Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/4db1e67b-455e-4130-b233-2318f6f4cb0c.roa
File: 4db1e67b-455e-4130-b233-2318f6f4cb0c.roa (raw, json)
Hash identifier: oWFxqwFymDUy2M9taJtByde7QaIxi6EHhwCvW+D5w0Q=
Subject key identifier: D6:E5:32:CD:97:26:53:89:94:AD:10:8B:65:0B:23:6B:94:23:A4:A9
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 0A2FA8AC71A9D153E0942680C37B0E78C132FC52
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/4db1e67b-455e-4130-b233-2318f6f4cb0c.roa
Signing time: Tue 23 Jul 2024 00:00:00 +0000
ROA not before: Tue 23 Jul 2024 00:00:00 +0000
ROA not after: Tue 27 Aug 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0a:2f:a8:ac:71:a9:d1:53:e0:94:26:80:c3:7b:0e:78:c1:32:fc:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Jul 23 00:00:00 2024 GMT
Not After : Aug 27 23:59:59 2024 GMT
Subject: serialNumber=b0b6e6e98b714dab9709d1edb4b87c3d55718357b83a259bff924a058da6ec35, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:ee:f0:ba:f2:20:ba:41:ba:93:83:86:b2:bd:
85:8d:2d:2d:26:24:00:ac:bb:96:58:08:a4:77:49:
a0:97:24:61:5e:25:45:a0:35:34:a8:d3:0a:ab:75:
da:3b:28:98:d2:87:4a:ce:e3:9a:32:95:16:4c:6f:
9d:87:fe:e8:44:f6:21:0c:22:55:5e:47:cf:57:3f:
94:f6:9a:9c:5c:05:b8:32:8e:88:f2:92:09:57:4d:
60:44:05:71:75:c0:48:73:ab:2c:c6:f9:b2:8d:53:
0b:96:7c:59:20:40:88:1b:44:a9:f9:a7:a4:db:ee:
86:d3:2a:7e:86:fd:4c:b5:ae:f2:de:18:33:d5:4e:
88:4c:9a:ca:f6:6f:40:5d:71:a3:52:65:6a:9b:f3:
12:e0:9b:94:ff:63:f8:b2:b2:5e:27:3a:1f:f9:07:
bd:62:e7:33:1a:f7:1f:1d:09:42:cf:b5:06:34:46:
af:3a:e4:01:09:00:f7:e9:e8:cd:fa:6c:1d:d0:2f:
3c:dc:06:23:d4:f7:2e:91:cd:4a:80:12:f8:b0:71:
4f:5a:52:21:30:59:95:95:87:9c:10:a1:fb:4e:86:
21:4a:d7:c4:71:9b:d9:7b:1b:90:e8:4e:ee:4c:16:
b4:8d:b5:94:3f:e2:d0:17:9d:48:28:13:48:7c:f0:
26:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:E5:32:CD:97:26:53:89:94:AD:10:8B:65:0B:23:6B:94:23:A4:A9
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/4db1e67b-455e-4130-b233-2318f6f4cb0c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
50:f0:e2:ea:ca:85:31:a6:64:4d:ce:bb:39:0f:39:f6:a5:dc:
be:f6:45:e1:0a:5c:b3:54:53:24:39:80:4f:af:b4:91:88:a6:
48:c6:c3:07:88:d5:2d:cb:11:7f:14:b7:31:3c:c5:01:71:f7:
3c:6f:5d:0f:3a:eb:f3:66:ad:e8:05:61:68:25:49:86:55:b4:
a4:53:85:c4:91:3a:22:b8:19:3f:a4:da:50:91:e1:11:1e:05:
5c:79:3e:81:db:b3:ea:00:5f:40:8f:2f:c5:85:28:0d:c2:33:
92:6f:4a:ca:bd:6f:68:cc:8b:23:e4:e2:69:88:33:7a:ff:bb:
55:72:27:d6:d1:20:15:b5:6f:fa:ab:7e:58:0a:6d:31:05:cb:
7f:d1:0c:ae:d6:05:ac:61:87:1e:d9:fd:c1:3d:9b:22:56:61:
c5:68:44:28:ca:64:6a:aa:d2:ed:35:d9:1a:81:05:5d:7c:42:
6a:3f:f0:11:dd:8f:dd:47:52:fa:d6:cc:8d:bb:30:64:16:7e:
64:23:3d:c2:1c:cf:2d:46:0b:1b:7f:43:50:9a:e8:af:4e:60:
d1:8c:a1:94:a2:a2:7b:d5:41:c0:85:4a:a2:94:9f:aa:55:9b:
c2:f5:6f:26:43:da:dd:88:63:da:97:db:75:d8:52:3f:ff:24:
4a:55:97:2a
-----BEGIN CERTIFICATE-----
MIIF+DCCBOCgAwIBAgIUCi+orHGp0VPglCaAw3sOeMEy/FIwDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyMjc4YWFiODc4ZjI2NjJjZTE0ZTkwNWUxOGViY2I3NTIy
ZjkyYjM2ODRiYzQ4NjViNGQwHhcNMjQwNzIzMDAwMDAwWhcNMjQwODI3MjM1OTU5
WjB6MUkwRwYDVQQFE0BiMGI2ZTZlOThiNzE0ZGFiOTcwOWQxZWRiNGI4N2MzZDU1
NzE4MzU3YjgzYTI1OWJmZjkyNGEwNThkYTZlYzM1MS0wKwYDVQQDEyRjMGNlMjNl
YS00M2ZjLTRiZTQtYmVlZS1jMDE0NzgxMjJhMGUwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQDg7vC68iC6QbqTg4ayvYWNLS0mJACsu5ZYCKR3SaCXJGFe
JUWgNTSo0wqrddo7KJjSh0rO45oylRZMb52H/uhE9iEMIlVeR89XP5T2mpxcBbgy
jojykglXTWBEBXF1wEhzqyzG+bKNUwuWfFkgQIgbRKn5p6Tb7obTKn6G/Uy1rvLe
GDPVTohMmsr2b0BdcaNSZWqb8xLgm5T/Y/iysl4nOh/5B71i5zMa9x8dCULPtQY0
Rq865AEJAPfp6M36bB3QLzzcBiPU9y6RzUqAEviwcU9aUiEwWZWVh5wQoftOhiFK
18Rxm9l7G5DoTu5MFrSNtZQ/4tAXnUgoE0h88CbTAgMBAAGjggKxMIICrTAdBgNV
HQ4EFgQU1uUyzZcmU4mUrRCLZQsja5QjpKkwHwYDVR0jBBgwFoAUVajdRdlEE/nR
kvUsY86M+8YUlrgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy8xNDMzZWJmZi1k
ZmQ2LTRjNWMtYjdmZi05OWM4NTEzOWQ0YTgvMjc4YWFiODc4ZjI2NjJjZTE0ZTkw
NWUxOGViY2I3NTIyZjkyYjM2ODRiYzQ4NjViNGQuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvMTZmMWZmZWUtNzQ2MS00Njc0LWJiMDUtZmRk
ZWZhOWEwMmM2LzRkYjFlNjdiLTQ1NWUtNDEzMC1iMjMzLTIzMThmNmY0Y2IwYy5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzE2ZjFmZmVlLTc0NjEtNDY3NC1iYjA1
LWZkZGVmYTlhMDJjNi9KbUxPRk9rRjRZNjh0MUl2a3JOb1M4U0dXMDAuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBADHJHgwDQYJKoZIhvcNAQELBQADggEBAFDw4urKhTGmZE3OuzkPOfal3L72
ReEKXLNUUyQ5gE+vtJGIpkjGwweI1S3LEX8UtzE8xQFx9zxvXQ866/NmregFYWgl
SYZVtKRThcSROiK4GT+k2lCR4REeBVx5PoHbs+oAX0CPL8WFKA3CM5JvSsq9b2jM
iyPk4mmIM3r/u1VyJ9bRIBW1b/qrflgKbTEFy3/RDK7WBaxhhx7Z/cE9myJWYcVo
RCjKZGqq0u012RqBBV18Qmo/8BHdj91HUvrWzI27MGQWfmQjPcIczy1GCxt/Q1Ca
6K9OYNGMoZSionvVQcCFSqKUn6pVm8L1byZD2t2IY9qX23XYUj//JEpVlyo=
-----END CERTIFICATE-----
Generated at Sat Apr 26 17:38:48 2025 by rpki-client