Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/4831971a-92b9-46de-8916-a8b7387a3f1d.roa
File: 4831971a-92b9-46de-8916-a8b7387a3f1d.roa (raw, json)
Hash identifier: LsjxADXLiyDq2yggBHu/7qwXewxZ2cz7UwpLkC5VMFU=
Subject key identifier: 3F:89:C4:3D:A3:2C:8E:97:00:E9:C3:78:4B:73:6E:BE:FC:06:E0:26
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 0AE09FD5E748B60ABF0297608FB42AB6F5474146
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/4831971a-92b9-46de-8916-a8b7387a3f1d.roa
Signing time: Sat 30 Sep 2023 00:00:00 +0000
ROA not before: Sat 30 Sep 2023 00:00:00 +0000
ROA not after: Sat 04 Nov 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0a:e0:9f:d5:e7:48:b6:0a:bf:02:97:60:8f:b4:2a:b6:f5:47:41:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Sep 30 00:00:00 2023 GMT
Not After : Nov 4 23:59:59 2023 GMT
Subject: serialNumber=ef9cdddda2e5da2299881e466ddd1ea527093d4c16d464ce45ab8160cc69b7e3, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:11:eb:4f:3e:0a:be:d1:ac:9d:76:a3:2c:f6:
8c:a6:f8:57:76:87:1c:de:14:64:ea:c4:46:01:4f:
69:12:62:70:40:97:8e:f0:e7:5a:2f:b7:67:07:8a:
36:bd:f1:cc:44:d3:e6:99:ab:d2:64:4e:7d:49:30:
2f:86:80:3b:45:35:e9:ec:30:3a:03:c2:1a:06:07:
01:67:14:bc:04:31:c9:75:be:8b:5b:86:a3:b1:fe:
b4:87:87:eb:36:11:99:c9:0b:5d:4e:d8:56:01:58:
fd:21:30:0d:ff:0e:ac:a9:d6:3a:74:ca:04:7c:a2:
f7:b6:bf:2b:e7:a1:1d:62:8a:78:b3:c7:aa:dd:07:
6d:02:a9:15:6c:5a:70:78:4b:c9:09:e5:63:44:d4:
3c:7e:e1:70:f0:86:b9:66:bf:58:7a:07:8f:45:fa:
d6:e5:db:d3:90:55:61:6b:f3:d3:6d:32:6f:7c:54:
b9:75:11:d8:a9:42:0d:9f:39:1d:1c:9a:64:bc:d0:
46:b9:0f:a9:51:70:ad:1d:07:0d:06:40:ff:41:fd:
21:e3:80:ab:90:ad:3b:6a:17:8c:b5:a6:35:e3:e9:
5d:0f:62:b5:e2:76:20:4a:17:60:eb:b5:d7:7c:60:
06:1f:f1:15:c4:53:bc:63:a8:0f:67:dc:47:f2:8c:
ba:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:89:C4:3D:A3:2C:8E:97:00:E9:C3:78:4B:73:6E:BE:FC:06:E0:26
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/4831971a-92b9-46de-8916-a8b7387a3f1d.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
46:63:30:0b:dd:6b:f1:75:80:a7:2e:99:d0:d5:db:72:1f:f8:
9d:59:e2:cc:b1:eb:78:81:3e:f6:c5:6f:eb:1b:6f:f0:11:71:
e9:36:1b:03:14:bc:39:7d:2b:e9:3d:03:1d:c6:cf:9b:15:3e:
06:7c:89:19:8c:e0:c6:e3:bf:f2:8d:c5:ff:4c:74:9d:15:8e:
88:9e:31:7e:54:ab:38:99:87:b4:fb:51:c3:ba:b7:e9:43:e4:
a7:90:6e:8e:d6:2a:6e:d3:25:fd:35:20:da:fc:b8:53:3f:0d:
