Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/ca55a86c-f4af-4185-821f-0f4ef7c8938b.roa
File: ca55a86c-f4af-4185-821f-0f4ef7c8938b.roa (raw, json)
Hash identifier: LTn7L3nMNGh+96HGJKHSXklpHkB7cfCzxv0lqHm0XtM=
Subject key identifier: 0A:BD:32:1B:D2:62:40:E7:CF:F4:A2:05:94:8A:2B:96:D2:00:AD:54
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 44B29D93673D75756A122A5B0B170AC3F645432F
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/ca55a86c-f4af-4185-821f-0f4ef7c8938b.roa
Signing time: Mon 07 Aug 2023 00:00:00 +0000
ROA not before: Mon 07 Aug 2023 00:00:00 +0000
ROA not after: Mon 11 Sep 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
44:b2:9d:93:67:3d:75:75:6a:12:2a:5b:0b:17:0a:c3:f6:45:43:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Aug 7 00:00:00 2023 GMT
Not After : Sep 11 23:59:59 2023 GMT
Subject: serialNumber=f2b0cb6710be612c73b0b0ae07fe207f3a3b1113cacd78a8ea2d383938be5292, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fb:54:6f:20:ad:c9:68:1e:5e:09:b0:b7:f0:d2:
6f:98:5b:c0:44:3f:45:f8:96:71:44:05:0c:fe:e9:
55:c6:93:f1:e4:cd:5a:2f:fe:cf:f3:e5:a0:be:64:
7c:af:b2:7c:d6:5c:e0:67:5e:6b:7a:9b:a0:f9:24:
af:98:b3:c2:da:39:9c:1c:4e:a8:b5:a7:78:60:e9:
9e:a9:00:74:44:c8:3d:cb:b8:eb:cb:03:8c:b8:91:
63:8c:42:b8:96:38:fe:2e:f1:d9:53:5c:6a:af:03:
90:ba:bf:be:08:5b:60:98:fe:cb:13:fd:70:82:11:
63:5e:ba:86:81:68:c1:29:2e:f9:92:a1:db:0c:6b:
df:ab:25:65:44:45:db:f1:9e:62:c2:fd:65:49:04:
2e:38:3b:70:c1:d1:e4:bc:a2:e2:32:9a:43:a1:7f:
64:81:94:f6:1c:ec:0a:75:1c:b8:c3:a8:2f:da:37:
95:01:03:9c:b7:d7:99:82:6f:32:a7:20:43:14:61:
6c:78:87:f9:c7:ce:96:74:e5:c3:79:51:0d:3d:0f:
61:44:b5:00:4e:2f:72:a8:48:3e:99:b2:dd:4c:b5:
52:cd:a0:54:de:d9:db:2f:28:31:60:fe:ee:ab:c1:
fc:15:f3:58:28:9a:5c:a1:f2:df:65:82:9d:38:90:
e4:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:BD:32:1B:D2:62:40:E7:CF:F4:A2:05:94:8A:2B:96:D2:00:AD:54
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/ca55a86c-f4af-4185-821f-0f4ef7c8938b.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
71:b5:b2:c3:87:6f:f2:a2:88:ec:40:e8:c2:2b:77:f8:06:bb:
e5:ab:28:6f:77:5a:7e:56:ce:50:25:58:2a:63:1b:df:b1:d8:
cf:99:51:ab:8a:07:09:31:8c:d3:f3:38:72:bf:9b:3a:23:3d:
b6:f1:77:a4:34:12:d9:5b:43:16:d1:2d:41:41:1e:aa:60:59:
f6:ce:59:42:78:73:5f:31:14:21:55:ae:74:0f:23:91:d6:63:
36:70:9d:0b:7a:50:94:b6:1c:ed:de:ac:a9:5c:f5:10:18:47:
