Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/4a241df8-d30b-43bc-8957-f82b481b794a.roa
File: 4a241df8-d30b-43bc-8957-f82b481b794a.roa (raw, json)
Hash identifier: k3YdwGtdO9zLosS0/9RDhm8Erk+8qAKExFxciVaRBYE=
Subject key identifier: 60:D8:B4:74:EC:57:05:1E:CC:AD:F4:BE:DE:61:73:9B:A2:C5:7C:D7
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 710CC6F2463B86C7BF8594BBDE960339AA30ED66
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/4a241df8-d30b-43bc-8957-f82b481b794a.roa
Signing time: Sat 30 Sep 2023 00:00:00 +0000
ROA not before: Sat 30 Sep 2023 00:00:00 +0000
ROA not after: Sat 04 Nov 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
71:0c:c6:f2:46:3b:86:c7:bf:85:94:bb:de:96:03:39:aa:30:ed:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Sep 30 00:00:00 2023 GMT
Not After : Nov 4 23:59:59 2023 GMT
Subject: serialNumber=1b1e46d3ab4f9e5c6bc6b4bbc6e69c8f6621d78a411584bb1133b396fd61006b, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:50:37:fa:d3:68:83:e4:bd:18:7a:24:30:4e:
4f:c3:78:c4:f8:76:e4:03:0d:b0:8e:58:41:1a:9d:
57:1e:8a:8f:f1:dd:7b:2a:15:5d:55:94:eb:76:01:
1d:5a:1a:31:d3:65:42:e3:37:d5:8b:25:68:3d:c3:
af:85:90:ec:83:63:ec:61:73:83:e0:33:2e:f3:d8:
b2:bb:75:e8:3c:05:2b:20:6e:01:62:d1:eb:4f:db:
7e:5c:01:15:4a:fc:69:4c:68:b6:66:c7:eb:ad:cb:
7a:4a:cd:ce:7e:5f:69:89:71:7c:40:60:f3:68:dc:
04:b6:2b:c1:91:4f:32:fd:c7:20:2f:11:ea:fb:71:
2d:61:c7:48:1c:d6:f2:4a:e9:b9:35:06:96:ae:b0:
9c:be:2f:cf:cd:41:1d:d0:0d:63:d1:9e:a1:4a:85:
96:84:52:39:c3:ec:da:1c:45:bb:6d:62:73:a1:5d:
8f:80:98:ee:d2:8d:57:02:fe:c1:7d:ef:02:ef:f7:
57:5d:c0:a0:5e:59:fd:54:a9:93:a7:cc:00:05:56:
26:ac:e5:06:b4:32:ff:d5:f7:b5:59:2e:54:7d:ea:
62:3a:1e:05:c4:bc:18:48:22:55:c2:c6:b7:a1:7e:
f8:ba:6c:95:2d:36:f5:ec:bb:a4:e1:90:f5:46:08:
3a:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:D8:B4:74:EC:57:05:1E:CC:AD:F4:BE:DE:61:73:9B:A2:C5:7C:D7
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/4a241df8-d30b-43bc-8957-f82b481b794a.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
32:c4:e3:a4:ce:07:97:a0:64:bb:aa:01:ff:9b:8a:5a:af:76:
6e:08:34:e3:e4:13:f7:2b:a0:f4:70:da:52:27:f4:76:60:51:
c1:6d:a9:af:58:de:40:9e:01:dc:0c:ea:f3:71:8d:2a:c5:75:
59:91:8b:f5:94:9b:03:af:f8:3e:a9:7e:20:98:8e:1f:eb:b7:
c2:ab:c0:8c:7d:d7:bd:04:5a:ce:f9:dc:7e:d2:11:ea:d2:08:
96:dd:b7:82:56:96:66:d8:8d:38:42:57:45:48:2a:13:5e:af:
