Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/d46d7b2a-ed48-48aa-b8bf-cf5070322f1f.roa
File: d46d7b2a-ed48-48aa-b8bf-cf5070322f1f.roa (raw, json)
Hash identifier: Jqm+bjzX5SEyj7d4UqVO56oDewkTsjfWE/V8FKvReI4=
Subject key identifier: 80:55:A3:BA:79:A5:B7:85:24:C0:22:FD:BE:45:AE:CB:3A:45:98:83
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 76F75B99E411320DD856EDDBE34FB82F226927B0
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/d46d7b2a-ed48-48aa-b8bf-cf5070322f1f.roa
Signing time: Wed 13 Sep 2023 00:00:00 +0000
ROA not before: Wed 13 Sep 2023 00:00:00 +0000
ROA not after: Wed 18 Oct 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
76:f7:5b:99:e4:11:32:0d:d8:56:ed:db:e3:4f:b8:2f:22:69:27:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Sep 13 00:00:00 2023 GMT
Not After : Oct 18 23:59:59 2023 GMT
Subject: serialNumber=c2174f26ffb4e22ae5d9a289d87ceb4446e1336191ee4ebd6ce8452a2d1bb802, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:2e:45:4d:55:93:fe:c0:b6:68:d8:7f:b4:9d:
44:81:0f:a6:57:a7:22:7a:1b:1c:72:4e:d3:b4:6b:
ad:96:a5:61:ea:5b:db:74:a8:dc:a3:1b:26:76:b6:
5f:dc:21:f2:ff:bb:9d:a2:10:2e:91:fa:82:6c:8f:
ab:b1:72:29:1a:cb:4a:f4:d5:eb:ac:27:e4:e3:11:
0c:d2:a3:c9:22:b9:cf:bf:7a:7f:cc:03:d2:24:a5:
09:ee:04:06:6e:27:24:23:32:14:1d:7e:00:f1:99:
ee:be:8f:6b:24:26:41:70:04:00:40:63:50:e2:38:
51:d7:c7:a6:90:84:c5:dc:27:54:62:8e:f5:24:e6:
01:d7:ff:88:60:4e:ca:5a:b5:c5:ed:c4:90:4e:a6:
1c:a5:b6:2b:a0:4c:9a:eb:36:89:3c:5c:78:c2:b4:
42:a4:d3:86:57:ca:22:f5:fc:8b:d5:77:fd:09:5f:
8f:1e:4b:83:17:78:33:ff:04:24:88:94:ea:21:c8:
8b:f1:c0:35:eb:5a:0a:0a:db:c0:e0:6f:5f:61:01:
dd:b5:4e:65:b7:7c:d9:61:89:ae:67:e0:55:36:2a:
0e:72:41:ed:7b:41:a0:43:a6:d5:5e:b3:ab:6a:4f:
16:a9:95:bc:2a:85:95:6a:39:e5:0c:08:df:40:23:
dc:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:55:A3:BA:79:A5:B7:85:24:C0:22:FD:BE:45:AE:CB:3A:45:98:83
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/d46d7b2a-ed48-48aa-b8bf-cf5070322f1f.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
b1:da:e3:ad:18:ab:d1:2f:50:3c:b2:9f:1c:b8:a7:af:2c:69:
e5:ce:4b:f6:ed:55:69:f1:b5:71:bd:58:5f:71:04:df:44:78:
28:f0:11:24:9e:00:f5:29:5d:13:1d:7b:6f:d9:30:3a:b8:a3:
af:c0:33:8e:95:5a:1a:ef:b8:a6:f8:46:ce:d3:6c:45:bc:20:
21:48:7c:0c:c5:f4:e0:91:8e:1f:1b:29:bb:1f:f4:10:ed:48:
89:9c:8c:1a:91:c5:9d:44:25:49:6d:58:9c:23:4c:d0:7a:33:
37:ff:e2:14:9a:a4:ca:5d:93:d1:d0:23:ae:b9:32:65:d7:29:
d7:f1:4d:31:e5:1f:75:76:ad:1e:05:5e:e6:7f:23:92:0a:3b:
74:d0:27:ba:cc:3b:15:ac:49:60:65:e1:0f:7b:c3:df:48:e5:
37:7a:e9:e2:36:de:0a:c4:4f:31:d4:61:a1:d5:f5:04:be:74:
93:75:60:dd:e8:be:0a:a8:53:68:8c:e6:53:3b:45:01:2a:f7:
53:aa:bc:96:43:9e:db:83:30:8e:df:0e:84:49:41:90:01:22:
61:5a:3a:e4:c1:cb:ba:5c:1d:bc:c7:de:2b:a2:01:84:04:c6:
9d:40:a9:5a:8a:38:22:61:b0:c7:9d:88:bf:2e:da:35:95:c0:
6f:8c:0d:3f
-----BEGIN CERTIFICATE-----
MIIF+DCCBOCgAwIBAgIUdvdbmeQRMg3YVu3b40+4LyJpJ7AwDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyMjc4YWFiODc4ZjI2NjJjZTE0ZTkwNWUxOGViY2I3NTIy
ZjkyYjM2ODRiYzQ4NjViNGQwHhcNMjMwOTEzMDAwMDAwWhcNMjMxMDE4MjM1OTU5
WjB6MUkwRwYDVQQFE0BjMjE3NGYyNmZmYjRlMjJhZTVkOWEyODlkODdjZWI0NDQ2
ZTEzMzYxOTFlZTRlYmQ2Y2U4NDUyYTJkMWJiODAyMS0wKwYDVQQDEyRjMGNlMjNl
YS00M2ZjLTRiZTQtYmVlZS1jMDE0NzgxMjJhMGUwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQCnLkVNVZP+wLZo2H+0nUSBD6ZXpyJ6GxxyTtO0a62WpWHq
W9t0qNyjGyZ2tl/cIfL/u52iEC6R+oJsj6uxcikay0r01eusJ+TjEQzSo8kiuc+/
en/MA9IkpQnuBAZuJyQjMhQdfgDxme6+j2skJkFwBABAY1DiOFHXx6aQhMXcJ1Ri
jvUk5gHX/4hgTspatcXtxJBOphyltiugTJrrNok8XHjCtEKk04ZXyiL1/IvVd/0J
X48eS4MXeDP/BCSIlOohyIvxwDXrWgoK28Dgb19hAd21TmW3fNlhia5n4FU2Kg5y
Qe17QaBDptVes6tqTxaplbwqhZVqOeUMCN9AI9y1AgMBAAGjggKxMIICrTAdBgNV
HQ4EFgQUgFWjunmlt4UkwCL9vkWuyzpFmIMwHwYDVR0jBBgwFoAUVajdRdlEE/nR
kvUsY86M+8YUlrgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy8xNDMzZWJmZi1k
ZmQ2LTRjNWMtYjdmZi05OWM4NTEzOWQ0YTgvMjc4YWFiODc4ZjI2NjJjZTE0ZTkw
NWUxOGViY2I3NTIyZjkyYjM2ODRiYzQ4NjViNGQuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvMTZmMWZmZWUtNzQ2MS00Njc0LWJiMDUtZmRk
ZWZhOWEwMmM2L2Q0NmQ3YjJhLWVkNDgtNDhhYS1iOGJmLWNmNTA3MDMyMmYxZi5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzE2ZjFmZmVlLTc0NjEtNDY3NC1iYjA1
LWZkZGVmYTlhMDJjNi9KbUxPRk9rRjRZNjh0MUl2a3JOb1M4U0dXMDAuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBADHJHgwDQYJKoZIhvcNAQELBQADggEBALHa460Yq9EvUDyynxy4p68saeXO
S/btVWnxtXG9WF9xBN9EeCjwESSeAPUpXRMde2/ZMDq4o6/AM46VWhrvuKb4Rs7T
bEW8ICFIfAzF9OCRjh8bKbsf9BDtSImcjBqRxZ1EJUltWJwjTNB6Mzf/4hSapMpd
k9HQI665MmXXKdfxTTHlH3V2rR4FXuZ/I5IKO3TQJ7rMOxWsSWBl4Q97w99I5Td6
6eI23grETzHUYaHV9QS+dJN1YN3ovgqoU2iM5lM7RQEq91OqvJZDntuDMI7fDoRJ
QZABImFaOuTBy7pcHbzH3iuiAYQExp1AqVqKOCJhsMediL8u2jWVwG+MDT8=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:22 2024 by rpki-client on console-ams.rpki-client.org