68:27:52:56:18:f8:ea:69:43:f5:47:48:c8:6c:6c:88:31:40:
ce:5f:7c:9b:52:6b:13:7f:a6:30:42:a3:6b:36:d1:19:fc:42:
7d:a3:9b:5a:35:b9:47:f5:0c:26:e7:dd:3f:c4:4e:75:ff:c9:
d1:42:57:fb:67:07:49:b5:34:49:e4:30:b3:78:81:ae:bd:6d:
12:9f:a5:92:85:97:86:f7:c3:a0:b6:ec:01:b8:37:a6:fa:8c:
35:2a:3d:38:c7:82:4b:20:fb:15:14:92:72:be:b7:e4:63:16:
5f:ef:c9:49:87:84:4e:71:c0:be:2f:ae:87:78:c6:d5:4d:0b:
6e:b9:a7:7d:9d:d7:bc:84:86:85:61:84:ea:f7:8f:f1:3b:e2:
fa:fe:d7:0d
-----BEGIN CERTIFICATE-----
MIIF+DCCBOCgAwIBAgIURLKdk2c9dXVqEipbCxcKw/ZFQy8wDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyMjc4YWFiODc4ZjI2NjJjZTE0ZTkwNWUxOGViY2I3NTIy
ZjkyYjM2ODRiYzQ4NjViNGQwHhcNMjMwODA3MDAwMDAwWhcNMjMwOTExMjM1OTU5
WjB6MUkwRwYDVQQFE0BmMmIwY2I2NzEwYmU2MTJjNzNiMGIwYWUwN2ZlMjA3ZjNh
M2IxMTEzY2FjZDc4YThlYTJkMzgzOTM4YmU1MjkyMS0wKwYDVQQDEyRjMGNlMjNl
YS00M2ZjLTRiZTQtYmVlZS1jMDE0NzgxMjJhMGUwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQD7VG8grcloHl4JsLfw0m+YW8BEP0X4lnFEBQz+6VXGk/Hk
zVov/s/z5aC+ZHyvsnzWXOBnXmt6m6D5JK+Ys8LaOZwcTqi1p3hg6Z6pAHREyD3L
uOvLA4y4kWOMQriWOP4u8dlTXGqvA5C6v74IW2CY/ssT/XCCEWNeuoaBaMEpLvmS
odsMa9+rJWVERdvxnmLC/WVJBC44O3DB0eS8ouIymkOhf2SBlPYc7Ap1HLjDqC/a
N5UBA5y315mCbzKnIEMUYWx4h/nHzpZ05cN5UQ09D2FEtQBOL3KoSD6Zst1MtVLN
oFTe2dsvKDFg/u6rwfwV81gomlyh8t9lgp04kORrAgMBAAGjggKxMIICrTAdBgNV
HQ4EFgQUCr0yG9JiQOfP9KIFlIorltIArVQwHwYDVR0jBBgwFoAUVajdRdlEE/nR
kvUsY86M+8YUlrgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy8xNDMzZWJmZi1k
ZmQ2LTRjNWMtYjdmZi05OWM4NTEzOWQ0YTgvMjc4YWFiODc4ZjI2NjJjZTE0ZTkw
NWUxOGViY2I3NTIyZjkyYjM2ODRiYzQ4NjViNGQuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvMTZmMWZmZWUtNzQ2MS00Njc0LWJiMDUtZmRk
ZWZhOWEwMmM2L2NhNTVhODZjLWY0YWYtNDE4NS04MjFmLTBmNGVmN2M4OTM4Yi5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzE2ZjFmZmVlLTc0NjEtNDY3NC1iYjA1
LWZkZGVmYTlhMDJjNi9KbUxPRk9rRjRZNjh0MUl2a3JOb1M4U0dXMDAuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBADHJHgwDQYJKoZIhvcNAQELBQADggEBAHG1ssOHb/KiiOxA6MIrd/gGu+Wr
KG93Wn5WzlAlWCpjG9+x2M+ZUauKBwkxjNPzOHK/mzojPbbxd6Q0EtlbQxbRLUFB
HqpgWfbOWUJ4c18xFCFVrnQPI5HWYzZwnQt6UJS2HO3erKlc9RAYR2gnUlYY+Opp
Q/VHSMhsbIgxQM5ffJtSaxN/pjBCo2s20Rn8Qn2jm1o1uUf1DCbn3T/ETnX/ydFC
V/tnB0m1NEnkMLN4ga69bRKfpZKFl4b3w6C27AG4N6b6jDUqPTjHgksg+xUUknK+
t+RjFl/vyUmHhE5xwL4vrod4xtVNC265p32d17yEhoVhhOr3j/E74vr+1w0=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:20 2024 by rpki-client on console-ams.rpki-client.org