ea:35:5d:0d:0f:3e:5b:86:72:bb:82:54:6c:3e:13:06:b9:7d:
b7:bc:ca:f2:9c:b2:c6:b8:cb:8a:74:7f:43:7b:86:1a:23:e9:
d0:1a:f8:a6:1e:1f:7a:44:95:c2:a3:82:b6:40:db:4c:84:65:
1a:04:b1:2a:ea:cf:cc:58:cc:fb:7d:ba:98:ec:77:30:86:64:
e6:4c:37:3e:8b:2d:49:77:d6:12:70:2c:47:bd:5d:6c:20:69:
07:d6:07:32:7f:27:fd:f7:6c:02:e5:bd:84:b5:7f:5c:6d:f5:
de:2f:4f:ed:71:ae:9b:28:38:d8:78:ba:22:e1:f0:be:4e:fe:
a1:53:b2:58:44:85:ef:81:8b:4b:74:6e:c4:bf:5e:63:7f:5d:
74:15:54:7e
-----BEGIN CERTIFICATE-----
MIIF+DCCBOCgAwIBAgIUCuCf1edItgq/Apdgj7QqtvVHQUYwDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyMjc4YWFiODc4ZjI2NjJjZTE0ZTkwNWUxOGViY2I3NTIy
ZjkyYjM2ODRiYzQ4NjViNGQwHhcNMjMwOTMwMDAwMDAwWhcNMjMxMTA0MjM1OTU5
WjB6MUkwRwYDVQQFE0BlZjljZGRkZGEyZTVkYTIyOTk4ODFlNDY2ZGRkMWVhNTI3
MDkzZDRjMTZkNDY0Y2U0NWFiODE2MGNjNjliN2UzMS0wKwYDVQQDEyRjMGNlMjNl
YS00M2ZjLTRiZTQtYmVlZS1jMDE0NzgxMjJhMGUwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQCiEetPPgq+0ayddqMs9oym+Fd2hxzeFGTqxEYBT2kSYnBA
l47w51ovt2cHija98cxE0+aZq9JkTn1JMC+GgDtFNensMDoDwhoGBwFnFLwEMcl1
votbhqOx/rSHh+s2EZnJC11O2FYBWP0hMA3/Dqyp1jp0ygR8ove2vyvnoR1iiniz
x6rdB20CqRVsWnB4S8kJ5WNE1Dx+4XDwhrlmv1h6B49F+tbl29OQVWFr89NtMm98
VLl1EdipQg2fOR0cmmS80Ea5D6lRcK0dBw0GQP9B/SHjgKuQrTtqF4y1pjXj6V0P
YrXidiBKF2Drtdd8YAYf8RXEU7xjqA9n3EfyjLr7AgMBAAGjggKxMIICrTAdBgNV
HQ4EFgQUP4nEPaMsjpcA6cN4S3NuvvwG4CYwHwYDVR0jBBgwFoAUVajdRdlEE/nR
kvUsY86M+8YUlrgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy8xNDMzZWJmZi1k
ZmQ2LTRjNWMtYjdmZi05OWM4NTEzOWQ0YTgvMjc4YWFiODc4ZjI2NjJjZTE0ZTkw
NWUxOGViY2I3NTIyZjkyYjM2ODRiYzQ4NjViNGQuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvMTZmMWZmZWUtNzQ2MS00Njc0LWJiMDUtZmRk
ZWZhOWEwMmM2LzQ4MzE5NzFhLTkyYjktNDZkZS04OTE2LWE4YjczODdhM2YxZC5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzE2ZjFmZmVlLTc0NjEtNDY3NC1iYjA1
LWZkZGVmYTlhMDJjNi9KbUxPRk9rRjRZNjh0MUl2a3JOb1M4U0dXMDAuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBADHJHgwDQYJKoZIhvcNAQELBQADggEBAEZjMAvda/F1gKcumdDV23If+J1Z
4syx63iBPvbFb+sbb/ARcek2GwMUvDl9K+k9Ax3Gz5sVPgZ8iRmM4Mbjv/KNxf9M
dJ0VjoieMX5UqziZh7T7UcO6t+lD5KeQbo7WKm7TJf01INr8uFM/Deo1XQ0PPluG
cruCVGw+Ewa5fbe8yvKcssa4y4p0f0N7hhoj6dAa+KYeH3pElcKjgrZA20yEZRoE
sSrqz8xYzPt9upjsdzCGZOZMNz6LLUl31hJwLEe9XWwgaQfWBzJ/J/33bALlvYS1
f1xt9d4vT+1xrpsoONh4uiLh8L5O/qFTslhEhe+Bi0t0bsS/XmN/XXQVVH4=
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:35:15 2023 by rpki-client on console.sobornost.net