Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/e9d67bde-9103-4a74-8a39-a2a535718b81.roa
File: e9d67bde-9103-4a74-8a39-a2a535718b81.roa (raw, json)
Hash identifier: /pdM/1dSXVdlvZ2jvNZxCLi+drxfxOfZcDNDCQap/tY=
Subject key identifier: 1A:B5:62:48:24:A3:BE:19:C9:85:D8:3E:6E:14:2D:7E:32:40:22:34
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 4ADE26B55FA3B4520B6FD53560EAC7729668E618
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/e9d67bde-9103-4a74-8a39-a2a535718b81.roa
Signing time: Sat 03 Feb 2024 00:00:00 +0000
ROA not before: Sat 03 Feb 2024 00:00:00 +0000
ROA not after: Sat 09 Mar 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4a:de:26:b5:5f:a3:b4:52:0b:6f:d5:35:60:ea:c7:72:96:68:e6:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Feb 3 00:00:00 2024 GMT
Not After : Mar 9 23:59:59 2024 GMT
Subject: serialNumber=76d20eb67dba5a8e4924b52323ea983880332317b2d50a37fae0cbb6cff53035, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:da:ad:7c:25:e0:40:9e:5f:4d:fd:1b:7d:00:
10:e1:a2:d3:9f:fa:33:3e:69:56:4e:00:c0:97:64:
92:ec:27:e7:00:d2:60:5d:a6:d6:78:f5:7b:58:86:
82:bf:7c:12:ca:13:51:c8:64:cc:2a:aa:52:e9:38:
49:8b:07:cb:d5:58:f4:5a:ad:69:cc:02:a1:65:d9:
12:09:7f:22:46:76:f3:83:76:ed:b0:c4:4d:81:4b:
8a:e5:48:c3:f4:ee:9f:cc:72:5f:f9:70:cc:9a:d3:
15:c1:40:1f:2d:c9:d3:b1:a7:be:f0:da:cf:07:70:
c1:a4:06:56:94:88:8f:69:a6:b4:7a:32:e8:35:31:
ba:50:b5:a9:7b:90:21:c1:ec:81:1a:9c:d3:bf:04:
aa:aa:dd:40:e2:fe:3d:98:6d:99:ad:6b:83:74:30:
be:82:3f:fa:cd:eb:b8:cc:40:58:2d:c3:4f:c1:9f:
41:b6:1f:a8:98:dc:0e:c4:70:3f:3e:2e:bb:33:8e:
c7:fd:50:73:77:3d:37:06:e0:29:20:7e:02:44:42:
b3:0d:41:d9:1d:b9:ee:4c:b6:19:93:92:50:6f:30:
ac:b2:6d:c4:a7:da:86:f5:9a:e4:c6:79:8d:76:af:
7e:2f:43:d2:e4:dc:4c:4b:6e:80:52:06:d6:e6:22:
29:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:B5:62:48:24:A3:BE:19:C9:85:D8:3E:6E:14:2D:7E:32:40:22:34
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/e9d67bde-9103-4a74-8a39-a2a535718b81.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
62:90:8d:4e:4e:87:f0:45:83:e4:09:db:14:fa:17:4a:99:d4:
bb:91:99:9b:9c:88:16:e7:e5:fa:a7:f4:5c:f5:16:d7:32:01:
36:f6:1a:85:e9:e4:25:aa:ea:20:2b:ed:13:24:e9:8a:54:ca:
6c:b3:3d:a6:b2:8f:70:c9:11:5d:01:41:f0:51:05:e3:09:ed:
d8:fb:13:53:83:8f:77:90:8b:7b:e3:ab:8e:67:d7:ae:1f:ff:
b5:49:ed:08:ca:40:62:db:e7:d7:f8:f4:b9:d1:ba:1a:05:9d:
e7:c7:b9:6e:2d:ff:d0:f9:2a:b4:59:72:12:42:91:59:bb:4e:
2b:01:93:55:ee:87:0a:ae:bd:f1:2f:ad:c6:3d:a0:95:de:b5:
58:35:9f:3b:eb:18:b5:23:d8:08:30:c7:75:f3:16:a1:bf:bb:
4d:54:5c:a3:26:2f:c6:e3:48:7a:c5:14:74:58:e3:eb:6e:3c:
78:38:14:bb:8f:29:f2:6b:28:48:8c:f7:07:64:09:ee:2a:b0:
1e:39:35:7c:d1:44:25:d8:7c:a4:94:b6:85:81:d3:d9:44:32:
32:a4:64:b5:74:a4:a0:56:7b:88:11:60:ba:e6:b7:42:5c:11:
88:2e:d1:83:b8:99:ea:d2:6a:82:64:36:f2:b0:13:2e:63:de:
7c:2f:df:52
-----BEGIN CERTIFICATE-----
MIIF+DCCBOCgAwIBAgIUSt4mtV+jtFILb9U1YOrHcpZo5hgwDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyMjc4YWFiODc4ZjI2NjJjZTE0ZTkwNWUxOGViY2I3NTIy
ZjkyYjM2ODRiYzQ4NjViNGQwHhcNMjQwMjAzMDAwMDAwWhcNMjQwMzA5MjM1OTU5
WjB6MUkwRwYDVQQFE0A3NmQyMGViNjdkYmE1YThlNDkyNGI1MjMyM2VhOTgzODgw
MzMyMzE3YjJkNTBhMzdmYWUwY2JiNmNmZjUzMDM1MS0wKwYDVQQDEyRjMGNlMjNl
YS00M2ZjLTRiZTQtYmVlZS1jMDE0NzgxMjJhMGUwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQDz2q18JeBAnl9N/Rt9ABDhotOf+jM+aVZOAMCXZJLsJ+cA
0mBdptZ49XtYhoK/fBLKE1HIZMwqqlLpOEmLB8vVWPRarWnMAqFl2RIJfyJGdvOD
du2wxE2BS4rlSMP07p/Mcl/5cMya0xXBQB8tydOxp77w2s8HcMGkBlaUiI9pprR6
Mug1MbpQtal7kCHB7IEanNO/BKqq3UDi/j2YbZmta4N0ML6CP/rN67jMQFgtw0/B
n0G2H6iY3A7EcD8+Lrszjsf9UHN3PTcG4CkgfgJEQrMNQdkdue5MthmTklBvMKyy
bcSn2ob1muTGeY12r34vQ9Lk3ExLboBSBtbmIilvAgMBAAGjggKxMIICrTAdBgNV
HQ4EFgQUGrViSCSjvhnJhdg+bhQtfjJAIjQwHwYDVR0jBBgwFoAUVajdRdlEE/nR
kvUsY86M+8YUlrgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy8xNDMzZWJmZi1k
ZmQ2LTRjNWMtYjdmZi05OWM4NTEzOWQ0YTgvMjc4YWFiODc4ZjI2NjJjZTE0ZTkw
NWUxOGViY2I3NTIyZjkyYjM2ODRiYzQ4NjViNGQuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvMTZmMWZmZWUtNzQ2MS00Njc0LWJiMDUtZmRk
ZWZhOWEwMmM2L2U5ZDY3YmRlLTkxMDMtNGE3NC04YTM5LWEyYTUzNTcxOGI4MS5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzE2ZjFmZmVlLTc0NjEtNDY3NC1iYjA1
LWZkZGVmYTlhMDJjNi9KbUxPRk9rRjRZNjh0MUl2a3JOb1M4U0dXMDAuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBADHJHgwDQYJKoZIhvcNAQELBQADggEBAGKQjU5Oh/BFg+QJ2xT6F0qZ1LuR
mZuciBbn5fqn9Fz1FtcyATb2GoXp5CWq6iAr7RMk6YpUymyzPaayj3DJEV0BQfBR
BeMJ7dj7E1ODj3eQi3vjq45n164f/7VJ7QjKQGLb59f49LnRuhoFnefHuW4t/9D5
KrRZchJCkVm7TisBk1XuhwquvfEvrcY9oJXetVg1nzvrGLUj2Agwx3XzFqG/u01U
XKMmL8bjSHrFFHRY4+tuPHg4FLuPKfJrKEiM9wdkCe4qsB45NXzRRCXYfKSUtoWB
09lEMjKkZLV0pKBWe4gRYLrmt0JcEYgu0YO4merSaoJkNvKwEy5j3nwv31I=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:32 2024 by rpki-client on console-ams.rpki-client.org