Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/e9a09bd6-92cc-46b4-8aeb-8fb437722314.roa
File: e9a09bd6-92cc-46b4-8aeb-8fb437722314.roa (raw, json)
Hash identifier: wLam7+F//+XcE0BAGmLynmq9uiFWEYK13L6c2eP9jH8=
Subject key identifier: DF:B2:77:03:99:C6:4F:B6:4E:81:A1:9C:60:DA:27:F6:C0:FC:78:ED
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 223DA92A95E2CF283A788ECB0C060632E205839F
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/e9a09bd6-92cc-46b4-8aeb-8fb437722314.roa
Signing time: Thu 20 Jul 2023 00:00:00 +0000
ROA not before: Thu 20 Jul 2023 00:00:00 +0000
ROA not after: Thu 24 Aug 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
22:3d:a9:2a:95:e2:cf:28:3a:78:8e:cb:0c:06:06:32:e2:05:83:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Jul 20 00:00:00 2023 GMT
Not After : Aug 24 23:59:59 2023 GMT
Subject: serialNumber=2240743cfe4de173d1bb4f175ba1baf337395a6c12bf44eca13f27ba8d003721, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:57:a9:25:ff:77:d6:d0:e0:d8:a3:62:88:e6:
62:dc:6c:25:95:6e:f5:86:20:c1:7e:12:c4:b9:f9:
cc:d3:50:af:6f:63:e4:01:76:2a:23:49:ae:82:8d:
21:14:2b:75:d4:3a:bd:9d:1b:55:f4:78:75:99:b0:
17:75:2c:99:7b:55:c6:57:8e:6f:13:61:b8:e9:dd:
e0:84:94:43:9d:5b:fe:32:9b:f1:70:fc:00:3b:0c:
c6:1e:da:61:86:dc:42:86:6e:58:bb:0a:bf:81:52:
67:4d:e8:3e:f4:fb:a2:c2:f6:eb:3b:cc:3c:2c:0f:
1f:85:42:94:80:d2:38:5c:39:d2:c3:bb:87:43:e6:
23:62:2f:68:e4:0f:a0:5a:a6:a5:18:67:8e:6b:bd:
47:a5:a6:59:fd:82:6f:ab:36:ee:0d:6a:67:9c:36:
55:28:a7:07:58:41:3b:ad:86:fc:71:3a:97:bf:85:
39:8f:5d:2b:dc:29:ec:89:33:74:cc:22:dd:43:71:
67:09:d1:3f:1c:80:02:71:9e:1a:29:48:42:b5:c0:
9f:6c:af:ce:23:73:71:5f:42:84:d0:20:9f:02:f5:
7c:05:69:f4:31:55:0e:9b:bf:e0:fe:45:d5:f4:f3:
0d:54:3b:36:f1:b3:64:77:b3:b4:c7:d2:ad:46:88:
f4:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:B2:77:03:99:C6:4F:B6:4E:81:A1:9C:60:DA:27:F6:C0:FC:78:ED
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/e9a09bd6-92cc-46b4-8aeb-8fb437722314.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
80:b7:1b:7c:58:fb:be:ec:ec:92:6e:65:7a:93:3a:87:23:ec:
f4:2a:d0:2b:13:69:95:2f:f1:60:b1:86:3c:e4:9f:0f:55:86:
ed:7e:be:a4:b7:84:e4:d1:1a:53:79:81:25:de:dd:36:ac:0a:
dc:6d:d3:00:f1:23:4d:13:7a:91:a1:bf:0f:8f:9c:cb:05:63:
ca:b2:fb:0d:43:19:36:e0:35:ed:06:cd:45:6a:90:9a:e2:19:
cf:4e:21:ac:09:52:62:3e:57:0b:a2:7e:23:63:9f:3c:d2:a2:
