Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/c0351444-b946-43a4-8738-adea4befb792.roa
File: c0351444-b946-43a4-8738-adea4befb792.roa (raw, json)
Hash identifier: QmNsJYm2h8K1Sndx8x1Ovt5hmqaKs3jxBKIh3tkErpo=
Subject key identifier: 34:B3:C8:AD:1D:C4:79:A3:79:9F:B6:A3:5C:F9:5D:CC:BE:4C:12:82
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 58DDD5A12CDC6879D2EEFBDB4FD9ABB2047AEF07
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/c0351444-b946-43a4-8738-adea4befb792.roa
Signing time: Mon 04 Dec 2023 00:00:00 +0000
ROA not before: Mon 04 Dec 2023 00:00:00 +0000
ROA not after: Mon 08 Jan 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
58:dd:d5:a1:2c:dc:68:79:d2:ee:fb:db:4f:d9:ab:b2:04:7a:ef:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Dec 4 00:00:00 2023 GMT
Not After : Jan 8 23:59:59 2024 GMT
Subject: serialNumber=b19bf3ab754aacdcf209a457e89616a9b0c1800c5b629bf926248d5b3425a228, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:1b:07:29:58:44:9f:63:9f:7a:ac:eb:54:ed:
c0:d8:20:16:d6:46:9c:c5:6f:59:b9:f4:84:05:ac:
ea:bc:e1:0a:72:d6:54:73:81:30:25:b0:fa:a1:ec:
c6:6b:53:fb:82:41:2a:b2:a4:e1:0c:46:6a:18:63:
d1:af:a5:50:b0:75:92:a5:05:7b:01:a5:07:b1:29:
39:7e:9e:97:be:41:3c:75:e6:b9:90:5e:52:f6:e9:
73:84:44:00:c3:d8:86:d1:e4:57:81:8e:58:e2:70:
45:0b:14:54:09:3b:09:e9:81:03:69:96:81:ed:c9:
15:7d:1b:ca:cd:26:22:14:58:99:0c:62:c0:e4:ec:
56:90:c3:d3:67:1a:83:9c:f7:e7:99:63:2e:a5:6f:
0c:f1:8c:19:2a:da:e4:3b:94:6a:ac:b9:67:4d:49:
49:d5:21:7a:98:51:a2:1e:f8:95:e2:b7:d7:5b:a0:
59:36:30:6d:2c:e2:fa:33:77:f9:06:b4:be:eb:12:
d0:2e:d9:77:0e:53:09:9c:ba:00:1d:35:25:ce:d5:
45:fe:0d:4c:9c:3e:dc:c0:67:11:08:dc:f6:12:75:
42:e7:5e:7d:4c:d7:03:26:19:13:02:fd:13:6b:8e:
fd:69:d6:a3:41:96:2c:5d:5b:b6:77:c6:a5:5e:99:
b5:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:B3:C8:AD:1D:C4:79:A3:79:9F:B6:A3:5C:F9:5D:CC:BE:4C:12:82
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/c0351444-b946-43a4-8738-adea4befb792.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
23:87:4a:26:34:2c:15:23:ef:d8:84:8c:da:49:27:0c:26:a9:
12:c7:d3:0d:11:17:ac:53:2c:52:23:ef:6b:ba:af:8e:e8:26:
06:6d:b8:9e:cd:c2:f6:32:a0:ad:01:ef:15:6c:4a:13:03:ee:
fc:1d:dc:52:93:f9:21:5c:c9:9d:68:44:05:cb:30:8f:e9:d1:
14:5b:d6:2e:9e:5f:67:7e:a2:3a:b8:f3:37:3c:39:aa:dd:a1:
0b:b3:83:cc:ba:92:d5:81:e6:81:97:26:b7:86:84:8c:77:4c:
