd:1d:9a:a2:6b:78:01:6f:7d:dc:
e2:c7:34:1a:e2:2e:9a:87:2c:0d:8a:24:da:ec:c4:
9b:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:78:B3:40:E2:32:04:E6:D1:34:3A:01:7D:91:2C:61:5E:64:2D:70
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/91ffb165-8467-443c-b7ba-f4c30eb320d6.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
53:65:71:e2:d1:38:59:35:20:28:f3:a8:6d:43:0e:3e:46:f2:
c4:a2:35:12:0b:5b:14:95:4b:8f:5a:ef:7e:04:f5:c0:da:a4:
e3:b9:48:1a:e1:db:30:f5:aa:cc:c6:b1:8a:09:2c:7a:ad:ba:
5d:40:79:3e:72:c8:47:88:26:02:eb:e8:39:23:5f:68:22:93:
e3:a3:4b:18:3b:33:1f:c4:a3:28:9a:25:df:1b:3d:ac:6b:c4:
f2:27:f4:d5:e9:12:a8:d3:ae:11:36:ca:51:36:a9:2e:a2:10:
be:63:41:8f:07:86:ba:66:9c:db:5e:47:40:01:bf:c5:0d:51:
90:63:20:63:4e:21:a2:71:88:c3:c6:9f:fb:c6:7e:32:05:8b:
34:6b:f6:b9:4d:c3:25:b7:f3:59:55:41:4a:2f:0c:16:d2:81:
64:bf:04:29:bf:05:e0:34:4c:ee:aa:2c:d9:99:80:b5:09:b5:
ab:e3:ac:b9:68:4b:e7:1d:fd:4c:d8:43:f4:9c:dc:e2:2d:c9:
36:7b:c9:5b:5a:2e:e0:80:00:5f:bd:08:b9:09:75:2a:79:eb:
86:10:b1:4b:44:f0:dd:0a:e7:91:d6:0a:8a:94:f3:9f:61:ae:
09:12:d5:69:83:f8:b6:23:49:f6:4a:89:0e:e4:74:a7:70:dd:
4a:3d:c0:0c
-----BEGIN CERTIFICATE-----
MIIF+DCCBOCgAwIBAgIUD64cP0z19wlvC5niQr35fM2m/YgwDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyMjc4YWFiODc4ZjI2NjJjZTE0ZTkwNWUxOGViY2I3NTIy
ZjkyYjM2ODRiYzQ4NjViNGQwHhcNMjMxMDAxMDAwMDAwWhcNMjMxMTA1MjM1OTU5
WjB6MUkwRwYDVQQFE0BkNDE4ZmFmYTRiMmE5ODk5NWZmMWRkNzQzZmMyYTE4MTJi
MGQ0YThkNzkxYWVhNzBkOTI2NzM0ZDU3ZWU5M2YxMS0wKwYDVQQDEyRjMGNlMjNl
YS00M2ZjLTRiZTQtYmVlZS1jMDE0NzgxMjJhMGUwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQDAmpbTXRM4YJTU4zoTpA0utoC4w0iuEanNiFEpgosCRA6E
nqhGtYb8oB9Dv2bM8rxI672LpTBhKh1Ni9nzs9CKFDOEpuGfszkmlonaA/Z289xH
fO9o+FdNQUK8EQYt7MY/+Q4UlLDPAtsqL8q5W0S89Of6rpcVPDahCdCpc7VMIvjY
DgpOT/dXEUH6h6LDL2V1UweZGebjLvFzKH6iJA8vNT9gWce1BO7sXBmnAHGLesc0
0cEYlSOa4sTWqad292O2hSIhlQiZzaJuwIWHJIcsJuGN8rLkYoMyShtTv1/ng5EK
U0GDzR2aomt4AW993OLHNBriLpqHLA2KJNrsxJtfAgMBAAGjggKxMIICrTAdBgNV
HQ4EFgQUJXizQOIyBObRNDoBfZEsYV5kLXAwHwYDVR0jBBgwFoAUVajdRdlEE/nR
kvUsY86M+8YUlrgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy8xNDMzZWJmZi1k
ZmQ2LTRjNWMtYjdmZi05OWM4NTEzOWQ0YTgvMjc4YWFiODc4ZjI2NjJjZTE0ZTkw
NWUxOGViY2I3NTIyZjkyYjM2ODRiYzQ4NjViNGQuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvMTZmMWZmZWUtNzQ2MS00Njc0LWJiMDUtZmRk
ZWZhOWEwMmM2LzkxZmZiMTY1LTg0NjctNDQzYy1iN2JhLWY0YzMwZWIzMjBkNi5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzE2ZjFmZmVlLTc0NjEtNDY3NC1iYjA1
LWZkZGVmYTlhMDJjNi9KbUxPRk9rRjRZNjh0MUl2a3JOb1M4U0dXMDAuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBADHJHgwDQYJKoZIhvcNAQELBQADggEBAFNlceLROFk1ICjzqG1DDj5G8sSi
NRILWxSVS49a734E9cDapOO5SBrh2zD1qszGsYoJLHqtul1AeT5yyEeIJgLr6Dkj
X2gik+OjSxg7Mx/EoyiaJd8bPaxrxPIn9NXpEqjTrhE2ylE2qS6iEL5jQY8Hhrpm
nNteR0ABv8UNUZBjIGNOIaJxiMPGn/vGfjIFizRr9rlNwyW381lVQUovDBbSgWS/
BCm/BeA0TO6qLNmZgLUJtavjrLloS+cd/UzYQ/Sc3OItyTZ7yVtaLuCAAF+9CLkJ
dSp564YQsUtE8N0K55HWCoqU859hrgkS1WmD+LYjSfZKiQ7kdKdw3Uo9wAw=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:00 2024 by rpki-client on console-ams.rpki-client.org