Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/d7b649ca-018d-43a0-93db-d5cd378d1e86.roa
File: d7b649ca-018d-43a0-93db-d5cd378d1e86.roa (raw, json)
Hash identifier: /hDd6nKeHTbHVeyD69CwemyF6eV2vOM4t5b0l9gLHt0=
Subject key identifier: C5:22:11:0F:7C:55:84:2C:4F:29:B5:B3:98:3E:4D:E6:44:B5:23:AD
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 616728008F1EFA5ED7A9523C4DF2F32647037307
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/d7b649ca-018d-43a0-93db-d5cd378d1e86.roa
Signing time: Fri 08 Nov 2024 00:00:00 +0000
ROA not before: Fri 08 Nov 2024 00:00:00 +0000
ROA not after: Fri 13 Dec 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
61:67:28:00:8f:1e:fa:5e:d7:a9:52:3c:4d:f2:f3:26:47:03:73:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Nov 8 00:00:00 2024 GMT
Not After : Dec 13 23:59:59 2024 GMT
Subject: serialNumber=f1b24b87fe7f806875613ee58b06c200411130c30e7ad9ee25575d59e28dfd64, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:ff:de:86:e9:98:eb:5c:02:8b:75:4b:c3:d3:
6c:f2:a0:85:81:c1:6f:ab:cb:83:c4:34:e6:bd:15:
c0:93:94:21:2b:ac:d3:bc:04:39:37:a9:3d:41:5e:
57:f7:46:aa:f4:7f:cc:aa:f3:e7:2b:88:9d:fb:6a:
c5:e0:ca:39:54:d9:34:17:28:ba:2f:13:1f:90:f7:
9c:0f:a0:4a:2f:63:e2:0e:41:d8:bb:c2:b5:f8:3b:
c8:27:a4:7d:7e:ba:d1:e9:a0:dc:22:38:ba:35:0a:
8e:5f:33:fd:85:a2:61:61:e9:a5:7b:cc:a0:dc:e2:
aa:b8:0a:c0:3b:5d:ed:ad:6c:7b:1d:27:2b:9a:8e:
c2:9b:00:6e:06:41:2d:ea:22:11:cd:f7:c7:44:3b:
99:3e:91:e9:b5:dc:20:9f:f5:6f:b6:40:ba:a9:d4:
d2:19:79:c7:fd:ec:77:51:ce:98:dc:cc:60:65:67:
f1:12:66:99:f5:21:d8:23:38:31:b2:bf:a8:75:5b:
cb:b1:43:35:24:5f:ef:cf:71:85:15:62:3f:9b:83:
48:0f:99:b9:2b:a7:b6:90:ae:97:07:3a:fe:ad:42:
55:30:62:7c:a7:0d:0c:50:f9:70:56:3e:63:e9:fc:
00:dc:5f:33:4e:ef:f3:54:80:50:88:6a:5d:3a:cc:
1c:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:22:11:0F:7C:55:84:2C:4F:29:B5:B3:98:3E:4D:E6:44:B5:23:AD
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/d7b649ca-018d-43a0-93db-d5cd378d1e86.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
29:90:af:96:d2:83:fa:6e:0a:82:fb:2f:3f:55:61:e6:73:5d:
a1:b8:e1:dc:ee:0f:9e:06:7d:d8:ea:a8:06:63:a8:df:ce:09:
98:d4:75:ff:41:cf:85:1d:0c:04:4f:b9:4a:b1:fa:ab:32:68:
d0:59:fd:f9:23:3d:a6:70:d7:bc:3f:65:f4:26:1b:2f:50:5b:
80:c4:51:53:16:2f:7c:aa:bf:3d:4a:b7:02:99:48:af:be:13:
bc:15:d3:59:e5:cc:6e:d1:ff:c0:5c:6a:52:4a:a6:8e:51:00:
