Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/c0687347-bd96-4cb7-8d13-e32576c60a5e.roa
File: c0687347-bd96-4cb7-8d13-e32576c60a5e.roa (raw, json)
Hash identifier: BbLB+zGAYl2bk1gcv59RDwDnaXwwM+mamMbXYVLkOys=
Subject key identifier: 1B:FD:1B:E8:86:24:18:73:D5:BA:B4:62:CB:57:DA:45:92:8A:6C:BE
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 589863A710E6D8ABE2C04B12FC2AAD35B6AC020B
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/c0687347-bd96-4cb7-8d13-e32576c60a5e.roa
Signing time: Sat 28 Oct 2023 00:00:00 +0000
ROA not before: Sat 28 Oct 2023 00:00:00 +0000
ROA not after: Sat 02 Dec 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
58:98:63:a7:10:e6:d8:ab:e2:c0:4b:12:fc:2a:ad:35:b6:ac:02:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Oct 28 00:00:00 2023 GMT
Not After : Dec 2 23:59:59 2023 GMT
Subject: serialNumber=f6d69a5ae192bb96968ca37ff3d807e764485173fc15e235e3c1f1e85dd74210, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:fe:a5:f9:2b:20:7c:fe:08:9a:a9:f2:01:18:
31:f7:77:e1:5f:c8:26:f6:91:d4:39:af:5d:b8:28:
97:35:f0:4e:9e:00:4c:88:63:58:0b:93:b5:5f:4b:
e8:63:ae:61:87:cf:24:44:86:94:3f:fe:11:25:70:
fd:13:fc:bf:33:1f:29:7d:ad:b6:70:2e:86:5a:63:
93:f4:63:33:16:17:d0:70:f6:e8:c7:34:c9:ec:8f:
b7:42:65:d4:17:2e:d0:ff:27:db:b7:d8:bc:b0:58:
d3:62:63:3a:38:0e:d5:31:a9:ff:48:6e:5b:37:5d:
f2:bc:6f:c2:f1:e4:14:aa:2d:88:9f:ae:7d:5c:e8:
21:07:4a:0e:49:e1:72:7a:5c:76:09:6e:c9:f7:d6:
fa:6f:8c:49:da:21:36:a6:98:d6:7d:49:1a:83:66:
27:8b:4a:26:2d:f9:a5:85:ff:94:bf:4c:a6:3d:e0:
4c:82:ad:fb:dc:84:3d:6f:7f:1f:16:ba:73:14:e5:
2f:84:b7:fe:2c:59:29:e4:99:a2:15:06:b6:14:41:
4e:a3:91:d4:de:ff:cf:ee:69:92:0f:6d:74:72:76:
2e:b9:c9:2b:83:13:5a:f9:4d:a4:f2:e0:62:e8:48:
c8:e9:4c:8f:73:16:db:53:48:fb:84:1c:73:cf:7b:
da:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:FD:1B:E8:86:24:18:73:D5:BA:B4:62:CB:57:DA:45:92:8A:6C:BE
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/c0687347-bd96-4cb7-8d13-e32576c60a5e.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
a1:5e:83:81:56:19:57:38:ef:76:1c:04:b3:7d:78:45:12:3b:
0c:f4:52:40:03:8c:21:c8:40:ee:2d:75:40:e8:d5:0e:61:2f:
94:c8:5e:4a:b4:f4:10:20:b9:fb:82:aa:01:b4:18:ec:4b:a8:
a4:da:1b:45:ee:80:f3:be:13:a6:09:08:bc:de:ff:45:88:45:
b9:06:10:b0:e1:16:b4:55:46:d9:97:5d:02:ba:ce:ac:ee:22:
e4:6a:6b:3d:89:13:21:50:ae:c3:c9:7e:be:73:27:d0:43:95:
