Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/9df6d550-9127-4b96-9a1d-b2f63080465b.roa
File: 9df6d550-9127-4b96-9a1d-b2f63080465b.roa (raw, json)
Hash identifier: lgU9ADHrzU5qe1gavcsAmxZnM/9cbYyNIRShHLLk3qM=
Subject key identifier: DD:77:24:DA:85:BF:F7:FD:C4:5C:63:92:1D:BE:1D:C0:27:45:76:99
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 7AB8DD1209C7A71F18A8A54C476B97F4309ED0CF
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/9df6d550-9127-4b96-9a1d-b2f63080465b.roa
Signing time: Tue 20 Jun 2023 00:00:00 +0000
ROA not before: Tue 20 Jun 2023 00:00:00 +0000
ROA not after: Tue 25 Jul 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7a:b8:dd:12:09:c7:a7:1f:18:a8:a5:4c:47:6b:97:f4:30:9e:d0:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Jun 20 00:00:00 2023 GMT
Not After : Jul 25 23:59:59 2023 GMT
Subject: serialNumber=ef957f6bd830ab00a442ca53339a3f89919c8fe89abecd1b9f00e183f599053a, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:cc:25:c1:c9:26:19:21:b8:1a:de:48:d8:86:
b2:c0:26:cb:08:dd:28:8c:e0:62:5f:18:95:37:f7:
4a:e7:30:14:6d:28:a1:71:cc:52:6c:40:ff:fc:b7:
52:95:ee:0c:34:03:15:3c:d5:28:1b:3e:85:a2:88:
2e:c5:2c:5b:5a:1a:63:9c:4d:1b:12:9c:6d:72:fb:
cc:69:03:94:83:9d:05:e7:c9:65:6c:bb:c7:8c:8a:
ae:04:4b:04:40:b2:c8:e9:d4:b6:a2:e5:c9:bf:d6:
d9:31:5c:a1:cc:a2:ef:4c:94:a8:77:bc:a9:c8:01:
bd:5e:2f:7f:00:91:8a:ce:99:cd:5a:9a:eb:01:da:
66:dc:ee:0a:f0:63:0e:09:42:d3:88:b2:81:ce:a6:
ad:9d:e0:a4:21:f2:f7:01:bd:dd:e8:cc:45:4c:62:
4b:2f:02:9d:a5:c6:4a:f8:df:c9:73:97:bc:4d:16:
da:1a:3f:34:ea:87:5b:5f:3c:27:56:9b:76:6f:82:
bd:76:b3:d2:7c:de:08:59:88:13:c5:98:cb:90:e6:
2a:3e:24:3c:fc:71:32:d4:45:94:a1:de:1e:b1:14:
cc:ff:b4:28:25:f7:1e:55:e8:ff:35:cf:1c:21:38:
e1:66:71:fc:d2:c8:4b:10:cd:e3:14:11:ca:eb:dd:
34:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:77:24:DA:85:BF:F7:FD:C4:5C:63:92:1D:BE:1D:C0:27:45:76:99
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/9df6d550-9127-4b96-9a1d-b2f63080465b.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
94:00:f5:71:43:c1:c1:2d:25:6c:ca:1c:19:01:45:69:b6:a7:
ab:e5:cf:5d:cf:11:82:c8:e2:fc:7f:55:a8:b4:3d:87:52:ca:
4d:a6:fb:c8:75:b9:79:23:bc:55:72:77:d2:d7:da:7f:00:aa:
cc:53:74:5f:42:1f:75:9c:a9:bc:70:9a:12:2b:af:d7:48:97:
6d:a2:5b:13:9e:39:4b:56:2c:2e:c1:ac:fd:7f:19:ef:e9:9c:
d8:8b:59:b6:63:14:87:12:78:44:b4:6e:38:ef:af:2a:8a:72:
