Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/6e72bf0e-1485-4bdf-9d42-8f4a14fc425a.roa
File: 6e72bf0e-1485-4bdf-9d42-8f4a14fc425a.roa (raw, json)
Hash identifier: kwxELVwEyc0XX4NWhL8pvn3vyDQWyID6dKHlsdx42rw=
Subject key identifier: 10:9B:7F:2B:35:1F:60:CA:E4:54:3A:A8:67:54:3D:04:A7:57:2B:61
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 2C85306072F8C655D344CA044C6CB7CAD6CF7C1C
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/6e72bf0e-1485-4bdf-9d42-8f4a14fc425a.roa
Signing time: Thu 26 Oct 2023 00:00:00 +0000
ROA not before: Thu 26 Oct 2023 00:00:00 +0000
ROA not after: Thu 30 Nov 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2c:85:30:60:72:f8:c6:55:d3:44:ca:04:4c:6c:b7:ca:d6:cf:7c:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Oct 26 00:00:00 2023 GMT
Not After : Nov 30 23:59:59 2023 GMT
Subject: serialNumber=bc19b932444a934f16c4a0dace42e210009c3577a362dfdfe8a824962eca2759, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:7b:e9:e0:d2:59:03:14:d7:d9:12:15:66:68:
80:cf:4d:00:6e:c4:d8:cc:50:c4:7e:1e:28:f0:12:
10:1a:64:2f:36:11:5d:c1:48:e3:fd:52:01:5e:93:
82:30:2d:c1:3d:07:45:82:01:f1:71:11:13:32:60:
87:6c:86:b0:e5:ee:62:b5:be:5a:45:02:82:58:36:
d0:0d:f1:2e:fb:9a:5c:a8:4f:3d:45:b6:30:6c:5a:
73:60:9b:23:6c:20:e6:90:50:8b:40:69:a1:ef:1e:
b6:ad:b8:56:71:a4:01:78:c4:ef:d3:fc:47:87:da:
c1:24:5f:a8:e5:09:77:fe:fe:82:e7:df:ca:4d:3e:
78:84:56:ec:62:3b:65:ce:a1:fa:24:d5:20:fb:6f:
78:b5:c2:da:23:f1:3e:13:81:f4:b9:41:85:a4:a9:
7d:a3:fc:51:73:b5:1a:33:47:ef:c9:e3:48:3c:e9:
cb:20:e1:9f:04:b8:93:11:82:14:44:6e:66:e2:e1:
2e:e0:a0:47:7f:73:5b:4d:03:ee:6e:19:ae:c1:dd:
d9:72:eb:e9:fd:47:a5:0f:f6:2d:80:31:26:ab:9f:
2b:79:ac:40:cd:6f:86:ef:c7:4c:a1:ea:d6:01:fc:
e5:0d:6f:ed:5d:71:7e:04:a4:0b:12:83:8c:87:e4:
2b:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:9B:7F:2B:35:1F:60:CA:E4:54:3A:A8:67:54:3D:04:A7:57:2B:61
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/6e72bf0e-1485-4bdf-9d42-8f4a14fc425a.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
35:06:87:6d:24:21:97:0a:f1:51:e6:ad:fc:02:9d:55:92:d4:
b7:35:c1:ca:9c:bf:2f:9f:34:7c:ed:ff:af:9b:cf:e0:70:6a:
a1:58:1f:7f:b2:d6:e6:4f:14:ea:ff:2c:40:d4:20:76:88:4d:
4e:18:5c:bc:12:09:ac:be:1b:08:41:00:75:88:2b:2d:5a:d9:
36:d4:49:28:1c:75:98:e8:57:25:92:2e:57:5b:c2:a5:09:c0:
63:9f:fd:ca:40:d4:1b:36:56:cd:cb:8b:a8:c1:94:0d:ec:f7:
