Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/9459b970-5b46-4eb9-8699-a0131cd382dd.roa
File: 9459b970-5b46-4eb9-8699-a0131cd382dd.roa (raw, json)
Hash identifier: PcxXi9jFEVTQN+JgmmzqNW78RVYs0uEN0j1ISqcTWbs=
Subject key identifier: D9:E9:12:57:07:87:89:D3:F4:0F:17:33:40:71:32:91:11:82:88:03
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 776C04254F45EBA46A77F78E1FBEC633DB732031
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/9459b970-5b46-4eb9-8699-a0131cd382dd.roa
Signing time: Sun 06 Aug 2023 00:00:00 +0000
ROA not before: Sun 06 Aug 2023 00:00:00 +0000
ROA not after: Sun 10 Sep 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
77:6c:04:25:4f:45:eb:a4:6a:77:f7:8e:1f:be:c6:33:db:73:20:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Aug 6 00:00:00 2023 GMT
Not After : Sep 10 23:59:59 2023 GMT
Subject: serialNumber=1f874f6e1129881e1586b56f757d2bd50ef13b7cd9fd0d1bd017972e4ced6cfc, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:bd:3e:e2:0c:4e:e0:bc:a0:d6:63:6e:c6:94:
c8:29:fa:94:32:3c:a0:30:83:e2:1d:4b:04:bc:cb:
2c:39:cd:22:36:6a:a7:10:88:98:c3:8c:e7:29:d6:
d4:af:b1:45:fb:76:bd:af:cb:52:f7:3f:fd:a1:f8:
f4:0a:4d:0c:51:c5:ef:28:97:d8:78:8d:b5:d2:9c:
44:36:a9:c2:79:ba:f2:7d:b3:0d:c5:d8:9b:02:db:
6d:ab:b8:f6:2a:6e:11:cd:04:e4:af:e9:69:ed:e3:
ff:ae:84:cf:d4:ec:b7:41:58:dc:74:f5:bc:fd:25:
73:62:12:3a:12:9a:7a:7d:20:c5:c4:a7:2b:79:c2:
4e:6f:49:7f:a0:d2:b4:71:8b:c4:10:89:d5:c0:c9:
bb:cf:ca:09:c4:76:8a:a2:da:ac:38:8c:8b:a1:f5:
0f:2c:01:c4:3f:5b:75:cf:f3:fe:59:7c:78:be:e2:
ff:d0:96:77:cb:05:98:53:59:1b:0f:fa:15:5c:de:
8f:be:62:d1:f9:76:f4:f6:83:07:19:a5:66:77:ae:
6a:03:8c:7d:b3:c1:94:e0:7b:18:ef:11:7e:8d:7a:
f7:fa:c7:19:d5:4c:19:cb:e6:b1:57:31:71:6f:3c:
53:7e:28:94:62:74:ae:42:d8:28:50:2e:21:45:24:
d8:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:E9:12:57:07:87:89:D3:F4:0F:17:33:40:71:32:91:11:82:88:03
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/9459b970-5b46-4eb9-8699-a0131cd382dd.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
62:8d:d3:e3:0f:68:41:76:d8:14:51:97:62:f5:81:71:ff:78:
e0:6d:c3:95:47:bd:32:f9:1c:1d:e4:9f:ce:f6:6c:ad:0b:ff:
6f:ed:bd:d4:bf:54:b8:25:53:33:3b:c0:e3:63:ca:b3:4b:f3:
2a:a6:92:ec:34:ec:3b:f1:6b:00:5b:42:1f:6b:46:a8:89:e1:
b3:a5:7f:a4:c9:d6:87:da:01:92:1f:5a:4e:12:9c:f6:e8:b0:
67:68:81:5b:3f:8b:ff:c8:d1:11:d3:17:5e:a9:48:20:5a:60:
f0:30:e7:cf:50:c1:a7:8d:09:23:a1:15:f0:9f:18:ba:1e:f1:
6c:af:98:15:81:66:c2:0b:d3:82:f6:72:d6:bb:b1:95:5a:77:
a5:d4:0b:83:b7:15:26:01:20:0a:ce:06:f7:17:fa:33:16:e3:
91:74:cb:ab:45:22:a6:48:1a:0d:2a:06:5f:08:90:a0:d4:1a:
36:6f:1c:41:4c:46:f6:16:e1:25:b7:1c:41:3f:ea:7c:b9:24:
56:b6:33:13:6c:33:16:cf:c3:4b:0b:1f:1a:d5:b3:a2:55:8c:
4b:8b:6a:bd:ce:0b:ff:a1:69:0b:e8:cb:26:e7:0f:f0:68:ff:
27:ee:e6:69:b6:32:9d:6f:ae:65:ed:8d:fe:2a:a7:ee:8f:eb:
52:d9:45:40
-----BEGIN CERTIFICATE-----
MIIF+DCCBOCgAwIBAgIUd2wEJU9F66Rqd/eOH77GM9tzIDEwDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyMjc4YWFiODc4ZjI2NjJjZTE0ZTkwNWUxOGViY2I3NTIy
ZjkyYjM2ODRiYzQ4NjViNGQwHhcNMjMwODA2MDAwMDAwWhcNMjMwOTEwMjM1OTU5
WjB6MUkwRwYDVQQFE0AxZjg3NGY2ZTExMjk4ODFlMTU4NmI1NmY3NTdkMmJkNTBl
ZjEzYjdjZDlmZDBkMWJkMDE3OTcyZTRjZWQ2Y2ZjMS0wKwYDVQQDEyRjMGNlMjNl
YS00M2ZjLTRiZTQtYmVlZS1jMDE0NzgxMjJhMGUwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQC6vT7iDE7gvKDWY27GlMgp+pQyPKAwg+IdSwS8yyw5zSI2
aqcQiJjDjOcp1tSvsUX7dr2vy1L3P/2h+PQKTQxRxe8ol9h4jbXSnEQ2qcJ5uvJ9
sw3F2JsC222ruPYqbhHNBOSv6Wnt4/+uhM/U7LdBWNx09bz9JXNiEjoSmnp9IMXE
pyt5wk5vSX+g0rRxi8QQidXAybvPygnEdoqi2qw4jIuh9Q8sAcQ/W3XP8/5ZfHi+
4v/QlnfLBZhTWRsP+hVc3o++YtH5dvT2gwcZpWZ3rmoDjH2zwZTgexjvEX6Nevf6
xxnVTBnL5rFXMXFvPFN+KJRidK5C2ChQLiFFJNgrAgMBAAGjggKxMIICrTAdBgNV
HQ4EFgQU2ekSVweHidP0DxczQHEykRGCiAMwHwYDVR0jBBgwFoAUVajdRdlEE/nR
kvUsY86M+8YUlrgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy8xNDMzZWJmZi1k
ZmQ2LTRjNWMtYjdmZi05OWM4NTEzOWQ0YTgvMjc4YWFiODc4ZjI2NjJjZTE0ZTkw
NWUxOGViY2I3NTIyZjkyYjM2ODRiYzQ4NjViNGQuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvMTZmMWZmZWUtNzQ2MS00Njc0LWJiMDUtZmRk
ZWZhOWEwMmM2Lzk0NTliOTcwLTViNDYtNGViOS04Njk5LWEwMTMxY2QzODJkZC5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzE2ZjFmZmVlLTc0NjEtNDY3NC1iYjA1
LWZkZGVmYTlhMDJjNi9KbUxPRk9rRjRZNjh0MUl2a3JOb1M4U0dXMDAuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBADHJHgwDQYJKoZIhvcNAQELBQADggEBAGKN0+MPaEF22BRRl2L1gXH/eOBt
w5VHvTL5HB3kn872bK0L/2/tvdS/VLglUzM7wONjyrNL8yqmkuw07DvxawBbQh9r
RqiJ4bOlf6TJ1ofaAZIfWk4SnPbosGdogVs/i//I0RHTF16pSCBaYPAw589QwaeN
CSOhFfCfGLoe8WyvmBWBZsIL04L2cta7sZVad6XUC4O3FSYBIArOBvcX+jMW45F0
y6tFIqZIGg0qBl8IkKDUGjZvHEFMRvYW4SW3HEE/6ny5JFa2MxNsMxbPw0sLHxrV
s6JVjEuLar3OC/+haQvoyybnD/Bo/yfu5mm2Mp1vrmXtjf4qp+6P61LZRUA=
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:41:36 2024 by rpki-client on console-fra.rpki-client.org