Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/a4f965c9-7f56-4624-9143-755daee6f4f7.roa
File: a4f965c9-7f56-4624-9143-755daee6f4f7.roa (raw, json)
Hash identifier: +hmEnsVHvGeNlgrcRKl5hTwHR9G5yfsOEnLhIrfD4NA=
Subject key identifier: 5A:E6:29:6D:5D:83:82:DE:2A:7E:F0:5F:FD:F4:49:DF:BA:A4:FB:87
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 4DF24629CEF23C9B7C1E32A083982E2C90E2C039
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/a4f965c9-7f56-4624-9143-755daee6f4f7.roa
Signing time: Fri 11 Aug 2023 00:00:00 +0000
ROA not before: Fri 11 Aug 2023 00:00:00 +0000
ROA not after: Fri 15 Sep 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4d:f2:46:29:ce:f2:3c:9b:7c:1e:32:a0:83:98:2e:2c:90:e2:c0:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Aug 11 00:00:00 2023 GMT
Not After : Sep 15 23:59:59 2023 GMT
Subject: serialNumber=faa493ddab3f994459d8c82092a9b78b1c10d698df5dd5c2e2e3c0df8d97ad92, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:3e:e5:e1:eb:d3:0e:fc:5c:7b:2a:5f:76:0a:
df:d1:4d:30:ef:6a:f5:21:5e:c3:bc:e0:45:69:07:
73:96:6f:28:9f:d9:c3:84:13:e3:8e:3a:bd:e7:98:
0f:e5:27:0d:21:7b:78:b2:cc:65:e0:50:36:53:56:
f6:23:de:a1:e1:d7:10:95:c4:18:9a:6b:1f:e7:d6:
c2:37:a0:04:96:22:65:8e:69:e2:ab:46:d6:cf:2c:
f9:e3:05:60:3c:91:c6:7b:1e:ed:47:ba:2a:3f:66:
ab:b0:cd:e2:26:d7:fe:09:26:45:87:9c:53:fb:97:
53:b3:72:7c:e9:2a:52:a6:a5:f5:c0:e1:33:95:63:
c1:35:ed:c5:5f:c0:96:e3:77:59:01:f6:49:ce:73:
7b:7f:c7:fc:69:64:bc:90:86:a2:80:d5:54:02:11:
13:7c:e6:ce:ae:c0:e6:42:0d:b9:92:cd:88:7a:d1:
fb:21:db:da:f7:47:42:91:89:ff:87:12:a3:30:22:
16:12:2a:9c:3c:06:a9:77:fe:20:d4:25:6b:ce:12:
78:9a:03:84:0e:22:84:ff:2f:5c:a1:29:5f:19:4a:
17:69:41:9f:85:19:cd:7a:08:ab:d0:33:a9:b0:ae:
3a:6c:c7:43:3e:92:4e:2a:84:41:27:09:03:3c:26:
38:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:E6:29:6D:5D:83:82:DE:2A:7E:F0:5F:FD:F4:49:DF:BA:A4:FB:87
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/a4f965c9-7f56-4624-9143-755daee6f4f7.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
5a:00:c2:bb:42:34:b3:6a:3b:72:38:10:96:c9:83:bf:6b:3b:
7c:87:03:8c:6e:fc:5a:d3:f5:80:d0:e1:44:4d:1f:2c:b5:40:
7b:ee:be:28:3e:b1:02:49:dc:83:c9:2d:86:8b:b8:f9:fc:24:
fe:36:c4:a6:50:fa:27:4c:1e:d0:f2:c2:4e:d9:fc:4e:71:ff:
10:28:17:31:6f:86:1c:b2:c7:af:ed:c5:2c:a6:1f:f8:b7:31:
78:f9:ba:af:94:af:99:f4:85:d7:57:2f:81:a7:c9:a0:cf:42:
