Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/a29ab861-f018-4c76-98dd-0099a6a22ce4.roa
File: a29ab861-f018-4c76-98dd-0099a6a22ce4.roa (raw, json)
Hash identifier: NsCEoj8Kk2tDQ8vjTKdqvtUrAPGnYd8rhmqdwdhyYfc=
Subject key identifier: 73:8D:FC:AC:C1:D9:A7:62:50:00:DF:0C:C3:4E:83:3E:98:19:1C:A8
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 1249FF2B0D02EED4F95E27AD7B8E5A1C7F06861E
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/a29ab861-f018-4c76-98dd-0099a6a22ce4.roa
Signing time: Thu 04 Jan 2024 00:00:00 +0000
ROA not before: Thu 04 Jan 2024 00:00:00 +0000
ROA not after: Thu 08 Feb 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
12:49:ff:2b:0d:02:ee:d4:f9:5e:27:ad:7b:8e:5a:1c:7f:06:86:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Jan 4 00:00:00 2024 GMT
Not After : Feb 8 23:59:59 2024 GMT
Subject: serialNumber=6ae9c31c9eeefe37ffbd92cfb819fa039e7fc748fd40a4b29b648c06b22e42fb, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:1b:5c:4b:31:99:ac:22:29:d3:02:20:07:c1:
44:d5:c3:63:d4:82:de:ae:7a:c1:bb:4c:78:af:54:
b7:67:8c:f2:7c:28:44:a6:f1:1c:1a:c7:9f:84:be:
67:1e:81:ab:df:ad:c5:4b:02:49:bc:36:42:3c:81:
07:f8:e1:5c:0e:8e:55:11:4e:c2:d0:74:ee:14:4e:
a2:0d:4f:13:54:31:9c:a4:03:37:db:00:f8:dc:32:
93:63:ca:6b:cb:28:b5:9f:dc:76:fb:65:21:8e:9c:
89:ee:79:6e:0b:53:d6:6c:c3:b2:a4:f6:d3:49:b4:
b5:43:e7:f6:b2:df:2d:4e:13:38:a2:e4:53:47:0a:
7b:50:1b:d7:3e:de:65:4c:35:ed:0a:6f:bd:e8:f2:
10:17:d7:43:81:fc:bf:28:e8:36:b8:ac:18:68:2e:
c5:cc:0b:46:ed:b1:17:ce:bd:08:2e:13:3a:96:9c:
e8:26:96:4c:0a:b9:a2:d8:fe:0f:e4:6c:b7:35:64:
26:4d:39:d6:c3:1a:12:3f:92:f1:82:f2:03:5f:ec:
3d:09:06:b2:90:02:ae:b3:4a:6d:f1:88:46:02:ea:
7d:59:b1:ae:3d:9a:03:02:1b:a5:99:1e:34:72:7e:
fd:15:60:c6:62:aa:64:b6:27:a8:f5:25:51:53:4a:
41:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:8D:FC:AC:C1:D9:A7:62:50:00:DF:0C:C3:4E:83:3E:98:19:1C:A8
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/a29ab861-f018-4c76-98dd-0099a6a22ce4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
8e:cc:7b:dd:c7:66:b8:96:0d:2b:71:8b:d1:3a:13:13:fb:cd:
38:53:ec:a4:e3:40:41:75:e0:b8:19:62:d1:9a:f1:30:c7:82:
5f:be:70:36:94:d1:7b:ee:fe:d1:52:66:eb:74:55:bf:e9:19:
76:60:6d:d6:b4:62:0b:b2:db:d4:5c:a8:71:b1:65:00:eb:52:
c0:51:64:56:21:8d:88:39:94:61:95:4a:f7:b5:f4:8b:5e:77:
2f:95:b0:f6:a9:5a:46:87:6f:4c:b4:63:4e:00:1c:d7:0f:21:
