Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/fae5fa08-5c30-43d5-8c4b-c8f5efd3c1c9.roa
File: fae5fa08-5c30-43d5-8c4b-c8f5efd3c1c9.roa (raw, json)
Hash identifier: w2OUBSQ5lEQgywz4c5bF87hImzxM73BhWnSJjSIQmMc=
Subject key identifier: 89:E4:5F:88:24:62:66:6D:1F:73:44:2A:67:3C:F6:D8:A4:D0:BF:F1
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 3672C89DE42B61DA21100A214BB6CDD988086176
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/fae5fa08-5c30-43d5-8c4b-c8f5efd3c1c9.roa
Signing time: Fri 22 Sep 2023 00:00:00 +0000
ROA not before: Fri 22 Sep 2023 00:00:00 +0000
ROA not after: Fri 27 Oct 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
36:72:c8:9d:e4:2b:61:da:21:10:0a:21:4b:b6:cd:d9:88:08:61:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Sep 22 00:00:00 2023 GMT
Not After : Oct 27 23:59:59 2023 GMT
Subject: serialNumber=b07e3df4baf4e783e1bb3c380610ad8953ed3c3dfa5496dab8768a1ff83caf0d, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:f7:16:27:90:b9:65:59:82:e3:bc:ab:74:b8:
ea:81:eb:83:26:b9:f7:56:93:7a:ca:32:cc:5c:b4:
89:3f:03:8c:83:86:6e:e1:72:12:fd:0e:e1:e9:50:
2e:51:60:48:f3:64:94:30:3b:5d:ce:6d:d4:a7:31:
50:11:b3:43:16:03:86:6d:d9:de:59:61:dc:31:c3:
b3:93:15:d7:ac:78:d8:e9:c2:1d:4e:d6:09:9d:63:
63:2e:46:f4:9c:01:8f:23:72:9c:29:53:e3:da:56:
82:d9:a0:d7:d0:07:6e:bf:ea:39:b6:95:0b:cc:89:
38:ca:72:e7:44:16:84:93:0f:de:8e:c2:1b:60:90:
0b:e7:6d:87:8e:9c:16:ae:89:d4:d8:04:c0:8a:2a:
6c:f7:e1:c0:c2:f6:0d:1e:c3:2b:02:82:67:ab:fa:
49:c2:10:b4:ad:3b:c1:9f:b4:a2:61:4b:1d:7b:27:
4f:98:bf:8b:01:65:99:ff:d9:4a:8e:16:66:93:2e:
d1:5a:0d:8f:f1:5d:d6:0e:00:d8:87:bb:53:1e:f8:
86:6a:31:cd:53:82:55:0d:7c:af:d7:9c:a5:fa:5d:
c0:74:91:44:e3:cd:cf:90:97:d8:99:9f:47:0a:6a:
b6:34:0e:42:12:85:3e:42:04:e7:1d:92:e3:85:87:
6c:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:E4:5F:88:24:62:66:6D:1F:73:44:2A:67:3C:F6:D8:A4:D0:BF:F1
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/fae5fa08-5c30-43d5-8c4b-c8f5efd3c1c9.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
76:49:2b:61:3a:64:bf:56:9f:d1:6c:9c:61:3e:7d:ac:d3:2b:
4c:cf:5b:f9:89:43:a9:76:f0:df:0d:67:b9:0c:0c:cc:ae:c8:
3d:5e:6c:2a:89:88:dd:9d:4a:3d:11:a0:43:2f:05:94:9d:92:
86:ae:0e:d0:00:00:94:68:4a:f8:7b:c5:1f:e0:67:15:66:8d:
02:cc:2a:6e:4d:12:76:8d:d3:ce:1f:31:16:da:84:83:c5:99:
f8:0f:1d:36:6e:d9:f8:81:48:2d:4a:68:03:1d:ed:1d:ca:2e:
