Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/bae6a4a9-29b3-4b8e-a7b6-ca1b61fe4871.roa
File: bae6a4a9-29b3-4b8e-a7b6-ca1b61fe4871.roa (raw, json)
Hash identifier: g1vxQWX6VUPsx/lCJpMRH8u/E0Hd0qg92crKF8YkTxs=
Subject key identifier: C6:21:FD:68:8A:66:31:98:3F:80:83:B6:84:9E:03:59:BA:81:5D:8A
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 4C3480640D7AA915966DDE8858127655AF095705
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/bae6a4a9-29b3-4b8e-a7b6-ca1b61fe4871.roa
Signing time: Mon 07 Aug 2023 00:00:00 +0000
ROA not before: Mon 07 Aug 2023 00:00:00 +0000
ROA not after: Mon 11 Sep 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4c:34:80:64:0d:7a:a9:15:96:6d:de:88:58:12:76:55:af:09:57:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Aug 7 00:00:00 2023 GMT
Not After : Sep 11 23:59:59 2023 GMT
Subject: serialNumber=f7794b85ebdcf2d32fac6eace8a275ec5496169fcb97582bd67b36de29910649, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:6b:02:77:b7:11:52:23:32:b0:00:99:c7:91:
41:3d:af:a3:d3:ba:17:1b:70:de:11:b8:1b:7e:df:
8b:71:6b:71:ff:54:bf:c2:38:6e:04:e5:bd:e6:ac:
c3:fe:c4:ef:b5:f9:8b:85:df:97:fe:6d:77:22:c0:
9a:01:f2:db:c3:d7:0d:97:3d:04:94:96:2e:4a:69:
9b:88:45:60:ba:43:36:45:e0:68:90:f4:df:8d:ac:
57:7d:e9:8e:6a:90:76:ea:fd:f9:35:c6:70:cb:cf:
fa:eb:93:be:be:57:3a:94:c0:1f:a8:ed:08:0f:47:
ab:df:d4:c5:0f:96:be:7e:de:29:02:78:3b:fc:4b:
52:df:fa:da:f5:47:1f:c3:46:9b:f2:d2:80:9f:99:
08:4a:59:47:e8:e4:3d:45:20:e6:49:7e:ee:84:58:
5a:13:4d:c6:fd:52:d5:31:05:9d:32:5f:aa:ac:be:
44:c4:b9:b5:0b:59:8c:01:48:d7:3b:5e:e7:a8:10:
11:b5:95:d0:13:70:77:6c:8f:d5:e8:2c:7f:43:eb:
e7:2f:05:e9:ae:7c:8a:6e:b3:6a:cb:11:d1:6b:cd:
9a:82:ab:86:d3:36:39:0c:91:ac:59:4e:4a:b2:07:
99:84:dc:7c:0e:01:33:ea:21:b1:d8:a9:9f:29:13:
44:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:21:FD:68:8A:66:31:98:3F:80:83:B6:84:9E:03:59:BA:81:5D:8A
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/bae6a4a9-29b3-4b8e-a7b6-ca1b61fe4871.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
9f:d8:0e:55:48:63:ae:e7:a6:5a:40:a1:05:03:5a:d8:07:62:
a8:45:ef:d5:b4:d2:14:be:71:c5:56:b2:cc:b3:e8:2d:35:84:
55:a4:fb:14:04:d1:f4:a8:39:65:82:24:94:39:d0:ba:cc:ad:
44:f9:60:0b:37:5c:c9:74:8f:bc:d0:83:b2:58:5e:e4:4a:83:
c4:57:5c:92:21:62:b6:5b:9e:2a:03:a3:7b:7b:02:ed:c8:91:
c0:21:ed:3e:b6:34:9b:7a:43:83:cf:04:4f:8b:33:17:ab:f6:
a8:ea:24:ca:64:17:71:40:31:78:c1:4b:3d:3d:d5:87:68:49:
33:60:f5:8e:9f:cf:a0:cf:46:78:7b:64:18:af:c3:ac:3d:bb:
09:d5:ee:9f:d8:bc:89:f6:9f:3f:13:dc:92:f0:bc:80:02:3d:
b7:1b:f8:d4:cc:39:8a:a5:37:4d:09:91:86:7d:b1:65:43:e3:
72:c9:05:21:07:18:9a:54:1d:9e:bb:c7:b5:ab:61:75:f2:2a:
8f:a0:94:1b:06:29:97:c3:9b:09:89:0b:a7:ab:d6:6a:3f:86:
52:d8:69:78:42:b4:c4:53:54:d2:58:31:e4:02:ef:cf:c4:46:
f0:52:6d:9e:cf:a4:bb:19:70:62:1e:8e:91:f4:3c:1a:b6:61:
cb:d0:6f:68
-----BEGIN CERTIFICATE-----
MIIF+DCCBOCgAwIBAgIUTDSAZA16qRWWbd6IWBJ2Va8JVwUwDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyMjc4YWFiODc4ZjI2NjJjZTE0ZTkwNWUxOGViY2I3NTIy
ZjkyYjM2ODRiYzQ4NjViNGQwHhcNMjMwODA3MDAwMDAwWhcNMjMwOTExMjM1OTU5
WjB6MUkwRwYDVQQFE0BmNzc5NGI4NWViZGNmMmQzMmZhYzZlYWNlOGEyNzVlYzU0
OTYxNjlmY2I5NzU4MmJkNjdiMzZkZTI5OTEwNjQ5MS0wKwYDVQQDEyRjMGNlMjNl
YS00M2ZjLTRiZTQtYmVlZS1jMDE0NzgxMjJhMGUwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQCkawJ3txFSIzKwAJnHkUE9r6PTuhcbcN4RuBt+34txa3H/
VL/COG4E5b3mrMP+xO+1+YuF35f+bXciwJoB8tvD1w2XPQSUli5KaZuIRWC6QzZF
4GiQ9N+NrFd96Y5qkHbq/fk1xnDLz/rrk76+VzqUwB+o7QgPR6vf1MUPlr5+3ikC
eDv8S1Lf+tr1Rx/DRpvy0oCfmQhKWUfo5D1FIOZJfu6EWFoTTcb9UtUxBZ0yX6qs
vkTEubULWYwBSNc7XueoEBG1ldATcHdsj9XoLH9D6+cvBemufIpus2rLEdFrzZqC
q4bTNjkMkaxZTkqyB5mE3HwOATPqIbHYqZ8pE0TlAgMBAAGjggKxMIICrTAdBgNV
HQ4EFgQUxiH9aIpmMZg/gIO2hJ4DWbqBXYowHwYDVR0jBBgwFoAUVajdRdlEE/nR
kvUsY86M+8YUlrgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy8xNDMzZWJmZi1k
ZmQ2LTRjNWMtYjdmZi05OWM4NTEzOWQ0YTgvMjc4YWFiODc4ZjI2NjJjZTE0ZTkw
NWUxOGViY2I3NTIyZjkyYjM2ODRiYzQ4NjViNGQuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvMTZmMWZmZWUtNzQ2MS00Njc0LWJiMDUtZmRk
ZWZhOWEwMmM2L2JhZTZhNGE5LTI5YjMtNGI4ZS1hN2I2LWNhMWI2MWZlNDg3MS5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzE2ZjFmZmVlLTc0NjEtNDY3NC1iYjA1
LWZkZGVmYTlhMDJjNi9KbUxPRk9rRjRZNjh0MUl2a3JOb1M4U0dXMDAuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBADHJHgwDQYJKoZIhvcNAQELBQADggEBAJ/YDlVIY67nplpAoQUDWtgHYqhF
79W00hS+ccVWssyz6C01hFWk+xQE0fSoOWWCJJQ50LrMrUT5YAs3XMl0j7zQg7JY
XuRKg8RXXJIhYrZbnioDo3t7Au3IkcAh7T62NJt6Q4PPBE+LMxer9qjqJMpkF3FA
MXjBSz091YdoSTNg9Y6fz6DPRnh7ZBivw6w9uwnV7p/YvIn2nz8T3JLwvIACPbcb
+NTMOYqlN00JkYZ9sWVD43LJBSEHGJpUHZ67x7WrYXXyKo+glBsGKZfDmwmJC6er
1mo/hlLYaXhCtMRTVNJYMeQC78/ERvBSbZ7PpLsZcGIejpH0PBq2YcvQb2g=
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:41:42 2024 by rpki-client on console-fra.rpki-client.org