26:97:36:e2:67:f2:e4:5e:27:38:da:7d:41:47:c0:c0:f5:61:
ad:be:bb:28:41:15:9e:03:06:b2:19:f4:81:43:5f:2e:ba:0f:
30:d7:32:49:96:0d:8a:5c:6b:fd:3d:de:1c:fe:f8:e4:ed:f2:
24:a5:e8:51:29:ac:64:d2:43:bf:12:13:c3:74:4d:af:49:35:
4c:fe:10:9e:f9:6d:ba:73:f5:50:16:bb:34:b6:22:1e:8c:78:
4b:c6:7d:f8:f6:ef:22:40:bc:6d:b5:5b:b1:8a:99:f8:52:e5:
9e:2a:73:7a:80:e1:f7:94:e0:a1:bd:47:ed:ac:ec:af:fb:bf:
65:fa:30:54:37:4e:5b:5c:9d:fe:79:40:f0:f8:62:c9:e3:03:
ba:1f:13:bb
-----BEGIN CERTIFICATE-----
MIIF+DCCBOCgAwIBAgIUWJhjpxDm2KviwEsS/CqtNbasAgswDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyMjc4YWFiODc4ZjI2NjJjZTE0ZTkwNWUxOGViY2I3NTIy
ZjkyYjM2ODRiYzQ4NjViNGQwHhcNMjMxMDI4MDAwMDAwWhcNMjMxMjAyMjM1OTU5
WjB6MUkwRwYDVQQFE0BmNmQ2OWE1YWUxOTJiYjk2OTY4Y2EzN2ZmM2Q4MDdlNzY0
NDg1MTczZmMxNWUyMzVlM2MxZjFlODVkZDc0MjEwMS0wKwYDVQQDEyRjMGNlMjNl
YS00M2ZjLTRiZTQtYmVlZS1jMDE0NzgxMjJhMGUwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQDE/qX5KyB8/giaqfIBGDH3d+FfyCb2kdQ5r124KJc18E6e
AEyIY1gLk7VfS+hjrmGHzyREhpQ//hElcP0T/L8zHyl9rbZwLoZaY5P0YzMWF9Bw
9ujHNMnsj7dCZdQXLtD/J9u32LywWNNiYzo4DtUxqf9Ibls3XfK8b8Lx5BSqLYif
rn1c6CEHSg5J4XJ6XHYJbsn31vpvjEnaITammNZ9SRqDZieLSiYt+aWF/5S/TKY9
4EyCrfvchD1vfx8WunMU5S+Et/4sWSnkmaIVBrYUQU6jkdTe/8/uaZIPbXRydi65
ySuDE1r5TaTy4GLoSMjpTI9zFttTSPuEHHPPe9oRAgMBAAGjggKxMIICrTAdBgNV
HQ4EFgQUG/0b6IYkGHPVurRiy1faRZKKbL4wHwYDVR0jBBgwFoAUVajdRdlEE/nR
kvUsY86M+8YUlrgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy8xNDMzZWJmZi1k
ZmQ2LTRjNWMtYjdmZi05OWM4NTEzOWQ0YTgvMjc4YWFiODc4ZjI2NjJjZTE0ZTkw
NWUxOGViY2I3NTIyZjkyYjM2ODRiYzQ4NjViNGQuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvMTZmMWZmZWUtNzQ2MS00Njc0LWJiMDUtZmRk
ZWZhOWEwMmM2L2MwNjg3MzQ3LWJkOTYtNGNiNy04ZDEzLWUzMjU3NmM2MGE1ZS5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzE2ZjFmZmVlLTc0NjEtNDY3NC1iYjA1
LWZkZGVmYTlhMDJjNi9KbUxPRk9rRjRZNjh0MUl2a3JOb1M4U0dXMDAuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBADHJHgwDQYJKoZIhvcNAQELBQADggEBAKFeg4FWGVc473YcBLN9eEUSOwz0
UkADjCHIQO4tdUDo1Q5hL5TIXkq09BAgufuCqgG0GOxLqKTaG0XugPO+E6YJCLze
/0WIRbkGELDhFrRVRtmXXQK6zqzuIuRqaz2JEyFQrsPJfr5zJ9BDlSaXNuJn8uRe
JzjafUFHwMD1Ya2+uyhBFZ4DBrIZ9IFDXy66DzDXMkmWDYpca/093hz++OTt8iSl
6FEprGTSQ78SE8N0Ta9JNUz+EJ75bbpz9VAWuzS2Ih6MeEvGffj27yJAvG21W7GK
mfhS5Z4qc3qA4feU4KG9R+2s7K/7v2X6MFQ3Tltcnf55QPD4YsnjA7ofE7s=
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:41:43 2024 by rpki-client on console-fra.rpki-client.org