Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/db3c8914-b048-4bc8-84f8-ae613bfd0e7d.roa
File: db3c8914-b048-4bc8-84f8-ae613bfd0e7d.roa (raw, json)
Hash identifier: hfCnnISHq0NdvtFbhnduu4HkORdYt0hf10+UWFMyoCY=
Subject key identifier: 64:FD:C0:11:8A:71:A1:0F:F2:76:8F:58:5A:86:32:6A:0E:F9:04:31
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 3995EDB619C9471FC646C2BDE7FF6E8711DF178F
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/db3c8914-b048-4bc8-84f8-ae613bfd0e7d.roa
Signing time: Tue 19 Sep 2023 00:00:00 +0000
ROA not before: Tue 19 Sep 2023 00:00:00 +0000
ROA not after: Tue 24 Oct 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
39:95:ed:b6:19:c9:47:1f:c6:46:c2:bd:e7:ff:6e:87:11:df:17:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Sep 19 00:00:00 2023 GMT
Not After : Oct 24 23:59:59 2023 GMT
Subject: serialNumber=22d29680eed071fbf52d675b6fb3bf81297e6becc0bc2d1547b66cd3c6be29b8, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:81:e3:b6:3f:a0:76:84:46:ba:03:78:e7:4f:
10:8f:a7:af:70:f5:9c:8d:3a:a5:84:46:8e:04:f4:
36:1c:e6:e4:26:d9:59:6b:36:56:f9:7b:c1:62:65:
ab:72:5d:9e:b6:d6:8e:94:7b:01:cf:3f:cf:71:39:
aa:07:f6:aa:d2:44:ce:af:4d:e4:fb:31:ea:34:5b:
95:45:d4:d5:1f:c3:fe:b9:e9:e9:2c:4e:55:d1:6f:
8a:85:76:25:88:e6:7e:00:e0:9e:3f:78:0c:de:16:
0e:ef:59:1c:be:96:fb:c4:65:a8:1a:cc:a7:ae:ea:
80:62:0b:e6:f1:b3:55:33:5f:61:eb:31:0a:5b:0b:
a6:a1:5e:df:f8:9c:16:b9:ac:05:e3:eb:91:6f:1b:
1a:c1:06:7d:83:3f:9d:5c:02:0f:79:6c:cd:8c:fa:
e9:e4:11:36:3d:5a:db:8d:62:8b:e6:ec:aa:57:79:
9e:f5:b1:cd:64:6f:b8:1c:1b:ca:e3:d0:1b:ae:d8:
21:8c:17:0b:22:36:ce:62:9d:09:b9:5a:96:d5:be:
e2:e4:64:5f:df:b6:08:9b:0c:2f:f9:b6:c1:4c:8f:
6a:a0:be:4e:ac:30:ac:97:e9:7a:53:16:b4:53:f8:
c3:0f:ce:f5:57:f5:a9:7e:b6:54:cd:a7:3b:48:22:
07:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:FD:C0:11:8A:71:A1:0F:F2:76:8F:58:5A:86:32:6A:0E:F9:04:31
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/db3c8914-b048-4bc8-84f8-ae613bfd0e7d.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
3c:e6:ff:e7:2e:8f:2a:8d:78:c7:87:f7:0e:4e:26:5d:50:ef:
50:a1:65:5e:50:74:7b:f3:a1:8a:a3:3e:18:4e:eb:56:e3:6d:
2c:e2:74:82:1f:d9:89:6a:2f:b3:2e:f3:95:3f:7e:51:46:5b:
d6:09:57:41:09:5d:48:f0:c2:ab:4a:e3:6e:a3:56:71:bd:c7:
61:9a:27:2a:01:db:43:12:d0:48:06:de:fc:80:ac:9a:b7:35:
86:64:10:56:72:be:53:ff:0b:ba:f3:0b:8b:62:78:b4:95:25:
71:2f:92:dc:ca:55:fb:01:2a:9b:76:c8:d1:a7:b1:06:2b:16:
d3:a7:f0:31:05:ba:01:ba:22:77:60:ef:dd:2f:cb:ec:a3:6e:
71:75:09:16:74:83:97:99:43:88:6a:3d:4e:06:cc:06:79:45:
83:f1:f6:26:56:65:71:1b:a0:57:76:4a:fa:7d:e3:b4:84:28:
fa:c8:14:10:d8:7a:25:e0:8e:0a:10:fe:72:03:29:bd:44:cf:
10:94:59:1f:02:6a:3d:83:64:14:07:ea:53:fb:16:bf:28:5b:
3d:02:7d:38:b8:42:86:8e:74:ab:1f:b4:d7:ee:05:03:5f:60:
ef:d0:3e:41:23:f1:67:af:7a:a2:72:d9:3f:c3:1e:f9:67:65:
6d:11:54:84
-----BEGIN CERTIFICATE-----
MIIF+DCCBOCgAwIBAgIUOZXtthnJRx/GRsK95/9uhxHfF48wDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyMjc4YWFiODc4ZjI2NjJjZTE0ZTkwNWUxOGViY2I3NTIy
ZjkyYjM2ODRiYzQ4NjViNGQwHhcNMjMwOTE5MDAwMDAwWhcNMjMxMDI0MjM1OTU5
WjB6MUkwRwYDVQQFE0AyMmQyOTY4MGVlZDA3MWZiZjUyZDY3NWI2ZmIzYmY4MTI5
N2U2YmVjYzBiYzJkMTU0N2I2NmNkM2M2YmUyOWI4MS0wKwYDVQQDEyRjMGNlMjNl
YS00M2ZjLTRiZTQtYmVlZS1jMDE0NzgxMjJhMGUwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQCIgeO2P6B2hEa6A3jnTxCPp69w9ZyNOqWERo4E9DYc5uQm
2VlrNlb5e8FiZatyXZ621o6UewHPP89xOaoH9qrSRM6vTeT7Meo0W5VF1NUfw/65
6eksTlXRb4qFdiWI5n4A4J4/eAzeFg7vWRy+lvvEZagazKeu6oBiC+bxs1UzX2Hr
MQpbC6ahXt/4nBa5rAXj65FvGxrBBn2DP51cAg95bM2M+unkETY9WtuNYovm7KpX
eZ71sc1kb7gcG8rj0Buu2CGMFwsiNs5inQm5WpbVvuLkZF/ftgibDC/5tsFMj2qg
vk6sMKyX6XpTFrRT+MMPzvVX9al+tlTNpztIIgcBAgMBAAGjggKxMIICrTAdBgNV
HQ4EFgQUZP3AEYpxoQ/ydo9YWoYyag75BDEwHwYDVR0jBBgwFoAUVajdRdlEE/nR
kvUsY86M+8YUlrgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy8xNDMzZWJmZi1k
ZmQ2LTRjNWMtYjdmZi05OWM4NTEzOWQ0YTgvMjc4YWFiODc4ZjI2NjJjZTE0ZTkw
NWUxOGViY2I3NTIyZjkyYjM2ODRiYzQ4NjViNGQuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvMTZmMWZmZWUtNzQ2MS00Njc0LWJiMDUtZmRk
ZWZhOWEwMmM2L2RiM2M4OTE0LWIwNDgtNGJjOC04NGY4LWFlNjEzYmZkMGU3ZC5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzE2ZjFmZmVlLTc0NjEtNDY3NC1iYjA1
LWZkZGVmYTlhMDJjNi9KbUxPRk9rRjRZNjh0MUl2a3JOb1M4U0dXMDAuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBADHJHgwDQYJKoZIhvcNAQELBQADggEBADzm/+cujyqNeMeH9w5OJl1Q71Ch
ZV5QdHvzoYqjPhhO61bjbSzidIIf2YlqL7Mu85U/flFGW9YJV0EJXUjwwqtK426j
VnG9x2GaJyoB20MS0EgG3vyArJq3NYZkEFZyvlP/C7rzC4tieLSVJXEvktzKVfsB
Kpt2yNGnsQYrFtOn8DEFugG6Indg790vy+yjbnF1CRZ0g5eZQ4hqPU4GzAZ5RYPx
9iZWZXEboFd2Svp947SEKPrIFBDYeiXgjgoQ/nIDKb1EzxCUWR8Caj2DZBQH6lP7
Fr8oWz0CfTi4QoaOdKsftNfuBQNfYO/QPkEj8WeveqJy2T/DHvlnZW0RVIQ=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:29 2024 by rpki-client on console-ams.rpki-client.org