3c:ae:b5:e0:c5:1f:87:66:4d:dc:f1:df:a0:50:b5:29:58:07:
5d:c4:e1:e3:61:e5:13:f4:0e:3b:a3:49:b2:4d:5e:0c:17:ae:
f3:27:ce:c8:24:89:e6:c3:93:37:f3:05:79:6a:c8:40:10:e2:
53:8d:67:1f:d8:90:8a:5d:1d:c8:75:bf:58:ad:47:ad:57:b3:
a5:0f:e2:a2:9c:d0:74:2c:95:cb:03:86:7a:be:dd:66:37:57:
29:33:61:9d:5a:ef:14:c8:80:84:c5:13:95:61:62:ac:52:ec:
98:3c:15:de:36:94:44:20:90:7c:5b:39:40:52:9e:f3:39:f6:
6c:bd:73:d7:fd:3c:35:b1:02:dc:58:86:3b:db:9a:a1:ad:83:
55:f8:c8:1d
-----BEGIN CERTIFICATE-----
MIIF+DCCBOCgAwIBAgIUNnLIneQrYdohEAohS7bN2YgIYXYwDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyMjc4YWFiODc4ZjI2NjJjZTE0ZTkwNWUxOGViY2I3NTIy
ZjkyYjM2ODRiYzQ4NjViNGQwHhcNMjMwOTIyMDAwMDAwWhcNMjMxMDI3MjM1OTU5
WjB6MUkwRwYDVQQFE0BiMDdlM2RmNGJhZjRlNzgzZTFiYjNjMzgwNjEwYWQ4OTUz
ZWQzYzNkZmE1NDk2ZGFiODc2OGExZmY4M2NhZjBkMS0wKwYDVQQDEyRjMGNlMjNl
YS00M2ZjLTRiZTQtYmVlZS1jMDE0NzgxMjJhMGUwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQC59xYnkLllWYLjvKt0uOqB64MmufdWk3rKMsxctIk/A4yD
hm7hchL9DuHpUC5RYEjzZJQwO13ObdSnMVARs0MWA4Zt2d5ZYdwxw7OTFdeseNjp
wh1O1gmdY2MuRvScAY8jcpwpU+PaVoLZoNfQB26/6jm2lQvMiTjKcudEFoSTD96O
whtgkAvnbYeOnBauidTYBMCKKmz34cDC9g0ewysCgmer+knCELStO8GftKJhSx17
J0+Yv4sBZZn/2UqOFmaTLtFaDY/xXdYOANiHu1Me+IZqMc1TglUNfK/XnKX6XcB0
kUTjzc+Ql9iZn0cKarY0DkIShT5CBOcdkuOFh2xZAgMBAAGjggKxMIICrTAdBgNV
HQ4EFgQUieRfiCRiZm0fc0QqZzz22KTQv/EwHwYDVR0jBBgwFoAUVajdRdlEE/nR
kvUsY86M+8YUlrgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy8xNDMzZWJmZi1k
ZmQ2LTRjNWMtYjdmZi05OWM4NTEzOWQ0YTgvMjc4YWFiODc4ZjI2NjJjZTE0ZTkw
NWUxOGViY2I3NTIyZjkyYjM2ODRiYzQ4NjViNGQuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvMTZmMWZmZWUtNzQ2MS00Njc0LWJiMDUtZmRk
ZWZhOWEwMmM2L2ZhZTVmYTA4LTVjMzAtNDNkNS04YzRiLWM4ZjVlZmQzYzFjOS5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzE2ZjFmZmVlLTc0NjEtNDY3NC1iYjA1
LWZkZGVmYTlhMDJjNi9KbUxPRk9rRjRZNjh0MUl2a3JOb1M4U0dXMDAuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBADHJHgwDQYJKoZIhvcNAQELBQADggEBAHZJK2E6ZL9Wn9FsnGE+fazTK0zP
W/mJQ6l28N8NZ7kMDMyuyD1ebCqJiN2dSj0RoEMvBZSdkoauDtAAAJRoSvh7xR/g
ZxVmjQLMKm5NEnaN084fMRbahIPFmfgPHTZu2fiBSC1KaAMd7R3KLjyuteDFH4dm
Tdzx36BQtSlYB13E4eNh5RP0DjujSbJNXgwXrvMnzsgkiebDkzfzBXlqyEAQ4lON
Zx/YkIpdHch1v1itR61Xs6UP4qKc0HQslcsDhnq+3WY3VykzYZ1a7xTIgITFE5Vh
YqxS7Jg8Fd42lEQgkHxbOUBSnvM59my9c9f9PDWxAtxYhjvbmqGtg1X4yB0=
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:41:50 2024 by rpki-client on console-fra.rpki-client.org