48:31:c7:58:b4:a6:f4:aa:ee:63:e0:72:3f:29:a4:b6:58:05:
9d:ca:ce:94:0c:1e:05:bb:8e:29:e4:90:7f:03:c7:8e:d0:53:
aa:c3:a0:1b:eb:a9:cc:78:9e:ef:c8:10:4c:20:93:e6:37:a7:
c1:45:d3:e2:ca:13:a9:5f:bd:ef:40:46:59:fc:2e:95:71:5a:
d3:48:e2:91:f7:31:7b:52:87:d0:f6:86:27:b5:5c:fb:2e:a0:
cc:91:d2:34:08:c9:85:b2:6c:35:6b:5d:df:b4:dd:9c:39:5a:
d9:b5:d2:e7:65:6e:56:e1:3a:05:ef:f6:dd:fc:64:15:fa:12:
7a:de:a2:81:82:f6:f9:6d:87:bc:75:23:25:24:6c:96:b7:85:
1e:ac:d5:7c
-----BEGIN CERTIFICATE-----
MIIF+DCCBOCgAwIBAgIUTfJGKc7yPJt8HjKgg5guLJDiwDkwDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyMjc4YWFiODc4ZjI2NjJjZTE0ZTkwNWUxOGViY2I3NTIy
ZjkyYjM2ODRiYzQ4NjViNGQwHhcNMjMwODExMDAwMDAwWhcNMjMwOTE1MjM1OTU5
WjB6MUkwRwYDVQQFE0BmYWE0OTNkZGFiM2Y5OTQ0NTlkOGM4MjA5MmE5Yjc4YjFj
MTBkNjk4ZGY1ZGQ1YzJlMmUzYzBkZjhkOTdhZDkyMS0wKwYDVQQDEyRjMGNlMjNl
YS00M2ZjLTRiZTQtYmVlZS1jMDE0NzgxMjJhMGUwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQCiPuXh69MO/Fx7Kl92Ct/RTTDvavUhXsO84EVpB3OWbyif
2cOEE+OOOr3nmA/lJw0he3iyzGXgUDZTVvYj3qHh1xCVxBiaax/n1sI3oASWImWO
aeKrRtbPLPnjBWA8kcZ7Hu1Huio/ZquwzeIm1/4JJkWHnFP7l1OzcnzpKlKmpfXA
4TOVY8E17cVfwJbjd1kB9knOc3t/x/xpZLyQhqKA1VQCERN85s6uwOZCDbmSzYh6
0fsh29r3R0KRif+HEqMwIhYSKpw8Bql3/iDUJWvOEniaA4QOIoT/L1yhKV8ZShdp
QZ+FGc16CKvQM6mwrjpsx0M+kk4qhEEnCQM8JjgpAgMBAAGjggKxMIICrTAdBgNV
HQ4EFgQUWuYpbV2Dgt4qfvBf/fRJ37qk+4cwHwYDVR0jBBgwFoAUVajdRdlEE/nR
kvUsY86M+8YUlrgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy8xNDMzZWJmZi1k
ZmQ2LTRjNWMtYjdmZi05OWM4NTEzOWQ0YTgvMjc4YWFiODc4ZjI2NjJjZTE0ZTkw
NWUxOGViY2I3NTIyZjkyYjM2ODRiYzQ4NjViNGQuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvMTZmMWZmZWUtNzQ2MS00Njc0LWJiMDUtZmRk
ZWZhOWEwMmM2L2E0Zjk2NWM5LTdmNTYtNDYyNC05MTQzLTc1NWRhZWU2ZjRmNy5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzE2ZjFmZmVlLTc0NjEtNDY3NC1iYjA1
LWZkZGVmYTlhMDJjNi9KbUxPRk9rRjRZNjh0MUl2a3JOb1M4U0dXMDAuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBADHJHgwDQYJKoZIhvcNAQELBQADggEBAFoAwrtCNLNqO3I4EJbJg79rO3yH
A4xu/FrT9YDQ4URNHyy1QHvuvig+sQJJ3IPJLYaLuPn8JP42xKZQ+idMHtDywk7Z
/E5x/xAoFzFvhhyyx6/txSymH/i3MXj5uq+Ur5n0hddXL4GnyaDPQkgxx1i0pvSq
7mPgcj8ppLZYBZ3KzpQMHgW7jinkkH8Dx47QU6rDoBvrqcx4nu/IEEwgk+Y3p8FF
0+LKE6lfve9ARln8LpVxWtNI4pH3MXtSh9D2hie1XPsuoMyR0jQIyYWybDVrXd+0
3Zw5Wtm10udlblbhOgXv9t38ZBX6EnreooGC9vlth7x1IyUkbJa3hR6s1Xw=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:04 2024 by rpki-client on console-ams.rpki-client.org