45:52:cf:d5:2e:76:bb:b1:a1:3f:46:8a:9b:82:5f:e1:55:0e:
4d:88:6f:a5:af:da:39:c5:61:62:34:8a:3b:69:5a:0f:d4:83:
56:c4:9c:b4:75:c0:62:b9:7f:fe:5b:e4:57:6c:42:23:fd:fa:
95:33:45:6f:cc:e1:e7:46:9e:f9:98:ea:5a:e5:97:c1:a8:a3:
e9:37:6f:c4:4a:db:f9:d8:fb:7b:12:f5:7e:08:1c:f0:3a:5b:
36:e9:7f:38:5c:1c:a9:cf:30:d6:a0:3b:86:f5:68:8e:37:3a:
ff:43:4e:6e:3f:06:98:7d:e2:90:5e:ef:45:64:b8:3c:8a:40:
10:1f:3a:0c:4a:17:26:53:6d:04:aa:a1:91:38:aa:95:8c:56:
87:28:c6:0b
-----BEGIN CERTIFICATE-----
MIIF+DCCBOCgAwIBAgIULIUwYHL4xlXTRMoETGy3ytbPfBwwDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyMjc4YWFiODc4ZjI2NjJjZTE0ZTkwNWUxOGViY2I3NTIy
ZjkyYjM2ODRiYzQ4NjViNGQwHhcNMjMxMDI2MDAwMDAwWhcNMjMxMTMwMjM1OTU5
WjB6MUkwRwYDVQQFE0BiYzE5YjkzMjQ0NGE5MzRmMTZjNGEwZGFjZTQyZTIxMDAw
OWMzNTc3YTM2MmRmZGZlOGE4MjQ5NjJlY2EyNzU5MS0wKwYDVQQDEyRjMGNlMjNl
YS00M2ZjLTRiZTQtYmVlZS1jMDE0NzgxMjJhMGUwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQDIe+ng0lkDFNfZEhVmaIDPTQBuxNjMUMR+HijwEhAaZC82
EV3BSOP9UgFek4IwLcE9B0WCAfFxERMyYIdshrDl7mK1vlpFAoJYNtAN8S77mlyo
Tz1FtjBsWnNgmyNsIOaQUItAaaHvHratuFZxpAF4xO/T/EeH2sEkX6jlCXf+/oLn
38pNPniEVuxiO2XOofok1SD7b3i1wtoj8T4TgfS5QYWkqX2j/FFztRozR+/J40g8
6csg4Z8EuJMRghREbmbi4S7goEd/c1tNA+5uGa7B3dly6+n9R6UP9i2AMSarnyt5
rEDNb4bvx0yh6tYB/OUNb+1dcX4EpAsSg4yH5Ct5AgMBAAGjggKxMIICrTAdBgNV
HQ4EFgQUEJt/KzUfYMrkVDqoZ1Q9BKdXK2EwHwYDVR0jBBgwFoAUVajdRdlEE/nR
kvUsY86M+8YUlrgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy8xNDMzZWJmZi1k
ZmQ2LTRjNWMtYjdmZi05OWM4NTEzOWQ0YTgvMjc4YWFiODc4ZjI2NjJjZTE0ZTkw
NWUxOGViY2I3NTIyZjkyYjM2ODRiYzQ4NjViNGQuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvMTZmMWZmZWUtNzQ2MS00Njc0LWJiMDUtZmRk
ZWZhOWEwMmM2LzZlNzJiZjBlLTE0ODUtNGJkZi05ZDQyLThmNGExNGZjNDI1YS5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzE2ZjFmZmVlLTc0NjEtNDY3NC1iYjA1
LWZkZGVmYTlhMDJjNi9KbUxPRk9rRjRZNjh0MUl2a3JOb1M4U0dXMDAuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBADHJHgwDQYJKoZIhvcNAQELBQADggEBADUGh20kIZcK8VHmrfwCnVWS1Lc1
wcqcvy+fNHzt/6+bz+BwaqFYH3+y1uZPFOr/LEDUIHaITU4YXLwSCay+GwhBAHWI
Ky1a2TbUSSgcdZjoVyWSLldbwqUJwGOf/cpA1Bs2Vs3Li6jBlA3s90VSz9Uudrux
oT9GipuCX+FVDk2Ib6Wv2jnFYWI0ijtpWg/Ug1bEnLR1wGK5f/5b5FdsQiP9+pUz
RW/M4edGnvmY6lrll8Goo+k3b8RK2/nY+3sS9X4IHPA6WzbpfzhcHKnPMNagO4b1
aI43Ov9DTm4/Bph94pBe70VkuDyKQBAfOgxKFyZTbQSqoZE4qpWMVocoxgs=
-----END CERTIFICATE-----
Generated at Sat Apr 26 18:11:14 2025 by rpki-client