Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/920bb73f-249a-4d6f-b745-0d61a9e7a23b.roa
File: 920bb73f-249a-4d6f-b745-0d61a9e7a23b.roa (raw, json)
Hash identifier: LNZAkgMxeaJM3U4KVTCDIkUV+6VYuEx5sggCSrVksYE=
Subject key identifier: D7:D4:FE:C1:6C:C1:5A:FD:77:28:C7:90:94:3B:DF:3E:BE:9A:42:E9
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 56F3425191AD7D8FC389999799D6988EA45210C3
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/920bb73f-249a-4d6f-b745-0d61a9e7a23b.roa
Signing time: Thu 18 Apr 2024 00:00:00 +0000
ROA not before: Thu 18 Apr 2024 00:00:00 +0000
ROA not after: Thu 23 May 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
56:f3:42:51:91:ad:7d:8f:c3:89:99:97:99:d6:98:8e:a4:52:10:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Apr 18 00:00:00 2024 GMT
Not After : May 23 23:59:59 2024 GMT
Subject: serialNumber=ca8a7e1b6494d1dc887601fae4e55ed7e6227c19b7e36a1d3c20ee27653a2c58, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:cf:c8:52:27:8a:4b:8b:36:1b:e2:5b:1a:95:
de:3a:ec:8b:ac:62:62:b5:7d:83:2b:c1:46:b3:1b:
85:42:0f:14:0e:05:15:56:fd:15:e0:76:4e:0b:ef:
93:7a:4a:fe:54:bb:89:91:4b:2e:7d:0b:ff:8c:c2:
da:0b:db:9c:2f:6f:b9:57:b4:2b:ad:e3:77:88:8e:
04:8a:12:f5:0a:4e:c1:5a:a7:76:67:c2:38:b3:89:
db:68:7b:c4:33:c2:90:b0:8a:99:a3:a7:67:6b:85:
64:dd:68:12:a9:95:89:bc:c9:7d:ef:0a:2d:9e:13:
db:91:bb:d8:e0:cc:62:56:22:92:89:d6:be:7a:99:
05:bc:00:75:56:10:f3:27:25:ee:dc:fa:9f:14:ff:
55:cd:97:c3:66:31:49:4f:74:32:b5:55:e3:ef:4d:
17:31:16:20:87:e9:a3:7a:d7:ac:8e:4a:6e:ae:cd:
27:b6:1d:df:38:15:15:7f:47:bb:af:c5:15:03:71:
a4:01:91:45:eb:ef:77:7c:68:7d:bf:a0:2c:e0:e4:
92:23:1c:3a:f4:62:3e:16:21:e7:78:a9:4f:74:24:
17:e8:54:b7:c5:2d:84:bc:19:e6:dd:57:55:4f:e1:
3a:ce:62:1b:1a:c3:ae:47:6b:9f:38:db:06:c3:2b:
a7:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:D4:FE:C1:6C:C1:5A:FD:77:28:C7:90:94:3B:DF:3E:BE:9A:42:E9
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/920bb73f-249a-4d6f-b745-0d61a9e7a23b.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
43:3f:a1:ca:90:51:9d:c6:20:0d:ac:85:29:cf:8e:ce:b6:8a:
fc:3a:64:78:62:fd:cf:92:97:0b:8b:a6:b4:c6:8d:68:51:7b:
ca:2b:0a:03:b6:2f:98:2a:17:06:5e:4c:a8:d6:8f:c4:f7:2d:
fa:f9:fb:bf:31:cd:4f:4a:17:9f:58:ec:de:f0:26:44:b1:12:
ce:53:37:6a:21:1c:6e:0d:f2:20:c0:97:69:33:89:50:3c:62:
f9:05:1c:48:d2:33:4c:ad:2a:00:a3:35:d7:b4:a4:09:b6:50:
74:1a:14:f0:f8:52:1d:eb:a4:50:67:4e:e5:ec:6e:9f:7a:79:
81:bc:f4:19:2b:9d:34:e7:ea:25:e2:b1:d3:3c:69:26:34:7c:
e2:f2:e0:6f:2f:3f:25:20:de:46:fd:ab:33:7c:4d:ce:e6:f2:
f3:af:8c:5c:48:0f:6b:59:9d:66:06:9c:68:cf:68:49:ec:bc:
a8:fc:e8:4a:ba:55:cd:81:b2:22:71:d4:e9:d0:ee:f8:d0:8b:
b7:0a:96:14:e8:ff:32:90:66:0b:3a:a0:26:63:ce:17:4e:14:
ec:cc:e7:3b:8b:5e:6f:59:da:22:e1:1f:3b:ac:d8:05:68:d7:
42:04:10:81:63:6b:a0:01:4b:e7:d2:ac:41:fd:88:08:c6:4e:
de:0c:21:f4
-----BEGIN CERTIFICATE-----
MIIF+DCCBOCgAwIBAgIUVvNCUZGtfY/DiZmXmdaYjqRSEMMwDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyMjc4YWFiODc4ZjI2NjJjZTE0ZTkwNWUxOGViY2I3NTIy
ZjkyYjM2ODRiYzQ4NjViNGQwHhcNMjQwNDE4MDAwMDAwWhcNMjQwNTIzMjM1OTU5
WjB6MUkwRwYDVQQFE0BjYThhN2UxYjY0OTRkMWRjODg3NjAxZmFlNGU1NWVkN2U2
MjI3YzE5YjdlMzZhMWQzYzIwZWUyNzY1M2EyYzU4MS0wKwYDVQQDEyRjMGNlMjNl
YS00M2ZjLTRiZTQtYmVlZS1jMDE0NzgxMjJhMGUwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQDRz8hSJ4pLizYb4lsald467IusYmK1fYMrwUazG4VCDxQO
BRVW/RXgdk4L75N6Sv5Uu4mRSy59C/+MwtoL25wvb7lXtCut43eIjgSKEvUKTsFa
p3Znwjizidtoe8QzwpCwipmjp2drhWTdaBKplYm8yX3vCi2eE9uRu9jgzGJWIpKJ
1r56mQW8AHVWEPMnJe7c+p8U/1XNl8NmMUlPdDK1VePvTRcxFiCH6aN616yOSm6u
zSe2Hd84FRV/R7uvxRUDcaQBkUXr73d8aH2/oCzg5JIjHDr0Yj4WIed4qU90JBfo
VLfFLYS8GebdV1VP4TrOYhsaw65Ha5842wbDK6dzAgMBAAGjggKxMIICrTAdBgNV
HQ4EFgQU19T+wWzBWv13KMeQlDvfPr6aQukwHwYDVR0jBBgwFoAUVajdRdlEE/nR
kvUsY86M+8YUlrgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy8xNDMzZWJmZi1k
ZmQ2LTRjNWMtYjdmZi05OWM4NTEzOWQ0YTgvMjc4YWFiODc4ZjI2NjJjZTE0ZTkw
NWUxOGViY2I3NTIyZjkyYjM2ODRiYzQ4NjViNGQuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvMTZmMWZmZWUtNzQ2MS00Njc0LWJiMDUtZmRk
ZWZhOWEwMmM2LzkyMGJiNzNmLTI0OWEtNGQ2Zi1iNzQ1LTBkNjFhOWU3YTIzYi5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzE2ZjFmZmVlLTc0NjEtNDY3NC1iYjA1
LWZkZGVmYTlhMDJjNi9KbUxPRk9rRjRZNjh0MUl2a3JOb1M4U0dXMDAuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBADHJHgwDQYJKoZIhvcNAQELBQADggEBAEM/ocqQUZ3GIA2shSnPjs62ivw6
ZHhi/c+SlwuLprTGjWhRe8orCgO2L5gqFwZeTKjWj8T3Lfr5+78xzU9KF59Y7N7w
JkSxEs5TN2ohHG4N8iDAl2kziVA8YvkFHEjSM0ytKgCjNde0pAm2UHQaFPD4Uh3r
pFBnTuXsbp96eYG89BkrnTTn6iXisdM8aSY0fOLy4G8vPyUg3kb9qzN8Tc7m8vOv
jFxID2tZnWYGnGjPaEnsvKj86Eq6Vc2BsiJx1OnQ7vjQi7cKlhTo/zKQZgs6oCZj
zhdOFOzM5zuLXm9Z2iLhHzus2AVo10IEEIFja6ABS+fSrEH9iAjGTt4MIfQ=
-----END CERTIFICATE-----
Generated at Sat Apr 26 20:20:07 2025 by rpki-client