4f:61:95:9a:4e:ac:1b:bf:ff:fd:f3:96:32:90:f0:06:10:a0:
1e:47:16:b9:da:64:92:47:93:23:89:61:e3:22:cc:79:89:9c:
3c:92:21:4b:d3:0b:5b:5e:08:36:51:e3:69:87:e7:43:15:11:
37:2f:0f:0e:64:e7:3d:2b:83:d4:1e:c3:2d:32:df:fa:0e:37:
e0:72:81:a0:b0:6d:91:45:88:97:e8:85:3d:ad:c9:03:24:0f:
c6:40:a3:ad:bc:83:0f:5a:e4:04:08:70:cd:9f:d5:9d:ef:18:
c1:1b:1d:4c:9a:f7:4e:39:f4:97:f6:65:1b:c2:d3:19:0b:8f:
8e:36:f1:f0:43:3f:9d:42:48:7d:30:e4:b6:cd:d9:f9:05:95:
b5:95:67:8b
-----BEGIN CERTIFICATE-----
MIIF+DCCBOCgAwIBAgIUcQzG8kY7hse/hZS73pYDOaow7WYwDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyMjc4YWFiODc4ZjI2NjJjZTE0ZTkwNWUxOGViY2I3NTIy
ZjkyYjM2ODRiYzQ4NjViNGQwHhcNMjMwOTMwMDAwMDAwWhcNMjMxMTA0MjM1OTU5
WjB6MUkwRwYDVQQFE0AxYjFlNDZkM2FiNGY5ZTVjNmJjNmI0YmJjNmU2OWM4ZjY2
MjFkNzhhNDExNTg0YmIxMTMzYjM5NmZkNjEwMDZiMS0wKwYDVQQDEyRjMGNlMjNl
YS00M2ZjLTRiZTQtYmVlZS1jMDE0NzgxMjJhMGUwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQDDUDf602iD5L0YeiQwTk/DeMT4duQDDbCOWEEanVceio/x
3XsqFV1VlOt2AR1aGjHTZULjN9WLJWg9w6+FkOyDY+xhc4PgMy7z2LK7deg8BSsg
bgFi0etP235cARVK/GlMaLZmx+uty3pKzc5+X2mJcXxAYPNo3AS2K8GRTzL9xyAv
Eer7cS1hx0gc1vJK6bk1BpausJy+L8/NQR3QDWPRnqFKhZaEUjnD7NocRbttYnOh
XY+AmO7SjVcC/sF97wLv91ddwKBeWf1UqZOnzAAFVias5Qa0Mv/V97VZLlR96mI6
HgXEvBhIIlXCxrehfvi6bJUtNvXsu6ThkPVGCDqhAgMBAAGjggKxMIICrTAdBgNV
HQ4EFgQUYNi0dOxXBR7MrfS+3mFzm6LFfNcwHwYDVR0jBBgwFoAUVajdRdlEE/nR
kvUsY86M+8YUlrgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy8xNDMzZWJmZi1k
ZmQ2LTRjNWMtYjdmZi05OWM4NTEzOWQ0YTgvMjc4YWFiODc4ZjI2NjJjZTE0ZTkw
NWUxOGViY2I3NTIyZjkyYjM2ODRiYzQ4NjViNGQuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvMTZmMWZmZWUtNzQ2MS00Njc0LWJiMDUtZmRk
ZWZhOWEwMmM2LzRhMjQxZGY4LWQzMGItNDNiYy04OTU3LWY4MmI0ODFiNzk0YS5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzE2ZjFmZmVlLTc0NjEtNDY3NC1iYjA1
LWZkZGVmYTlhMDJjNi9KbUxPRk9rRjRZNjh0MUl2a3JOb1M4U0dXMDAuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBADHJHgwDQYJKoZIhvcNAQELBQADggEBADLE46TOB5egZLuqAf+bilqvdm4I
NOPkE/croPRw2lIn9HZgUcFtqa9Y3kCeAdwM6vNxjSrFdVmRi/WUmwOv+D6pfiCY
jh/rt8KrwIx9170EWs753H7SEerSCJbdt4JWlmbYjThCV0VIKhNer09hlZpOrBu/
//3zljKQ8AYQoB5HFrnaZJJHkyOJYeMizHmJnDySIUvTC1teCDZR42mH50MVETcv
Dw5k5z0rg9Qewy0y3/oON+BygaCwbZFFiJfohT2tyQMkD8ZAo628gw9a5AQIcM2f
1Z3vGMEbHUya90459Jf2ZRvC0xkLj4428fBDP51CSH0w5LbN2fkFlbWVZ4s=
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:35:15 2023 by rpki-client on console.sobornost.net