Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/9ec26293-6b39-48cd-8150-a452fe80f23d.roa
File: 9ec26293-6b39-48cd-8150-a452fe80f23d.roa (raw, json)
Hash identifier: NlXbX7ATBe1kkuS6wQ9Jc+/izGsdcRyyyvznN60fb4I=
Subject key identifier: 0D:B7:24:AC:1D:40:DE:35:C9:C5:BB:DD:06:B6:FA:92:6D:F1:D0:0E
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 7DB79DE17A7F93CEB2553F6B56F2DA16B1859D7B
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/9ec26293-6b39-48cd-8150-a452fe80f23d.roa
Signing time: Fri 14 Jul 2023 00:00:00 +0000
ROA not before: Fri 14 Jul 2023 00:00:00 +0000
ROA not after: Fri 18 Aug 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7d:b7:9d:e1:7a:7f:93:ce:b2:55:3f:6b:56:f2:da:16:b1:85:9d:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Jul 14 00:00:00 2023 GMT
Not After : Aug 18 23:59:59 2023 GMT
Subject: serialNumber=f093e250e0533b5e74aff4717821d8bac73920bb470d12ee0e321d7825f97389, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:83:12:91:ef:8d:26:be:66:33:70:eb:52:5e:
04:f6:e2:63:8c:23:c7:22:11:de:3c:f6:6c:3b:42:
97:3d:29:90:41:a7:b3:f1:87:f2:c3:b5:eb:7b:ad:
1b:06:41:35:79:70:65:42:05:07:9c:a7:04:70:b9:
19:5f:0b:87:bb:73:6b:6b:b4:cc:04:32:c7:7d:6a:
63:b2:e2:44:c2:f5:ef:b5:9c:78:82:89:4d:91:c8:
52:aa:f8:d5:17:ea:c4:80:8a:70:9c:9f:69:65:b6:
0c:11:1d:f2:df:52:01:af:46:b1:1f:35:2e:b4:97:
af:04:20:19:73:8a:20:0d:f3:65:fa:05:56:2d:73:
c4:a2:e0:08:ef:6b:dd:a3:bf:68:cd:6d:a0:7b:4b:
7d:36:b6:9b:22:af:54:06:02:f4:ad:eb:78:0b:6d:
b0:53:e5:e6:2b:c7:50:a4:f2:c5:15:71:ca:1d:ec:
7c:26:53:07:cd:6b:dd:ec:68:49:17:77:79:39:b9:
64:eb:cb:ec:28:22:a5:1a:fa:4f:22:ef:de:9d:16:
28:f0:ac:4e:44:3c:7b:1f:5d:1a:dc:85:00:bd:14:
22:ba:2c:54:ee:ed:f7:2c:d5:2f:4e:91:96:17:47:
15:ea:1d:4c:87:c0:32:54:a4:be:d6:33:5b:60:fc:
e7:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:B7:24:AC:1D:40:DE:35:C9:C5:BB:DD:06:B6:FA:92:6D:F1:D0:0E
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/9ec26293-6b39-48cd-8150-a452fe80f23d.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
b2:d6:b2:ae:85:bf:c1:8d:2a:bd:bd:f2:8d:ae:44:08:7b:be:
50:51:1b:b8:d4:3b:24:84:70:cc:11:84:d7:5d:ce:01:43:df:
4f:4d:12:00:f1:ca:0e:ea:52:42:5a:71:8e:dc:17:df:a0:4a:
d4:40:8a:0c:27:00:4e:c0:ac:ba:c7:8c:d4:c0:41:41:9f:8d:
6c:2a:97:d2:16:ee:21:37:91:28:45:a2:99:de:26:a8:20:35:
41:4a:41:c8:e1:88:d0:86:54:1b:e2:9a:87:4d:b8:08:4e:7f:
f8:83:11:40:44:df:09:f2:b7:98:da:2d:8d:6d:69:ab:db:23:
48:1a:c0:f2:19:21:2a:20:74:11:34:a5:c5:fb:cb:09:42:76:
d2:fb:57:20:09:d3:5d:cd:53:25:c0:63:bd:79:49:da:ab:8f:
af:69:57:dc:f1:5f:0b:24:e1:f7:de:4f:b6:04:24:2d:46:bb:
ef:b4:54:22:4a:22:af:76:93:a4:27:1b:46:9e:8d:a2:e1:82:
1c:6e:60:bb:93:46:1e:39:19:f3:73:1e:4f:d5:68:56:e8:51:
30:e7:41:39:0b:2c:41:b9:fd:e7:c6:3e:0a:d0:98:e2:df:66:
42:d8:be:aa:79:33:1f:f6:f1:ba:38:28:e0:93:41:c3:15:ae:
da:e5:6b:1e
-----BEGIN CERTIFICATE-----
MIIF+DCCBOCgAwIBAgIUfbed4Xp/k86yVT9rVvLaFrGFnXswDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyMjc4YWFiODc4ZjI2NjJjZTE0ZTkwNWUxOGViY2I3NTIy
ZjkyYjM2ODRiYzQ4NjViNGQwHhcNMjMwNzE0MDAwMDAwWhcNMjMwODE4MjM1OTU5
WjB6MUkwRwYDVQQFE0BmMDkzZTI1MGUwNTMzYjVlNzRhZmY0NzE3ODIxZDhiYWM3
MzkyMGJiNDcwZDEyZWUwZTMyMWQ3ODI1Zjk3Mzg5MS0wKwYDVQQDEyRjMGNlMjNl
YS00M2ZjLTRiZTQtYmVlZS1jMDE0NzgxMjJhMGUwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQCbgxKR740mvmYzcOtSXgT24mOMI8ciEd489mw7Qpc9KZBB
p7Pxh/LDtet7rRsGQTV5cGVCBQecpwRwuRlfC4e7c2trtMwEMsd9amOy4kTC9e+1
nHiCiU2RyFKq+NUX6sSAinCcn2lltgwRHfLfUgGvRrEfNS60l68EIBlziiAN82X6
BVYtc8Si4Ajva92jv2jNbaB7S302tpsir1QGAvSt63gLbbBT5eYrx1Ck8sUVccod
7HwmUwfNa93saEkXd3k5uWTry+woIqUa+k8i796dFijwrE5EPHsfXRrchQC9FCK6
LFTu7fcs1S9OkZYXRxXqHUyHwDJUpL7WM1tg/OfxAgMBAAGjggKxMIICrTAdBgNV
HQ4EFgQUDbckrB1A3jXJxbvdBrb6km3x0A4wHwYDVR0jBBgwFoAUVajdRdlEE/nR
kvUsY86M+8YUlrgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy8xNDMzZWJmZi1k
ZmQ2LTRjNWMtYjdmZi05OWM4NTEzOWQ0YTgvMjc4YWFiODc4ZjI2NjJjZTE0ZTkw
NWUxOGViY2I3NTIyZjkyYjM2ODRiYzQ4NjViNGQuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvMTZmMWZmZWUtNzQ2MS00Njc0LWJiMDUtZmRk
ZWZhOWEwMmM2LzllYzI2MjkzLTZiMzktNDhjZC04MTUwLWE0NTJmZTgwZjIzZC5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzE2ZjFmZmVlLTc0NjEtNDY3NC1iYjA1
LWZkZGVmYTlhMDJjNi9KbUxPRk9rRjRZNjh0MUl2a3JOb1M4U0dXMDAuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBADHJHgwDQYJKoZIhvcNAQELBQADggEBALLWsq6Fv8GNKr298o2uRAh7vlBR
G7jUOySEcMwRhNddzgFD309NEgDxyg7qUkJacY7cF9+gStRAigwnAE7ArLrHjNTA
QUGfjWwql9IW7iE3kShFopneJqggNUFKQcjhiNCGVBvimodNuAhOf/iDEUBE3wny
t5jaLY1taavbI0gawPIZISogdBE0pcX7ywlCdtL7VyAJ013NUyXAY715Sdqrj69p
V9zxXwsk4ffeT7YEJC1Gu++0VCJKIq92k6QnG0aejaLhghxuYLuTRh45GfNzHk/V
aFboUTDnQTkLLEG5/efGPgrQmOLfZkLYvqp5Mx/28bo4KOCTQcMVrtrlax4=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:03 2024 by rpki-client on console-ams.rpki-client.org