29:fb:80:3a:92:27:db:54:41:3f:29:6c:ec:34:8a:27:f1:e7:
fb:6d:84:35:be:13:10:53:78:d1:74:ec:b7:de:97:be:d1:98:
49:7d:52:03:d4:d2:cd:d1:15:8f:87:5e:14:85:80:56:14:39:
95:13:f5:63:aa:3b:9b:a8:a4:19:d1:47:1b:4c:7c:90:95:16:
68:e8:4a:05:ec:ae:12:af:45:93:80:cf:5f:d9:53:2b:6d:36:
80:03:63:51:23:27:69:cf:c1:b9:ec:0a:36:78:84:de:fa:dc:
a8:33:3f:cd:bf:63:a5:03:7f:78:e1:cc:14:da:2e:82:d9:c2:
0b:fd:75:91:dc:8b:eb:e2:62:f6:94:33:0b:ff:7c:85:1e:3f:
70:58:73:d7
-----BEGIN CERTIFICATE-----
MIIF+DCCBOCgAwIBAgIUIj2pKpXizyg6eI7LDAYGMuIFg58wDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyMjc4YWFiODc4ZjI2NjJjZTE0ZTkwNWUxOGViY2I3NTIy
ZjkyYjM2ODRiYzQ4NjViNGQwHhcNMjMwNzIwMDAwMDAwWhcNMjMwODI0MjM1OTU5
WjB6MUkwRwYDVQQFE0AyMjQwNzQzY2ZlNGRlMTczZDFiYjRmMTc1YmExYmFmMzM3
Mzk1YTZjMTJiZjQ0ZWNhMTNmMjdiYThkMDAzNzIxMS0wKwYDVQQDEyRjMGNlMjNl
YS00M2ZjLTRiZTQtYmVlZS1jMDE0NzgxMjJhMGUwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQC/V6kl/3fW0ODYo2KI5mLcbCWVbvWGIMF+EsS5+czTUK9v
Y+QBdiojSa6CjSEUK3XUOr2dG1X0eHWZsBd1LJl7VcZXjm8TYbjp3eCElEOdW/4y
m/Fw/AA7DMYe2mGG3EKGbli7Cr+BUmdN6D70+6LC9us7zDwsDx+FQpSA0jhcOdLD
u4dD5iNiL2jkD6BapqUYZ45rvUelpln9gm+rNu4NamecNlUopwdYQTuthvxxOpe/
hTmPXSvcKeyJM3TMIt1DcWcJ0T8cgAJxnhopSEK1wJ9sr84jc3FfQoTQIJ8C9XwF
afQxVQ6bv+D+RdX08w1UOzbxs2R3s7TH0q1GiPSvAgMBAAGjggKxMIICrTAdBgNV
HQ4EFgQU37J3A5nGT7ZOgaGcYNon9sD8eO0wHwYDVR0jBBgwFoAUVajdRdlEE/nR
kvUsY86M+8YUlrgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy8xNDMzZWJmZi1k
ZmQ2LTRjNWMtYjdmZi05OWM4NTEzOWQ0YTgvMjc4YWFiODc4ZjI2NjJjZTE0ZTkw
NWUxOGViY2I3NTIyZjkyYjM2ODRiYzQ4NjViNGQuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvMTZmMWZmZWUtNzQ2MS00Njc0LWJiMDUtZmRk
ZWZhOWEwMmM2L2U5YTA5YmQ2LTkyY2MtNDZiNC04YWViLThmYjQzNzcyMjMxNC5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzE2ZjFmZmVlLTc0NjEtNDY3NC1iYjA1
LWZkZGVmYTlhMDJjNi9KbUxPRk9rRjRZNjh0MUl2a3JOb1M4U0dXMDAuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBADHJHgwDQYJKoZIhvcNAQELBQADggEBAIC3G3xY+77s7JJuZXqTOocj7PQq
0CsTaZUv8WCxhjzknw9Vhu1+vqS3hOTRGlN5gSXe3TasCtxt0wDxI00TepGhvw+P
nMsFY8qy+w1DGTbgNe0GzUVqkJriGc9OIawJUmI+VwuifiNjnzzSoin7gDqSJ9tU
QT8pbOw0iifx5/tthDW+ExBTeNF07Lfel77RmEl9UgPU0s3RFY+HXhSFgFYUOZUT
9WOqO5uopBnRRxtMfJCVFmjoSgXsrhKvRZOAz1/ZUyttNoADY1EjJ2nPwbnsCjZ4
hN763KgzP82/Y6UDf3jhzBTaLoLZwgv9dZHci+viYvaUMwv/fIUeP3BYc9c=
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:35:17 2023 by rpki-client on console.sobornost.net