Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/a8878797-2973-4a7b-b664-c56f725309cf.roa
File: a8878797-2973-4a7b-b664-c56f725309cf.roa (raw, json)
Hash identifier: lyD4XRNpsT+rkNnpE6hpogiwahc4nvFEc388NxVqe7E=
Subject key identifier: 7F:AB:9C:BD:07:A2:DF:93:C2:B5:27:CD:11:93:75:9F:E5:10:94:B1
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 0321CAFE86900F9167B5195660CABEFE023ABC86
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/a8878797-2973-4a7b-b664-c56f725309cf.roa
Signing time: Tue 27 Feb 2024 00:00:00 +0000
ROA not before: Tue 27 Feb 2024 00:00:00 +0000
ROA not after: Tue 02 Apr 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
03:21:ca:fe:86:90:0f:91:67:b5:19:56:60:ca:be:fe:02:3a:bc:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Feb 27 00:00:00 2024 GMT
Not After : Apr 2 23:59:59 2024 GMT
Subject: serialNumber=3a31a4543c2ccf29b63b57630d143b19244e84f80c41562acd161d884f1d6afe, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:70:cd:b7:07:9b:a8:e3:f6:05:33:19:5b:f5:
f3:18:45:37:0e:7d:65:81:a6:77:c0:26:57:83:e2:
27:fd:e2:4d:30:b8:ab:cf:9e:b0:41:ff:6d:c6:12:
a7:e1:4e:dc:00:07:dd:76:1e:6a:1b:8b:05:2a:f8:
6d:6c:8b:06:d2:a4:0c:1b:41:e4:b7:89:46:ad:80:
14:3c:18:3b:b5:ec:bf:d2:3b:49:9c:fd:3f:51:1f:
ed:8a:28:4e:5a:1d:e4:13:67:36:2a:bd:30:5b:22:
ff:0f:af:7a:1b:b9:e0:fb:34:c3:7b:70:3f:9f:80:
97:74:a5:50:26:87:08:ba:7e:ae:16:73:f5:a8:6e:
c1:16:25:e6:76:e2:32:12:9d:8d:98:d6:bd:26:34:
bb:a9:f8:8d:91:f5:8a:28:30:14:a5:5c:04:0a:dd:
f2:47:cb:8f:73:fc:e7:84:d0:bf:39:1b:b4:db:62:
10:16:f7:ef:b0:47:18:58:1e:b5:59:70:0f:28:81:
9c:4b:10:ed:ad:b3:87:65:73:d5:9f:1d:ec:de:78:
5f:33:9d:66:cf:d1:0c:3f:26:6c:5b:aa:73:74:45:
c2:43:d0:e2:8a:c5:b3:8c:f4:28:bd:fd:c3:61:d0:
78:15:dc:36:97:a4:c3:e6:ab:bc:b8:58:00:b5:b1:
6a:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:AB:9C:BD:07:A2:DF:93:C2:B5:27:CD:11:93:75:9F:E5:10:94:B1
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/a8878797-2973-4a7b-b664-c56f725309cf.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
91:1f:c7:ac:c0:7b:ed:5d:41:35:93:36:11:5a:c0:c6:f6:31:
c4:f6:30:28:ea:2c:c9:02:66:0c:15:2d:b8:2a:d3:dd:b9:a4:
7d:80:75:5e:cb:84:11:1d:42:26:b0:fa:2d:9d:c8:3a:cd:82:
56:0a:1b:5d:de:f0:f8:a5:81:d2:68:d5:82:71:19:04:83:a5:
a9:fa:61:da:fb:08:c4:29:32:d3:e6:51:b5:92:9e:b9:ef:3b:
70:06:10:b5:a3:b6:e7:de:25:76:30:39:b3:d6:eb:96:e1:1f:
