Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/f5ed4b5e-34ce-40bd-bf11-a0838b21e1cd.roa
File: f5ed4b5e-34ce-40bd-bf11-a0838b21e1cd.roa (raw, json)
Hash identifier: 3D1ppa+Li+rbX/OrXDkShbJr4r3J937SFGFHqSapBL0=
Subject key identifier: 75:06:44:27:D1:93:51:3F:7E:CE:41:05:F3:22:2C:13:60:5B:CA:FE
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 78A87FEA1A56206EDFA1B2C5ACF1D061963C0C09
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/f5ed4b5e-34ce-40bd-bf11-a0838b21e1cd.roa
Signing time: Mon 09 Oct 2023 00:00:00 +0000
ROA not before: Mon 09 Oct 2023 00:00:00 +0000
ROA not after: Mon 13 Nov 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
78:a8:7f:ea:1a:56:20:6e:df:a1:b2:c5:ac:f1:d0:61:96:3c:0c:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Oct 9 00:00:00 2023 GMT
Not After : Nov 13 23:59:59 2023 GMT
Subject: serialNumber=d413ca1af52ff44850dba9c624900dac9a0b66371fcccce6a03f9621d443dd2c, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:75:b8:f5:a4:04:a9:87:5a:ef:39:fd:89:81:
af:9f:45:5b:2f:3b:56:43:d1:15:6f:ff:be:96:fa:
bf:9e:ac:7c:7b:92:6c:b2:33:e7:0b:c6:4d:fb:0b:
86:61:7b:b9:5e:74:de:3c:29:b0:ec:fd:f1:55:f7:
62:33:22:54:21:27:0f:86:98:86:4e:a4:66:82:34:
10:f8:03:8b:aa:ad:27:59:46:9e:80:93:c1:3a:14:
1d:91:29:30:7d:60:b7:87:7e:63:19:75:c9:2b:b4:
e6:72:78:60:fa:04:cc:b2:c3:0f:1c:f8:79:e1:2c:
0e:9a:d3:b1:ba:a0:08:4a:b8:2b:ad:36:d9:5e:95:
f0:ec:3e:1b:1e:22:7d:00:5c:24:e8:d7:36:27:0b:
13:47:fc:ca:1c:32:c1:ad:e5:5f:4b:b5:a1:97:35:
79:9b:d4:67:e3:66:8b:d9:ae:69:1d:09:99:39:10:
14:17:fd:84:e6:6d:63:96:ca:bc:a5:45:39:4e:9e:
b7:e9:41:c1:7d:47:16:45:25:44:f0:04:04:b9:6b:
55:76:53:4c:3e:b6:a0:04:43:cf:7d:3a:52:73:42:
9c:a4:07:5b:08:c6:12:2f:0c:75:44:8f:61:79:f4:
cb:b7:39:52:7a:53:22:09:27:73:12:1f:7a:be:b8:
6c:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:06:44:27:D1:93:51:3F:7E:CE:41:05:F3:22:2C:13:60:5B:CA:FE
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/f5ed4b5e-34ce-40bd-bf11-a0838b21e1cd.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
78:a0:76:35:36:d9:1c:e8:df:ef:60:c7:5f:2c:5c:00:2a:dd:
19:0d:60:26:02:b9:1b:d2:fc:2f:9d:9f:48:09:82:c2:3a:37:
fb:41:5c:3e:a5:ec:e4:87:85:cc:5a:e1:7d:49:2d:62:69:b0:
1c:12:9e:de:d1:ad:19:e9:42:56:de:10:c6:39:15:60:d8:54:
60:63:69:79:e2:ba:0f:ae:7c:ff:e9:42:2f:aa:e3:ba:ab:06:
dd:58:d2:05:17:33:00:5a:ae:7f:99:62:62:8b:f7:5d:d7:00:
