Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/bca75b6a-6f90-45b4-b7d0-6a0ef403a7a9.roa
File: bca75b6a-6f90-45b4-b7d0-6a0ef403a7a9.roa (raw, json)
Hash identifier: mC8y28RKtJHnyl55T0qxcGejTQn6PIC5Ind4l7lwPh4=
Subject key identifier: 97:2E:35:8E:2E:EF:81:72:15:8A:A0:59:8E:77:31:39:2B:48:1D:07
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 5C810083F13E14C797496A08CF69247F4E884795
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/bca75b6a-6f90-45b4-b7d0-6a0ef403a7a9.roa
Signing time: Sun 08 Oct 2023 00:00:00 +0000
ROA not before: Sun 08 Oct 2023 00:00:00 +0000
ROA not after: Sun 12 Nov 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5c:81:00:83:f1:3e:14:c7:97:49:6a:08:cf:69:24:7f:4e:88:47:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Oct 8 00:00:00 2023 GMT
Not After : Nov 12 23:59:59 2023 GMT
Subject: serialNumber=17b28ee0bce7b3ad6307c9d1c6ca9474bf0df933d82a937f1a7d5133e987f690, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:e9:1a:a5:71:43:91:6f:06:68:42:1c:e3:d6:
0f:4b:2a:f0:57:fc:9e:d7:f2:27:41:89:f6:3c:b7:
3c:7e:70:3d:a8:f1:f8:3c:ad:52:07:5d:dd:0c:1e:
ae:b2:fa:85:2d:7f:bc:5c:b8:dc:91:91:c1:62:be:
84:a1:35:d2:c3:ff:cf:56:b2:98:4b:84:0d:7f:a4:
3b:91:a2:90:bb:b8:f7:06:d6:d5:12:d4:29:95:65:
75:18:57:b0:83:38:d6:de:a0:77:3d:90:19:d8:7d:
c6:e0:31:1e:7d:78:37:77:9b:99:89:80:a8:d1:47:
28:9a:03:b0:b1:0f:2f:c4:01:4f:2b:38:3b:08:2c:
af:aa:68:b6:c2:0f:9e:a3:d8:10:db:84:65:32:19:
f1:af:8c:08:4a:e2:fc:fa:1e:73:7c:50:77:d8:4f:
d3:b1:35:a1:d4:38:db:20:e0:c2:52:33:bb:aa:a8:
a8:49:de:eb:e1:ad:86:11:ba:6c:42:01:08:b5:ac:
3b:1c:fc:b5:ba:bd:ef:af:c2:20:45:fa:10:72:99:
d7:e1:39:c2:68:96:64:52:16:70:55:d2:62:62:1c:
6a:f3:ee:41:c1:4d:2c:a4:19:b9:fa:85:dd:16:d3:
a6:7a:47:a2:11:26:2f:01:1c:1a:e3:bc:f5:b2:a4:
0c:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:2E:35:8E:2E:EF:81:72:15:8A:A0:59:8E:77:31:39:2B:48:1D:07
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/bca75b6a-6f90-45b4-b7d0-6a0ef403a7a9.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
49:51:bc:4e:6f:c0:86:0b:62:62:37:17:1d:ec:1b:51:13:9f:
f9:8f:18:15:eb:6f:ea:a1:59:5b:1d:52:82:39:0f:7d:3f:a9:
ff:1a:e0:dc:07:1a:72:5b:65:04:ae:7c:ff:e0:56:14:78:35:
9f:af:f6:07:9d:26:dd:7b:c0:24:ea:f8:5f:e3:ab:e5:6b:c5:
3e:fc:7e:f4:fc:93:22:0b:84:d9:9a:2b:88:03:c5:94:8b:e6:
5e:61:2a:8c:19:fe:ab:38:1d:c1:0a:96:63:ca:2c:62:dd:e1:
f8:8e:1b:f6:a2:ba:3c:a8:13:7a:65:8f:80:17:97:07:82:ed:
6c:05:f4:15:fd:54:e9:86:89:a6:10:d3:8d:18:64:2a:3d:9d:
d0:67:a6:4b:cb:32:00:e2:fc:c6:44:01:80:5a:07:69:19:dd:
2a:32:3c:a3:ce:e7:36:ab:40:6c:2c:36:63:f3:d9:ae:3f:83:
63:08:7d:8d:bf:bd:d3:be:e6:19:94:1f:5c:89:35:52:56:0a:
49:59:15:28:ee:d4:59:6f:b2:8d:45:6e:34:a6:8e:58:78:93:
a4:eb:19:8e:82:57:9d:db:97:56:02:a2:46:cd:8c:37:a1:65:
94:b7:26:f7:13:86:ae:1f:33:63:74:ec:b9:19:f0:82:43:19:
f7:f0:7a:a3
-----BEGIN CERTIFICATE-----
MIIF+DCCBOCgAwIBAgIUXIEAg/E+FMeXSWoIz2kkf06IR5UwDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyMjc4YWFiODc4ZjI2NjJjZTE0ZTkwNWUxOGViY2I3NTIy
ZjkyYjM2ODRiYzQ4NjViNGQwHhcNMjMxMDA4MDAwMDAwWhcNMjMxMTEyMjM1OTU5
WjB6MUkwRwYDVQQFE0AxN2IyOGVlMGJjZTdiM2FkNjMwN2M5ZDFjNmNhOTQ3NGJm
MGRmOTMzZDgyYTkzN2YxYTdkNTEzM2U5ODdmNjkwMS0wKwYDVQQDEyRjMGNlMjNl
YS00M2ZjLTRiZTQtYmVlZS1jMDE0NzgxMjJhMGUwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQCj6RqlcUORbwZoQhzj1g9LKvBX/J7X8idBifY8tzx+cD2o
8fg8rVIHXd0MHq6y+oUtf7xcuNyRkcFivoShNdLD/89WsphLhA1/pDuRopC7uPcG
1tUS1CmVZXUYV7CDONbeoHc9kBnYfcbgMR59eDd3m5mJgKjRRyiaA7CxDy/EAU8r
ODsILK+qaLbCD56j2BDbhGUyGfGvjAhK4vz6HnN8UHfYT9OxNaHUONsg4MJSM7uq
qKhJ3uvhrYYRumxCAQi1rDsc/LW6ve+vwiBF+hBymdfhOcJolmRSFnBV0mJiHGrz
7kHBTSykGbn6hd0W06Z6R6IRJi8BHBrjvPWypAxxAgMBAAGjggKxMIICrTAdBgNV
HQ4EFgQUly41ji7vgXIViqBZjncxOStIHQcwHwYDVR0jBBgwFoAUVajdRdlEE/nR
kvUsY86M+8YUlrgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy8xNDMzZWJmZi1k
ZmQ2LTRjNWMtYjdmZi05OWM4NTEzOWQ0YTgvMjc4YWFiODc4ZjI2NjJjZTE0ZTkw
NWUxOGViY2I3NTIyZjkyYjM2ODRiYzQ4NjViNGQuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvMTZmMWZmZWUtNzQ2MS00Njc0LWJiMDUtZmRk
ZWZhOWEwMmM2L2JjYTc1YjZhLTZmOTAtNDViNC1iN2QwLTZhMGVmNDAzYTdhOS5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzE2ZjFmZmVlLTc0NjEtNDY3NC1iYjA1
LWZkZGVmYTlhMDJjNi9KbUxPRk9rRjRZNjh0MUl2a3JOb1M4U0dXMDAuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBADHJHgwDQYJKoZIhvcNAQELBQADggEBAElRvE5vwIYLYmI3Fx3sG1ETn/mP
GBXrb+qhWVsdUoI5D30/qf8a4NwHGnJbZQSufP/gVhR4NZ+v9gedJt17wCTq+F/j
q+VrxT78fvT8kyILhNmaK4gDxZSL5l5hKowZ/qs4HcEKlmPKLGLd4fiOG/aiujyo
E3plj4AXlweC7WwF9BX9VOmGiaYQ040YZCo9ndBnpkvLMgDi/MZEAYBaB2kZ3Soy
PKPO5zarQGwsNmPz2a4/g2MIfY2/vdO+5hmUH1yJNVJWCklZFSju1Flvso1FbjSm
jlh4k6TrGY6CV53bl1YCokbNjDehZZS3JvcThq4fM2N07LkZ8IJDGffweqM=
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:35:12 2023 by rpki-client on console.sobornost.net