0e:00:9c:a9:0d:91:4a:d7:85:35:6f:60:99:55:ce:97:96:5e:
84:91:79:ad:d8:32:4c:e0:3f:ca:97:9c:e5:61:4b:29:a2:5f:
19:a5:a5:5b:ff:d3:74:2e:6f:69:b7:c0:3f:7b:8e:76:ac:36:
08:51:66:2b:7e:9c:37:0a:1b:52:d0:64:b6:b0:7a:d7:a7:c5:
4a:74:04:d3:c8:63:e7:2a:64:76:e6:36:9a:b1:48:c7:e8:f9:
0d:75:84:e5:d5:17:51:0a:9e:31:23:58:5f:c2:0f:85:9e:b6:
61:f2:f2:ee:55:02:c6:db:e9:a3:ce:da:62:0a:bf:d9:08:4e:
df:37:7d:e6:23:31:f1:65:99:e1:5e:1d:18:82:b5:97:3b:29:
c9:02:90:c3
-----BEGIN CERTIFICATE-----
MIIF+DCCBOCgAwIBAgIUerjdEgnHpx8YqKVMR2uX9DCe0M8wDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyMjc4YWFiODc4ZjI2NjJjZTE0ZTkwNWUxOGViY2I3NTIy
ZjkyYjM2ODRiYzQ4NjViNGQwHhcNMjMwNjIwMDAwMDAwWhcNMjMwNzI1MjM1OTU5
WjB6MUkwRwYDVQQFE0BlZjk1N2Y2YmQ4MzBhYjAwYTQ0MmNhNTMzMzlhM2Y4OTkx
OWM4ZmU4OWFiZWNkMWI5ZjAwZTE4M2Y1OTkwNTNhMS0wKwYDVQQDEyRjMGNlMjNl
YS00M2ZjLTRiZTQtYmVlZS1jMDE0NzgxMjJhMGUwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQC5zCXBySYZIbga3kjYhrLAJssI3SiM4GJfGJU390rnMBRt
KKFxzFJsQP/8t1KV7gw0AxU81SgbPoWiiC7FLFtaGmOcTRsSnG1y+8xpA5SDnQXn
yWVsu8eMiq4ESwRAssjp1Lai5cm/1tkxXKHMou9MlKh3vKnIAb1eL38AkYrOmc1a
musB2mbc7grwYw4JQtOIsoHOpq2d4KQh8vcBvd3ozEVMYksvAp2lxkr438lzl7xN
FtoaPzTqh1tfPCdWm3Zvgr12s9J83ghZiBPFmMuQ5io+JDz8cTLURZSh3h6xFMz/
tCgl9x5V6P81zxwhOOFmcfzSyEsQzeMUEcrr3TSNAgMBAAGjggKxMIICrTAdBgNV
HQ4EFgQU3Xck2oW/9/3EXGOSHb4dwCdFdpkwHwYDVR0jBBgwFoAUVajdRdlEE/nR
kvUsY86M+8YUlrgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy8xNDMzZWJmZi1k
ZmQ2LTRjNWMtYjdmZi05OWM4NTEzOWQ0YTgvMjc4YWFiODc4ZjI2NjJjZTE0ZTkw
NWUxOGViY2I3NTIyZjkyYjM2ODRiYzQ4NjViNGQuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvMTZmMWZmZWUtNzQ2MS00Njc0LWJiMDUtZmRk
ZWZhOWEwMmM2LzlkZjZkNTUwLTkxMjctNGI5Ni05YTFkLWIyZjYzMDgwNDY1Yi5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzE2ZjFmZmVlLTc0NjEtNDY3NC1iYjA1
LWZkZGVmYTlhMDJjNi9KbUxPRk9rRjRZNjh0MUl2a3JOb1M4U0dXMDAuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBADHJHgwDQYJKoZIhvcNAQELBQADggEBAJQA9XFDwcEtJWzKHBkBRWm2p6vl
z13PEYLI4vx/Vai0PYdSyk2m+8h1uXkjvFVyd9LX2n8AqsxTdF9CH3WcqbxwmhIr
r9dIl22iWxOeOUtWLC7BrP1/Ge/pnNiLWbZjFIcSeES0bjjvryqKcg4AnKkNkUrX
hTVvYJlVzpeWXoSRea3YMkzgP8qXnOVhSymiXxmlpVv/03Qub2m3wD97jnasNghR
Zit+nDcKG1LQZLawetenxUp0BNPIY+cqZHbmNpqxSMfo+Q11hOXVF1EKnjEjWF/C
D4WetmHy8u5VAsbb6aPO2mIKv9kITt83feYjMfFlmeFeHRiCtZc7KckCkMM=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:03 2024 by rpki-client on console-ams.rpki-client.org