30:df:da:da:5b:a8:93:0f:62:f8:7f:72:24:72:22:bc:45:5d:
00:fd:8e:39:e3:36:be:80:ef:f1:cb:81:88:9c:79:c0:3e:3d:
9d:f9:73:29:f0:16:79:9f:4b:92:39:36:57:9d:ad:24:db:56:
6f:57:2d:34:36:74:52:37:2c:13:9f:ff:d8:a4:e5:aa:ab:41:
25:e2:13:5d:d6:74:64:fe:be:b2:58:10:15:42:95:5b:4f:49:
17:8f:bd:a6:6a:fa:a8:e2:f9:f9:dd:b4:bc:33:14:5a:c1:4f:
9b:75:ee:c8:ae:6e:0b:e2:6d:31:f1:43:66:b5:2a:b6:91:12:
97:b4:54:06:1f:ef:d3:e6:28:51:f2:91:02:79:83:fd:7e:54:
da:f6:47:fe
-----BEGIN CERTIFICATE-----
MIIF+DCCBOCgAwIBAgIUYWcoAI8e+l7XqVI8TfLzJkcDcwcwDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyMjc4YWFiODc4ZjI2NjJjZTE0ZTkwNWUxOGViY2I3NTIy
ZjkyYjM2ODRiYzQ4NjViNGQwHhcNMjQxMTA4MDAwMDAwWhcNMjQxMjEzMjM1OTU5
WjB6MUkwRwYDVQQFE0BmMWIyNGI4N2ZlN2Y4MDY4NzU2MTNlZTU4YjA2YzIwMDQx
MTEzMGMzMGU3YWQ5ZWUyNTU3NWQ1OWUyOGRmZDY0MS0wKwYDVQQDEyRjMGNlMjNl
YS00M2ZjLTRiZTQtYmVlZS1jMDE0NzgxMjJhMGUwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQCc/96G6ZjrXAKLdUvD02zyoIWBwW+ry4PENOa9FcCTlCEr
rNO8BDk3qT1BXlf3Rqr0f8yq8+criJ37asXgyjlU2TQXKLovEx+Q95wPoEovY+IO
Qdi7wrX4O8gnpH1+utHpoNwiOLo1Co5fM/2FomFh6aV7zKDc4qq4CsA7Xe2tbHsd
JyuajsKbAG4GQS3qIhHN98dEO5k+kem13CCf9W+2QLqp1NIZecf97HdRzpjczGBl
Z/ESZpn1IdgjODGyv6h1W8uxQzUkX+/PcYUVYj+bg0gPmbkrp7aQrpcHOv6tQlUw
YnynDQxQ+XBWPmPp/ADcXzNO7/NUgFCIal06zBypAgMBAAGjggKxMIICrTAdBgNV
HQ4EFgQUxSIRD3xVhCxPKbWzmD5N5kS1I60wHwYDVR0jBBgwFoAUVajdRdlEE/nR
kvUsY86M+8YUlrgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy8xNDMzZWJmZi1k
ZmQ2LTRjNWMtYjdmZi05OWM4NTEzOWQ0YTgvMjc4YWFiODc4ZjI2NjJjZTE0ZTkw
NWUxOGViY2I3NTIyZjkyYjM2ODRiYzQ4NjViNGQuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvMTZmMWZmZWUtNzQ2MS00Njc0LWJiMDUtZmRk
ZWZhOWEwMmM2L2Q3YjY0OWNhLTAxOGQtNDNhMC05M2RiLWQ1Y2QzNzhkMWU4Ni5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzE2ZjFmZmVlLTc0NjEtNDY3NC1iYjA1
LWZkZGVmYTlhMDJjNi9KbUxPRk9rRjRZNjh0MUl2a3JOb1M4U0dXMDAuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBADHJHgwDQYJKoZIhvcNAQELBQADggEBACmQr5bSg/puCoL7Lz9VYeZzXaG4
4dzuD54GfdjqqAZjqN/OCZjUdf9Bz4UdDARPuUqx+qsyaNBZ/fkjPaZw17w/ZfQm
Gy9QW4DEUVMWL3yqvz1KtwKZSK++E7wV01nlzG7R/8BcalJKpo5RADDf2tpbqJMP
Yvh/ciRyIrxFXQD9jjnjNr6A7/HLgYicecA+PZ35cynwFnmfS5I5NledrSTbVm9X
LTQ2dFI3LBOf/9ik5aqrQSXiE13WdGT+vrJYEBVClVtPSRePvaZq+qji+fndtLwz
FFrBT5t17siubgvibTHxQ2a1KraREpe0VAYf79PmKFHykQJ5g/1+VNr2R/4=
-----END CERTIFICATE-----
Generated at Sat Apr 26 17:39:30 2025 by rpki-client