a5:3f:bf:91:35:9a:81:5b:43:a4:d4:42:0c:3e:8f:af:0e:45:
01:4b:87:69:d3:40:97:0e:9e:05:46:06:b0:73:59:d7:bb:d1:
89:79:d5:0e:41:10:41:09:80:8c:27:cd:38:a9:47:83:e6:43:
ab:c7:5d:5c:7d:51:0f:df:88:fd:51:9c:43:e6:f6:4a:45:83:
3e:06:6d:37:8b:85:35:57:0b:6f:82:52:2c:e8:38:c2:76:b7:
ea:82:fd:de:bb:cd:c7:7f:33:ab:2a:0b:1f:37:2a:4d:6a:f4:
a1:07:a2:9d:7b:49:b1:c2:b7:bd:ee:66:67:2f:b3:6f:d6:81:
a8:f8:f0:c2:92:19:bf:d4:69:24:85:03:07:43:1f:48:b5:9f:
d5:67:ec:d4
-----BEGIN CERTIFICATE-----
MIIF+DCCBOCgAwIBAgIUeKh/6hpWIG7fobLFrPHQYZY8DAkwDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyMjc4YWFiODc4ZjI2NjJjZTE0ZTkwNWUxOGViY2I3NTIy
ZjkyYjM2ODRiYzQ4NjViNGQwHhcNMjMxMDA5MDAwMDAwWhcNMjMxMTEzMjM1OTU5
WjB6MUkwRwYDVQQFE0BkNDEzY2ExYWY1MmZmNDQ4NTBkYmE5YzYyNDkwMGRhYzlh
MGI2NjM3MWZjY2NjZTZhMDNmOTYyMWQ0NDNkZDJjMS0wKwYDVQQDEyRjMGNlMjNl
YS00M2ZjLTRiZTQtYmVlZS1jMDE0NzgxMjJhMGUwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQCodbj1pASph1rvOf2Jga+fRVsvO1ZD0RVv/76W+r+erHx7
kmyyM+cLxk37C4Zhe7ledN48KbDs/fFV92IzIlQhJw+GmIZOpGaCNBD4A4uqrSdZ
Rp6Ak8E6FB2RKTB9YLeHfmMZdckrtOZyeGD6BMyyww8c+HnhLA6a07G6oAhKuCut
NtlelfDsPhseIn0AXCTo1zYnCxNH/MocMsGt5V9LtaGXNXmb1GfjZovZrmkdCZk5
EBQX/YTmbWOWyrylRTlOnrfpQcF9RxZFJUTwBAS5a1V2U0w+tqAEQ899OlJzQpyk
B1sIxhIvDHVEj2F59Mu3OVJ6UyIJJ3MSH3q+uGzfAgMBAAGjggKxMIICrTAdBgNV
HQ4EFgQUdQZEJ9GTUT9+zkEF8yIsE2Bbyv4wHwYDVR0jBBgwFoAUVajdRdlEE/nR
kvUsY86M+8YUlrgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy8xNDMzZWJmZi1k
ZmQ2LTRjNWMtYjdmZi05OWM4NTEzOWQ0YTgvMjc4YWFiODc4ZjI2NjJjZTE0ZTkw
NWUxOGViY2I3NTIyZjkyYjM2ODRiYzQ4NjViNGQuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvMTZmMWZmZWUtNzQ2MS00Njc0LWJiMDUtZmRk
ZWZhOWEwMmM2L2Y1ZWQ0YjVlLTM0Y2UtNDBiZC1iZjExLWEwODM4YjIxZTFjZC5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzE2ZjFmZmVlLTc0NjEtNDY3NC1iYjA1
LWZkZGVmYTlhMDJjNi9KbUxPRk9rRjRZNjh0MUl2a3JOb1M4U0dXMDAuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBADHJHgwDQYJKoZIhvcNAQELBQADggEBAHigdjU22Rzo3+9gx18sXAAq3RkN
YCYCuRvS/C+dn0gJgsI6N/tBXD6l7OSHhcxa4X1JLWJpsBwSnt7RrRnpQlbeEMY5
FWDYVGBjaXniug+ufP/pQi+q47qrBt1Y0gUXMwBarn+ZYmKL913XAKU/v5E1moFb
Q6TUQgw+j68ORQFLh2nTQJcOngVGBrBzWde70Yl51Q5BEEEJgIwnzTipR4PmQ6vH
XVx9UQ/fiP1RnEPm9kpFgz4GbTeLhTVXC2+CUizoOMJ2t+qC/d67zcd/M6sqCx83
Kk1q9KEHop17SbHCt73uZmcvs2/Wgaj48MKSGb/UaSSFAwdDH0i1n9Vn7NQ=
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:41:50 2024 by rpki-client on console-fra.rpki-client.org