Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/de2d4d31-8bcc-4e8c-ad62-3bd14377a416.roa
File: de2d4d31-8bcc-4e8c-ad62-3bd14377a416.roa (raw, json)
Hash identifier: xs68PD60iVxzhVbQQL5/gWQi9uc1kLhLf4xVbfL7RRg=
Subject key identifier: 9A:02:A2:37:23:2D:7A:C7:60:1E:D1:4E:13:AB:6F:4B:1C:E4:AE:2F
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 70E0E2DAFCDEF68AACDC2B9EC41A8EB97F020712
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/de2d4d31-8bcc-4e8c-ad62-3bd14377a416.roa
Signing time: Mon 04 Sep 2023 00:00:00 +0000
ROA not before: Mon 04 Sep 2023 00:00:00 +0000
ROA not after: Mon 09 Oct 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
70:e0:e2:da:fc:de:f6:8a:ac:dc:2b:9e:c4:1a:8e:b9:7f:02:07:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Sep 4 00:00:00 2023 GMT
Not After : Oct 9 23:59:59 2023 GMT
Subject: serialNumber=271b95574f86f0a6719a5815d20eeaaa25be8cd4b00a40afd30dd48e6e034280, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:45:c8:97:0a:73:3b:ea:23:9b:f7:18:f3:c2:
ac:e2:31:66:4a:80:30:6b:09:ec:1f:fe:48:72:9d:
fa:bc:c3:58:1d:2b:3d:2f:5b:74:ae:24:1e:8e:dc:
fc:25:44:7f:bb:11:c5:4a:9a:a2:c4:04:1e:07:19:
7a:03:fa:d5:1e:71:cf:74:ac:20:92:32:6e:3c:4b:
75:48:79:de:24:7b:f8:55:7e:44:bd:f5:f3:78:62:
b6:9d:29:95:66:5f:20:cb:3c:69:ed:b3:28:f6:ee:
85:ad:74:28:38:09:ae:5b:d5:16:14:3f:62:f9:19:
3d:97:f9:b6:5a:c8:38:ab:da:5a:83:b7:7d:54:84:
00:27:5e:7b:45:e9:12:b8:96:05:0f:d6:1c:7b:d2:
27:4c:93:ac:9c:e2:fe:7a:48:8a:4e:d1:a1:3a:6c:
8f:f0:8e:3f:16:63:32:e5:25:4c:31:5b:59:9a:d8:
99:e6:f5:83:b3:b8:43:c8:e7:66:cb:26:c1:5a:09:
4a:7d:7b:1e:51:d6:68:39:92:5c:5e:14:5f:0f:f6:
94:2d:69:e6:17:6c:0f:8e:74:21:ea:7a:e0:cc:a5:
00:9b:08:e4:19:5f:7b:7d:6c:58:e7:54:47:31:9a:
73:54:93:84:d0:04:03:64:87:cb:40:80:c6:31:f3:
de:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:02:A2:37:23:2D:7A:C7:60:1E:D1:4E:13:AB:6F:4B:1C:E4:AE:2F
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/de2d4d31-8bcc-4e8c-ad62-3bd14377a416.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
11:8f:54:57:a7:29:8f:02:71:d4:43:5d:21:88:0a:d2:65:12:
90:62:cf:45:0d:f8:8d:4f:f3:bc:cf:95:12:d0:5c:84:af:12:
be:e6:d4:05:41:16:65:27:be:a8:fc:a4:c4:89:fb:0b:c1:17:
04:82:52:d9:4b:21:a6:c3:bc:51:53:aa:6b:c8:b4:48:e7:57:
34:19:e1:0e:b3:52:a4:37:fc:48:64:e8:93:f9:ef:48:a9:9c:
2e:e7:f9:26:5d:37:aa:75:3a:a3:fe:7d:b1:4b:b8:57:60:ac:
13:d7:3f:83:cd:0a:6a:d0:92:2f:76:bf:7a:e4:c0:9a:0c:27:
c6:ee:d0:75:e8:b4:18:8e:a0:47:13:fa:5d:32:44:02:33:b3:
ff:b1:20:20:d5:81:bf:94:78:07:7a:1e:83:6e:c9:f7:ce:4d:
a5:d5:1a:2f:dc:01:7e:a6:a5:ed:a2:77:e6:89:fb:c9:5a:8e:
42:6d:3a:2e:af:da:42:e3:0b:4b:26:a5:da:e1:3e:6b:7e:d9:
5e:ae:5c:1e:09:ba:a8:4e:ed:77:0e:4d:6c:e9:6b:42:f2:37:
81:bc:23:83:84:22:ee:52:2f:6f:6e:b5:ec:e0:53:ac:cf:6f:
80:35:77:c4:ec:7a:9b:f9:71:87:67:da:b5:b4:b8:26:56:bb:
ea:ec:fc:f4
-----BEGIN CERTIFICATE-----
MIIF+DCCBOCgAwIBAgIUcODi2vze9oqs3CuexBqOuX8CBxIwDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyMjc4YWFiODc4ZjI2NjJjZTE0ZTkwNWUxOGViY2I3NTIy
ZjkyYjM2ODRiYzQ4NjViNGQwHhcNMjMwOTA0MDAwMDAwWhcNMjMxMDA5MjM1OTU5
WjB6MUkwRwYDVQQFE0AyNzFiOTU1NzRmODZmMGE2NzE5YTU4MTVkMjBlZWFhYTI1
YmU4Y2Q0YjAwYTQwYWZkMzBkZDQ4ZTZlMDM0MjgwMS0wKwYDVQQDEyRjMGNlMjNl
YS00M2ZjLTRiZTQtYmVlZS1jMDE0NzgxMjJhMGUwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQCiRciXCnM76iOb9xjzwqziMWZKgDBrCewf/khynfq8w1gd
Kz0vW3SuJB6O3PwlRH+7EcVKmqLEBB4HGXoD+tUecc90rCCSMm48S3VIed4ke/hV
fkS99fN4YradKZVmXyDLPGntsyj27oWtdCg4Ca5b1RYUP2L5GT2X+bZayDir2lqD
t31UhAAnXntF6RK4lgUP1hx70idMk6yc4v56SIpO0aE6bI/wjj8WYzLlJUwxW1ma
2Jnm9YOzuEPI52bLJsFaCUp9ex5R1mg5klxeFF8P9pQtaeYXbA+OdCHqeuDMpQCb
COQZX3t9bFjnVEcxmnNUk4TQBANkh8tAgMYx894bAgMBAAGjggKxMIICrTAdBgNV
HQ4EFgQUmgKiNyMtesdgHtFOE6tvSxzkri8wHwYDVR0jBBgwFoAUVajdRdlEE/nR
kvUsY86M+8YUlrgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy8xNDMzZWJmZi1k
ZmQ2LTRjNWMtYjdmZi05OWM4NTEzOWQ0YTgvMjc4YWFiODc4ZjI2NjJjZTE0ZTkw
NWUxOGViY2I3NTIyZjkyYjM2ODRiYzQ4NjViNGQuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvMTZmMWZmZWUtNzQ2MS00Njc0LWJiMDUtZmRk
ZWZhOWEwMmM2L2RlMmQ0ZDMxLThiY2MtNGU4Yy1hZDYyLTNiZDE0Mzc3YTQxNi5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzE2ZjFmZmVlLTc0NjEtNDY3NC1iYjA1
LWZkZGVmYTlhMDJjNi9KbUxPRk9rRjRZNjh0MUl2a3JOb1M4U0dXMDAuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBADHJHgwDQYJKoZIhvcNAQELBQADggEBABGPVFenKY8CcdRDXSGICtJlEpBi
z0UN+I1P87zPlRLQXISvEr7m1AVBFmUnvqj8pMSJ+wvBFwSCUtlLIabDvFFTqmvI
tEjnVzQZ4Q6zUqQ3/Ehk6JP570ipnC7n+SZdN6p1OqP+fbFLuFdgrBPXP4PNCmrQ
ki92v3rkwJoMJ8bu0HXotBiOoEcT+l0yRAIzs/+xICDVgb+UeAd6HoNuyffOTaXV
Gi/cAX6mpe2id+aJ+8lajkJtOi6v2kLjC0smpdrhPmt+2V6uXB4JuqhO7XcOTWzp
a0LyN4G8I4OEIu5SL29utezgU6zPb4A1d8Tsepv5cYdn2rW0uCZWu+rs/PQ=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:30 2024 by rpki-client on console-ams.rpki-client.org