Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/a6b16402-e848-4c3f-9c1a-e6ecc6b96104.roa
File: a6b16402-e848-4c3f-9c1a-e6ecc6b96104.roa (raw, json)
Hash identifier: KoUNrMDVRHWr1n2M8dSI0hQuFMrTdjXFRo14GHWc3qQ=
Subject key identifier: 6D:79:CF:88:FA:6C:F0:1D:76:D5:47:F2:1C:B5:A7:CF:3B:86:3B:AC
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 76590110098B402F6D46CE99DA21CFDAAE82FF52
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/a6b16402-e848-4c3f-9c1a-e6ecc6b96104.roa
Signing time: Thu 30 Nov 2023 00:00:00 +0000
ROA not before: Thu 30 Nov 2023 00:00:00 +0000
ROA not after: Thu 04 Jan 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
76:59:01:10:09:8b:40:2f:6d:46:ce:99:da:21:cf:da:ae:82:ff:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Nov 30 00:00:00 2023 GMT
Not After : Jan 4 23:59:59 2024 GMT
Subject: serialNumber=7a2d833079fda8485e1e8c6cd54d57ccd732c517610de941918a463ab0f9f346, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:54:37:fa:4f:03:67:22:72:76:86:f5:49:80:
43:f1:b2:6f:f1:3d:94:ca:38:9a:fc:ed:bf:2e:12:
06:fd:57:7f:48:61:1b:4e:d2:77:db:1e:44:89:c3:
24:84:73:db:11:12:0c:32:93:ba:dc:fd:ca:f5:1e:
59:0c:18:91:b9:a3:98:08:7d:8c:98:fc:33:52:ba:
d3:c2:bc:23:34:4d:58:04:d7:95:82:b4:59:76:02:
ac:bd:ff:a9:fa:59:9c:94:90:b5:01:89:0a:ef:21:
15:70:f5:7b:62:eb:44:51:d4:c0:2f:12:3e:9c:1c:
5a:38:b7:1a:5a:15:0b:fa:bd:07:f0:87:cc:45:93:
88:d8:dd:b4:fe:33:d3:1a:d3:37:8f:53:f3:8c:d6:
27:fd:c6:7d:56:d3:c4:a7:0f:30:8b:ce:05:16:b4:
60:1d:ed:5c:c6:a7:35:f7:e0:b3:82:ae:76:5e:61:
71:cf:09:54:7a:1d:a2:26:3a:08:2c:94:90:08:43:
8f:e9:20:1a:53:7f:38:a9:4a:35:84:bd:a3:7a:89:
03:48:75:d5:44:0f:d0:ce:c7:b7:b9:23:f3:40:f1:
1b:b1:40:f6:e6:77:1a:34:e9:76:12:be:a6:a8:62:
19:31:2a:59:0f:15:a6:05:f4:6a:7e:b5:41:39:58:
f7:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:79:CF:88:FA:6C:F0:1D:76:D5:47:F2:1C:B5:A7:CF:3B:86:3B:AC
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/a6b16402-e848-4c3f-9c1a-e6ecc6b96104.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
b6:bf:55:49:42:41:9e:a1:fb:8e:3a:86:b5:0d:c8:64:07:e8:
61:ac:38:a8:a1:23:21:d2:4b:d8:91:e7:89:05:b6:35:3e:cd:
41:c0:c1:49:9b:0a:b0:05:d8:02:73:b7:6e:d1:c5:ee:db:23:
4e:04:f0:fe:02:cd:94:8f:91:74:b9:1f:78:10:a9:ee:38:35:
a2:05:d6:1e:e2:84:7f:0c:5d:c8:37:2c:85:5a:50:36:b9:ab:
10:98:98:cd:bc:1f:00:92:c5:6a:f7:0f:48:10:73:42:a8:9b:
