Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/cdb20b45-9022-4424-8d22-563a7f29a9af.roa
File: cdb20b45-9022-4424-8d22-563a7f29a9af.roa (raw, json)
Hash identifier: DUlq7SNPiJ5+unF1qWJTIvP88Gxc/71MTp8P9slLrHA=
Subject key identifier: 00:F9:63:3D:60:EB:0B:0D:47:A9:5A:30:65:7F:10:96:B7:AC:74:AE
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 501FE44735AB737BB7BBCE9C7AEF15458C81E942
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/cdb20b45-9022-4424-8d22-563a7f29a9af.roa
Signing time: Mon 28 Aug 2023 00:00:00 +0000
ROA not before: Mon 28 Aug 2023 00:00:00 +0000
ROA not after: Mon 02 Oct 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
50:1f:e4:47:35:ab:73:7b:b7:bb:ce:9c:7a:ef:15:45:8c:81:e9:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Aug 28 00:00:00 2023 GMT
Not After : Oct 2 23:59:59 2023 GMT
Subject: serialNumber=885d15da677d7539cc324780a9b3b81f27b3333116f3cbf9faf1653fbd5ba2f2, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:c5:65:6e:68:2a:25:f2:35:51:64:97:75:2d:
1a:ca:11:2a:be:ed:bb:0e:c2:91:80:98:c9:2a:6a:
9d:59:69:8d:e3:dd:60:17:7a:31:f8:75:59:f3:5c:
fe:59:22:d9:4a:49:c2:7c:b1:ed:eb:b7:4e:52:7a:
2b:05:27:96:b4:54:66:11:e4:34:38:c1:81:4a:ab:
67:33:f6:68:ad:26:be:33:e8:d4:3a:d9:bd:56:91:
4c:3e:0b:ff:32:5e:ec:76:f5:13:f0:2a:8d:af:7e:
93:4f:70:a7:57:d7:ee:7c:22:47:15:e9:81:ab:e2:
5f:86:9d:ae:94:4a:d9:17:d3:91:b0:0f:d2:6a:ee:
83:cf:ae:4a:bb:9e:f0:02:8d:ae:6d:70:9a:17:4c:
a8:84:52:a5:f5:d6:c5:6c:0b:42:ca:09:6a:d8:00:
e4:61:79:6d:09:1a:3e:4f:d7:f8:af:07:a5:5e:07:
1a:6e:b1:89:e4:30:25:29:bb:0e:5e:6d:f6:a9:6c:
95:9c:76:3d:4b:c8:ce:72:b5:6e:11:8d:8e:a4:d9:
77:91:3d:77:f5:be:e7:2b:d7:3f:09:0a:9d:bb:a7:
11:79:79:c5:db:74:56:c1:6e:b8:10:fc:bc:1f:62:
1e:d6:a6:6c:31:c2:c7:29:f7:e5:0a:f4:51:18:d5:
d9:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:F9:63:3D:60:EB:0B:0D:47:A9:5A:30:65:7F:10:96:B7:AC:74:AE
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/cdb20b45-9022-4424-8d22-563a7f29a9af.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
20:06:30:d3:12:22:c8:0d:69:d4:8b:77:40:ac:47:5a:6e:d9:
8a:14:0b:3a:74:30:81:88:fb:1c:4a:bf:49:a6:d8:05:8c:45:
72:f1:92:88:14:3b:16:ac:b4:f2:7e:aa:59:9e:ad:45:c2:b4:
cd:cf:64:47:90:3d:47:d4:ce:bd:43:9d:d1:67:6a:ef:65:25:
32:36:e7:75:80:45:fb:54:b1:db:d9:ca:3d:b1:63:a4:a6:c8:
01:78:66:8e:a4:07:a7:5d:6a:d5:65:75:2b:a6:a6:d0:30:ca:
e6:d2:92:67:8c:01:fc:ff:96:cf:d9:ad:36:9a:d5:e0:d3:31:
06:c4:77:05:17:29:a9:f6:71:9e:d0:61:80:5d:b1:c4:77:26:
e2:72:c9:a9:29:47:00:4e:eb:0d:4b:93:67:17:6f:25:3a:e8:
3b:8f:2a:46:b2:b2:e0:05:7e:be:02:57:b9:07:d8:e8:ab:82:
f5:6c:a9:77:9f:de:c4:6f:28:bb:59:50:60:75:8a:3a:28:74:
ba:3b:e4:e2:2a:d2:ec:17:52:6c:8c:03:7b:9f:6c:5a:aa:38:
40:a8:35:a6:6a:26:bb:83:df:41:0d:83:5d:32:dd:cf:2d:94:
dd:c8:f5:7d:24:22:d7:7c:59:1e:c1:34:bd:a8:e6:3c:81:c7:
df:77:61:4c
-----BEGIN CERTIFICATE-----
MIIF+DCCBOCgAwIBAgIUUB/kRzWrc3u3u86ceu8VRYyB6UIwDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyMjc4YWFiODc4ZjI2NjJjZTE0ZTkwNWUxOGViY2I3NTIy
ZjkyYjM2ODRiYzQ4NjViNGQwHhcNMjMwODI4MDAwMDAwWhcNMjMxMDAyMjM1OTU5
WjB6MUkwRwYDVQQFE0A4ODVkMTVkYTY3N2Q3NTM5Y2MzMjQ3ODBhOWIzYjgxZjI3
YjMzMzMxMTZmM2NiZjlmYWYxNjUzZmJkNWJhMmYyMS0wKwYDVQQDEyRjMGNlMjNl
YS00M2ZjLTRiZTQtYmVlZS1jMDE0NzgxMjJhMGUwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQDUxWVuaCol8jVRZJd1LRrKESq+7bsOwpGAmMkqap1ZaY3j
3WAXejH4dVnzXP5ZItlKScJ8se3rt05SeisFJ5a0VGYR5DQ4wYFKq2cz9mitJr4z
6NQ62b1WkUw+C/8yXux29RPwKo2vfpNPcKdX1+58IkcV6YGr4l+Gna6UStkX05Gw
D9Jq7oPPrkq7nvACja5tcJoXTKiEUqX11sVsC0LKCWrYAORheW0JGj5P1/ivB6Ve
BxpusYnkMCUpuw5ebfapbJWcdj1LyM5ytW4RjY6k2XeRPXf1vucr1z8JCp27pxF5
ecXbdFbBbrgQ/LwfYh7Wpmwxwscp9+UK9FEY1dmXAgMBAAGjggKxMIICrTAdBgNV
HQ4EFgQUAPljPWDrCw1HqVowZX8QlresdK4wHwYDVR0jBBgwFoAUVajdRdlEE/nR
kvUsY86M+8YUlrgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy8xNDMzZWJmZi1k
ZmQ2LTRjNWMtYjdmZi05OWM4NTEzOWQ0YTgvMjc4YWFiODc4ZjI2NjJjZTE0ZTkw
NWUxOGViY2I3NTIyZjkyYjM2ODRiYzQ4NjViNGQuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvMTZmMWZmZWUtNzQ2MS00Njc0LWJiMDUtZmRk
ZWZhOWEwMmM2L2NkYjIwYjQ1LTkwMjItNDQyNC04ZDIyLTU2M2E3ZjI5YTlhZi5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzE2ZjFmZmVlLTc0NjEtNDY3NC1iYjA1
LWZkZGVmYTlhMDJjNi9KbUxPRk9rRjRZNjh0MUl2a3JOb1M4U0dXMDAuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBADHJHgwDQYJKoZIhvcNAQELBQADggEBACAGMNMSIsgNadSLd0CsR1pu2YoU
Czp0MIGI+xxKv0mm2AWMRXLxkogUOxastPJ+qlmerUXCtM3PZEeQPUfUzr1DndFn
au9lJTI253WARftUsdvZyj2xY6SmyAF4Zo6kB6ddatVldSumptAwyubSkmeMAfz/
ls/ZrTaa1eDTMQbEdwUXKan2cZ7QYYBdscR3JuJyyakpRwBO6w1Lk2cXbyU66DuP
KkaysuAFfr4CV7kH2OirgvVsqXef3sRvKLtZUGB1ijoodLo75OIq0uwXUmyMA3uf
bFqqOECoNaZqJruD30ENg10y3c8tlN3I9X0kItd8WR7BNL2o5jyBx993YUw=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:20 2024 by rpki-client on console-ams.rpki-client.org