Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/1708f759-5665-480b-840b-e3b8f6d3ace0.roa
File: 1708f759-5665-480b-840b-e3b8f6d3ace0.roa (raw, json)
Hash identifier: 3DaPr7ipM1fay6d/Ed1OEaEVTUpe/WQPt3SFoqm9fv0=
Subject key identifier: FA:7D:10:43:AB:D9:FD:0F:92:4F:72:20:14:10:0C:35:4A:EB:A2:80
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 304CC682B2CB6676A3000C9A756E552A43654EAE
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/1708f759-5665-480b-840b-e3b8f6d3ace0.roa
Signing time: Sun 24 Sep 2023 00:00:00 +0000
ROA not before: Sun 24 Sep 2023 00:00:00 +0000
ROA not after: Sun 29 Oct 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
30:4c:c6:82:b2:cb:66:76:a3:00:0c:9a:75:6e:55:2a:43:65:4e:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Sep 24 00:00:00 2023 GMT
Not After : Oct 29 23:59:59 2023 GMT
Subject: serialNumber=fe40e362946e9e168d2404b13e42cc80c22eab1509514cb352db66377033673c, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:fd:2e:ed:27:b2:e0:d5:fc:9e:89:91:e0:d9:
9d:dc:e7:25:2a:8b:70:c1:a0:eb:56:20:96:5b:e6:
ee:3b:32:b5:ac:37:cb:fd:ad:e2:b3:7c:11:cd:2e:
1f:f4:b4:62:e8:8c:68:eb:14:d3:fa:e9:8c:68:a0:
ef:84:4f:f5:b1:31:bf:d5:62:24:3e:f1:cf:a1:ea:
ca:b9:fa:bb:9f:5d:36:0b:23:95:5f:e4:23:13:ff:
8d:6c:bd:db:43:c0:8e:32:78:19:d2:a3:6c:23:ae:
0b:1a:cd:3e:07:d0:92:c9:e2:65:1d:96:84:2a:e8:
9c:df:81:e6:6b:43:e8:18:6c:a5:88:9c:6b:1d:ab:
4c:5d:a0:fb:fb:25:e5:09:3d:96:a5:7a:20:32:2f:
b2:70:16:27:b8:ef:45:d7:ca:40:2c:3b:aa:b5:d3:
5f:b2:76:aa:50:aa:77:64:42:a0:e9:33:27:77:d0:
16:3a:94:e9:f0:db:79:a0:cf:b6:05:6a:61:14:ba:
29:2c:15:c0:31:08:9a:18:5f:1d:2f:35:94:e3:f5:
c8:b1:df:b4:b1:d4:0c:02:42:67:cd:4b:78:c4:1b:
4a:0d:61:12:65:d5:ab:56:09:3d:29:46:e8:31:94:
1c:d3:e5:35:0e:bc:df:1a:8b:6c:24:68:6c:15:cc:
31:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:7D:10:43:AB:D9:FD:0F:92:4F:72:20:14:10:0C:35:4A:EB:A2:80
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/1708f759-5665-480b-840b-e3b8f6d3ace0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
06:31:18:f3:13:99:dc:23:3b:2e:dd:40:ef:b5:18:e7:02:22:
6c:4d:65:03:be:7c:bb:ab:13:76:ab:1b:6d:29:b4:12:e7:4f:
0f:27:07:c7:c3:ca:6c:7a:34:ff:33:72:8a:59:0c:b2:2a:b3:
21:cf:4f:fe:a9:4f:ef:a2:38:f0:08:40:aa:fb:e9:f4:01:51:
e7:bc:07:af:bb:9f:99:7f:04:0c:9b:91:66:40:81:84:f5:fd:
a5:07:c5:5f:4a:a4:6c:b0:42:89:f1:f6:40:79:4a:b1:8f:d5:
bf:af:4d:1b:2d:78:3a:f7:6a:e2:5b:cf:d8:eb:03:4e:40:5f:
06:20:01:94:b0:55:f2:6c:c6:91:45:97:43:a5:db:cf:ef:9e:
a3:08:a8:ce:ac:d1:22:84:08:f5:53:ff:5a:e8:00:37:aa:e7:
89:1f:39:e6:80:c1:8a:74:5d:37:bc:b7:35:99:ef:fc:21:f9:
84:48:22:c8:e4:5a:76:c7:3f:6c:9b:db:3c:0f:be:15:14:15:
8a:1f:09:1d:e0:24:61:24:8b:18:5a:92:88:44:d6:f9:12:66:
e6:29:c8:ce:7d:50:bf:35:b9:95:f7:32:a6:b8:e3:37:d7:45:
5e:16:0a:ba:85:1c:8b:76:af:f6:d7:d2:0b:66:47:28:3a:91:
7c:5d:8e:64
-----BEGIN CERTIFICATE-----
MIIF+DCCBOCgAwIBAgIUMEzGgrLLZnajAAyadW5VKkNlTq4wDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyMjc4YWFiODc4ZjI2NjJjZTE0ZTkwNWUxOGViY2I3NTIy
ZjkyYjM2ODRiYzQ4NjViNGQwHhcNMjMwOTI0MDAwMDAwWhcNMjMxMDI5MjM1OTU5
WjB6MUkwRwYDVQQFE0BmZTQwZTM2Mjk0NmU5ZTE2OGQyNDA0YjEzZTQyY2M4MGMy
MmVhYjE1MDk1MTRjYjM1MmRiNjYzNzcwMzM2NzNjMS0wKwYDVQQDEyRjMGNlMjNl
YS00M2ZjLTRiZTQtYmVlZS1jMDE0NzgxMjJhMGUwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQDH/S7tJ7Lg1fyeiZHg2Z3c5yUqi3DBoOtWIJZb5u47MrWs
N8v9reKzfBHNLh/0tGLojGjrFNP66YxooO+ET/WxMb/VYiQ+8c+h6sq5+rufXTYL
I5Vf5CMT/41svdtDwI4yeBnSo2wjrgsazT4H0JLJ4mUdloQq6JzfgeZrQ+gYbKWI
nGsdq0xdoPv7JeUJPZaleiAyL7JwFie470XXykAsO6q101+ydqpQqndkQqDpMyd3
0BY6lOnw23mgz7YFamEUuiksFcAxCJoYXx0vNZTj9cix37Sx1AwCQmfNS3jEG0oN
YRJl1atWCT0pRugxlBzT5TUOvN8ai2wkaGwVzDE1AgMBAAGjggKxMIICrTAdBgNV
HQ4EFgQU+n0QQ6vZ/Q+ST3IgFBAMNUrrooAwHwYDVR0jBBgwFoAUVajdRdlEE/nR
kvUsY86M+8YUlrgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy8xNDMzZWJmZi1k
ZmQ2LTRjNWMtYjdmZi05OWM4NTEzOWQ0YTgvMjc4YWFiODc4ZjI2NjJjZTE0ZTkw
NWUxOGViY2I3NTIyZjkyYjM2ODRiYzQ4NjViNGQuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvMTZmMWZmZWUtNzQ2MS00Njc0LWJiMDUtZmRk
ZWZhOWEwMmM2LzE3MDhmNzU5LTU2NjUtNDgwYi04NDBiLWUzYjhmNmQzYWNlMC5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzE2ZjFmZmVlLTc0NjEtNDY3NC1iYjA1
LWZkZGVmYTlhMDJjNi9KbUxPRk9rRjRZNjh0MUl2a3JOb1M4U0dXMDAuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBADHJHgwDQYJKoZIhvcNAQELBQADggEBAAYxGPMTmdwjOy7dQO+1GOcCImxN
ZQO+fLurE3arG20ptBLnTw8nB8fDymx6NP8zcopZDLIqsyHPT/6pT++iOPAIQKr7
6fQBUee8B6+7n5l/BAybkWZAgYT1/aUHxV9KpGywQonx9kB5SrGP1b+vTRsteDr3
auJbz9jrA05AXwYgAZSwVfJsxpFFl0Ol28/vnqMIqM6s0SKECPVT/1roADeq54kf
OeaAwYp0XTe8tzWZ7/wh+YRIIsjkWnbHP2yb2zwPvhUUFYofCR3gJGEkixhakohE
1vkSZuYpyM59UL81uZX3Mqa44zfXRV4WCrqFHIt2r/bX0gtmRyg6kXxdjmQ=
-----END CERTIFICATE-----
Generated at Sat Apr 26 16:41:51 2025 by rpki-client