2f:26:87:20:de:62:e5:3d:f3:fe:41:02:df:72:87:ef:de:1f:
c3:a6:27:ee:dc:d7:9b:71:3a:92:77:3d:17:1e:ef:ee:6f:2b:
02:36:a5:66:45:27:cd:88:69:d6:5b:8e:84:f1:68:f7:ef:98:
10:a4:f9:69:aa:95:81:2b:6c:79:cf:ce:8a:94:a6:ae:b7:91:
20:34:5e:37:3e:9b:99:54:9b:99:0f:12:db:60:8c:95:41:65:
37:db:45:22:41:c2:ed:67:ef:8e:ea:7e:75:ee:7b:7e:8e:b2:
8e:18:54:2a:97:6a:91:a2:8b:b4:d7:e5:c4:b1:27:86:c1:67:
c6:09:11:bf:45:c6:4c:dd:8a:31:ff:b2:c5:f3:fd:02:02:34:
85:a8:e4:06
-----BEGIN CERTIFICATE-----
MIIF+DCCBOCgAwIBAgIUWN3VoSzcaHnS7vvbT9mrsgR67wcwDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyMjc4YWFiODc4ZjI2NjJjZTE0ZTkwNWUxOGViY2I3NTIy
ZjkyYjM2ODRiYzQ4NjViNGQwHhcNMjMxMjA0MDAwMDAwWhcNMjQwMTA4MjM1OTU5
WjB6MUkwRwYDVQQFE0BiMTliZjNhYjc1NGFhY2RjZjIwOWE0NTdlODk2MTZhOWIw
YzE4MDBjNWI2MjliZjkyNjI0OGQ1YjM0MjVhMjI4MS0wKwYDVQQDEyRjMGNlMjNl
YS00M2ZjLTRiZTQtYmVlZS1jMDE0NzgxMjJhMGUwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQCfGwcpWESfY596rOtU7cDYIBbWRpzFb1m59IQFrOq84Qpy
1lRzgTAlsPqh7MZrU/uCQSqypOEMRmoYY9GvpVCwdZKlBXsBpQexKTl+npe+QTx1
5rmQXlL26XOERADD2IbR5FeBjljicEULFFQJOwnpgQNploHtyRV9G8rNJiIUWJkM
YsDk7FaQw9NnGoOc9+eZYy6lbwzxjBkq2uQ7lGqsuWdNSUnVIXqYUaIe+JXit9db
oFk2MG0s4vozd/kGtL7rEtAu2XcOUwmcugAdNSXO1UX+DUycPtzAZxEI3PYSdULn
Xn1M1wMmGRMC/RNrjv1p1qNBlixdW7Z3xqVembVtAgMBAAGjggKxMIICrTAdBgNV
HQ4EFgQUNLPIrR3EeaN5n7ajXPldzL5MEoIwHwYDVR0jBBgwFoAUVajdRdlEE/nR
kvUsY86M+8YUlrgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy8xNDMzZWJmZi1k
ZmQ2LTRjNWMtYjdmZi05OWM4NTEzOWQ0YTgvMjc4YWFiODc4ZjI2NjJjZTE0ZTkw
NWUxOGViY2I3NTIyZjkyYjM2ODRiYzQ4NjViNGQuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvMTZmMWZmZWUtNzQ2MS00Njc0LWJiMDUtZmRk
ZWZhOWEwMmM2L2MwMzUxNDQ0LWI5NDYtNDNhNC04NzM4LWFkZWE0YmVmYjc5Mi5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzE2ZjFmZmVlLTc0NjEtNDY3NC1iYjA1
LWZkZGVmYTlhMDJjNi9KbUxPRk9rRjRZNjh0MUl2a3JOb1M4U0dXMDAuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBADHJHgwDQYJKoZIhvcNAQELBQADggEBACOHSiY0LBUj79iEjNpJJwwmqRLH
0w0RF6xTLFIj72u6r47oJgZtuJ7NwvYyoK0B7xVsShMD7vwd3FKT+SFcyZ1oRAXL
MI/p0RRb1i6eX2d+ojq48zc8OardoQuzg8y6ktWB5oGXJreGhIx3TC8mhyDeYuU9
8/5BAt9yh+/eH8OmJ+7c15txOpJ3PRce7+5vKwI2pWZFJ82IadZbjoTxaPfvmBCk
+WmqlYErbHnPzoqUpq63kSA0Xjc+m5lUm5kPEttgjJVBZTfbRSJBwu1n747qfnXu
e36Oso4YVCqXapGii7TX5cSxJ4bBZ8YJEb9FxkzdijH/ssXz/QICNIWo5AY=
-----END CERTIFICATE-----
Generated at Sat Apr 26 18:10:33 2025 by rpki-client