09:2d:30:80:20:d5:38:11:ca:da:26:51:1c:7d:22:1e:1b:df:
d4:c9:ce:5e:0b:c7:a9:95:50:a4:ec:73:f8:48:d5:84:66:a3:
27:e3:82:2a:f9:94:f0:08:c9:44:a4:d1:d2:dd:d0:45:12:80:
e8:72:3b:1e:24:02:8a:07:13:c9:b5:cd:bd:97:a0:8e:19:cc:
13:4e:b3:11:e5:d8:cc:ea:e2:e0:b1:a2:f2:4f:07:e4:33:39:
5a:48:0d:0b:14:ee:7e:5d:21:a3:c6:bc:32:84:ac:03:82:70:
e9:ff:96:a1:47:a1:1b:c4:51:25:1d:20:cc:01:66:55:a8:ba:
07:8c:8b:69:c8:1a:38:40:67:be:56:f5:66:15:cd:ad:54:59:
6b:4e:3e:13
-----BEGIN CERTIFICATE-----
MIIF+DCCBOCgAwIBAgIUAyHK/oaQD5FntRlWYMq+/gI6vIYwDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyMjc4YWFiODc4ZjI2NjJjZTE0ZTkwNWUxOGViY2I3NTIy
ZjkyYjM2ODRiYzQ4NjViNGQwHhcNMjQwMjI3MDAwMDAwWhcNMjQwNDAyMjM1OTU5
WjB6MUkwRwYDVQQFE0AzYTMxYTQ1NDNjMmNjZjI5YjYzYjU3NjMwZDE0M2IxOTI0
NGU4NGY4MGM0MTU2MmFjZDE2MWQ4ODRmMWQ2YWZlMS0wKwYDVQQDEyRjMGNlMjNl
YS00M2ZjLTRiZTQtYmVlZS1jMDE0NzgxMjJhMGUwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQDLcM23B5uo4/YFMxlb9fMYRTcOfWWBpnfAJleD4if94k0w
uKvPnrBB/23GEqfhTtwAB912HmobiwUq+G1siwbSpAwbQeS3iUatgBQ8GDu17L/S
O0mc/T9RH+2KKE5aHeQTZzYqvTBbIv8Pr3obueD7NMN7cD+fgJd0pVAmhwi6fq4W
c/WobsEWJeZ24jISnY2Y1r0mNLup+I2R9YooMBSlXAQK3fJHy49z/OeE0L85G7Tb
YhAW9++wRxhYHrVZcA8ogZxLEO2ts4dlc9WfHezeeF8znWbP0Qw/JmxbqnN0RcJD
0OKKxbOM9Ci9/cNh0HgV3DaXpMPmq7y4WAC1sWrdAgMBAAGjggKxMIICrTAdBgNV
HQ4EFgQUf6ucvQei35PCtSfNEZN1n+UQlLEwHwYDVR0jBBgwFoAUVajdRdlEE/nR
kvUsY86M+8YUlrgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy8xNDMzZWJmZi1k
ZmQ2LTRjNWMtYjdmZi05OWM4NTEzOWQ0YTgvMjc4YWFiODc4ZjI2NjJjZTE0ZTkw
NWUxOGViY2I3NTIyZjkyYjM2ODRiYzQ4NjViNGQuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvMTZmMWZmZWUtNzQ2MS00Njc0LWJiMDUtZmRk
ZWZhOWEwMmM2L2E4ODc4Nzk3LTI5NzMtNGE3Yi1iNjY0LWM1NmY3MjUzMDljZi5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzE2ZjFmZmVlLTc0NjEtNDY3NC1iYjA1
LWZkZGVmYTlhMDJjNi9KbUxPRk9rRjRZNjh0MUl2a3JOb1M4U0dXMDAuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBADHJHgwDQYJKoZIhvcNAQELBQADggEBAJEfx6zAe+1dQTWTNhFawMb2McT2
MCjqLMkCZgwVLbgq0925pH2AdV7LhBEdQiaw+i2dyDrNglYKG13e8PilgdJo1YJx
GQSDpan6Ydr7CMQpMtPmUbWSnrnvO3AGELWjtufeJXYwObPW65bhHwktMIAg1TgR
ytomURx9Ih4b39TJzl4Lx6mVUKTsc/hI1YRmoyfjgir5lPAIyUSk0dLd0EUSgOhy
Ox4kAooHE8m1zb2XoI4ZzBNOsxHl2Mzq4uCxovJPB+QzOVpIDQsU7n5dIaPGvDKE
rAOCcOn/lqFHoRvEUSUdIMwBZlWougeMi2nIGjhAZ75W9WYVza1UWWtOPhM=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:05 2024 by rpki-client on console-ams.rpki-client.org