dd:9a:fe:f8:33:ed:8e:2f:74:09:69:93:ca:53:c8:a8:3a:23:
b5:62:fe:47:41:08:95:c5:cf:aa:a9:61:29:a2:a1:b8:f3:66:
b5:89:f2:71:93:fc:ae:30:4e:23:2c:da:cf:d8:be:85:98:38:
cd:01:2f:d6:0d:92:26:aa:97:36:04:8b:20:66:0a:1f:3f:0b:
e7:46:7c:d1:08:05:d6:28:a5:fe:eb:9f:95:b3:dd:41:2f:21:
49:58:6b:1d:75:4c:ae:1f:19:b7:5b:2a:db:49:07:c3:df:b0:
52:ae:3b:f3:18:42:da:a9:e0:08:7b:6b:1d:c3:e3:b5:56:0c:
a1:9f:21:5a:c2:c4:c1:f2:9b:14:07:7e:22:59:b9:27:d1:18:
63:d3:7c:bb
-----BEGIN CERTIFICATE-----
MIIF+DCCBOCgAwIBAgIUdlkBEAmLQC9tRs6Z2iHP2q6C/1IwDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyMjc4YWFiODc4ZjI2NjJjZTE0ZTkwNWUxOGViY2I3NTIy
ZjkyYjM2ODRiYzQ4NjViNGQwHhcNMjMxMTMwMDAwMDAwWhcNMjQwMTA0MjM1OTU5
WjB6MUkwRwYDVQQFE0A3YTJkODMzMDc5ZmRhODQ4NWUxZThjNmNkNTRkNTdjY2Q3
MzJjNTE3NjEwZGU5NDE5MThhNDYzYWIwZjlmMzQ2MS0wKwYDVQQDEyRjMGNlMjNl
YS00M2ZjLTRiZTQtYmVlZS1jMDE0NzgxMjJhMGUwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQCeVDf6TwNnInJ2hvVJgEPxsm/xPZTKOJr87b8uEgb9V39I
YRtO0nfbHkSJwySEc9sREgwyk7rc/cr1HlkMGJG5o5gIfYyY/DNSutPCvCM0TVgE
15WCtFl2Aqy9/6n6WZyUkLUBiQrvIRVw9Xti60RR1MAvEj6cHFo4txpaFQv6vQfw
h8xFk4jY3bT+M9Ma0zePU/OM1if9xn1W08SnDzCLzgUWtGAd7VzGpzX34LOCrnZe
YXHPCVR6HaImOggslJAIQ4/pIBpTfzipSjWEvaN6iQNIddVED9DOx7e5I/NA8Rux
QPbmdxo06XYSvqaoYhkxKlkPFaYF9Gp+tUE5WPf3AgMBAAGjggKxMIICrTAdBgNV
HQ4EFgQUbXnPiPps8B121UfyHLWnzzuGO6wwHwYDVR0jBBgwFoAUVajdRdlEE/nR
kvUsY86M+8YUlrgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy8xNDMzZWJmZi1k
ZmQ2LTRjNWMtYjdmZi05OWM4NTEzOWQ0YTgvMjc4YWFiODc4ZjI2NjJjZTE0ZTkw
NWUxOGViY2I3NTIyZjkyYjM2ODRiYzQ4NjViNGQuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvMTZmMWZmZWUtNzQ2MS00Njc0LWJiMDUtZmRk
ZWZhOWEwMmM2L2E2YjE2NDAyLWU4NDgtNGMzZi05YzFhLWU2ZWNjNmI5NjEwNC5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzE2ZjFmZmVlLTc0NjEtNDY3NC1iYjA1
LWZkZGVmYTlhMDJjNi9KbUxPRk9rRjRZNjh0MUl2a3JOb1M4U0dXMDAuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBADHJHgwDQYJKoZIhvcNAQELBQADggEBALa/VUlCQZ6h+446hrUNyGQH6GGs
OKihIyHSS9iR54kFtjU+zUHAwUmbCrAF2AJzt27Rxe7bI04E8P4CzZSPkXS5H3gQ
qe44NaIF1h7ihH8MXcg3LIVaUDa5qxCYmM28HwCSxWr3D0gQc0Kom92a/vgz7Y4v
dAlpk8pTyKg6I7Vi/kdBCJXFz6qpYSmiobjzZrWJ8nGT/K4wTiMs2s/YvoWYOM0B
L9YNkiaqlzYEiyBmCh8/C+dGfNEIBdYopf7rn5Wz3UEvIUlYax11TK4fGbdbKttJ
B8PfsFKuO/MYQtqp4Ah7ax3D47VWDKGfIVrCxMHymxQHfiJZuSfRGGPTfLs=
-----END CERTIFICATE-----
Generated at Sat Apr 26 16:04:24 2025 by rpki-client