39:78:51:f8:a9:ef:16:a9:87:ed:0e:df:79:4d:77:f2:a0:99:
f8:1a:5e:99:96:9f:20:3f:5f:5e:73:0b:2f:2a:b4:e9:b7:4e:
b8:4b:fb:1b:5e:eb:c4:e9:ba:d2:5d:ae:e9:d4:3c:69:71:e1:
20:f1:a7:c1:ee:cd:d6:e3:b4:79:0d:a7:57:65:28:7d:5c:70:
10:06:71:28:c2:4c:12:49:66:19:ac:9a:d5:8f:12:32:71:80:
80:4e:c7:01:f6:f1:54:51:24:81:02:4e:85:e2:7a:00:b0:b4:
02:f8:8b:d4:20:66:91:5c:bf:b5:21:58:f1:b9:b7:c0:ac:dd:
d7:17:02:ff:f0:45:44:46:d7:70:ff:f5:09:e9:39:65:44:25:
f3:5e:aa:83
-----BEGIN CERTIFICATE-----
MIIF+DCCBOCgAwIBAgIUEkn/Kw0C7tT5Xiete45aHH8Ghh4wDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyMjc4YWFiODc4ZjI2NjJjZTE0ZTkwNWUxOGViY2I3NTIy
ZjkyYjM2ODRiYzQ4NjViNGQwHhcNMjQwMTA0MDAwMDAwWhcNMjQwMjA4MjM1OTU5
WjB6MUkwRwYDVQQFE0A2YWU5YzMxYzllZWVmZTM3ZmZiZDkyY2ZiODE5ZmEwMzll
N2ZjNzQ4ZmQ0MGE0YjI5YjY0OGMwNmIyMmU0MmZiMS0wKwYDVQQDEyRjMGNlMjNl
YS00M2ZjLTRiZTQtYmVlZS1jMDE0NzgxMjJhMGUwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQCYG1xLMZmsIinTAiAHwUTVw2PUgt6uesG7THivVLdnjPJ8
KESm8Rwax5+EvmcegavfrcVLAkm8NkI8gQf44VwOjlURTsLQdO4UTqINTxNUMZyk
AzfbAPjcMpNjymvLKLWf3Hb7ZSGOnInueW4LU9Zsw7Kk9tNJtLVD5/ay3y1OEzii
5FNHCntQG9c+3mVMNe0Kb73o8hAX10OB/L8o6Da4rBhoLsXMC0btsRfOvQguEzqW
nOgmlkwKuaLY/g/kbLc1ZCZNOdbDGhI/kvGC8gNf7D0JBrKQAq6zSm3xiEYC6n1Z
sa49mgMCG6WZHjRyfv0VYMZiqmS2J6j1JVFTSkFHAgMBAAGjggKxMIICrTAdBgNV
HQ4EFgQUc438rMHZp2JQAN8Mw06DPpgZHKgwHwYDVR0jBBgwFoAUVajdRdlEE/nR
kvUsY86M+8YUlrgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy8xNDMzZWJmZi1k
ZmQ2LTRjNWMtYjdmZi05OWM4NTEzOWQ0YTgvMjc4YWFiODc4ZjI2NjJjZTE0ZTkw
NWUxOGViY2I3NTIyZjkyYjM2ODRiYzQ4NjViNGQuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvMTZmMWZmZWUtNzQ2MS00Njc0LWJiMDUtZmRk
ZWZhOWEwMmM2L2EyOWFiODYxLWYwMTgtNGM3Ni05OGRkLTAwOTlhNmEyMmNlNC5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzE2ZjFmZmVlLTc0NjEtNDY3NC1iYjA1
LWZkZGVmYTlhMDJjNi9KbUxPRk9rRjRZNjh0MUl2a3JOb1M4U0dXMDAuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBADHJHgwDQYJKoZIhvcNAQELBQADggEBAI7Me93HZriWDStxi9E6ExP7zThT
7KTjQEF14LgZYtGa8TDHgl++cDaU0Xvu/tFSZut0Vb/pGXZgbda0Yguy29RcqHGx
ZQDrUsBRZFYhjYg5lGGVSve19Itedy+VsPapWkaHb0y0Y04AHNcPITl4Ufip7xap
h+0O33lNd/KgmfgaXpmWnyA/X15zCy8qtOm3TrhL+xte68TputJdrunUPGlx4SDx
p8HuzdbjtHkNp1dlKH1ccBAGcSjCTBJJZhmsmtWPEjJxgIBOxwH28VRRJIECToXi
egCwtAL4i9QgZpFcv7UhWPG5t8Cs3dcXAv/wRURG13D/9QnpOWVEJfNeqoM=
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:41:38 2024 by rpki-client on console-fra.rpki-client.org