Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/dca70731-8578-4cbb-956d-39d5e3bc12c7.roa
File: dca70731-8578-4cbb-956d-39d5e3bc12c7.roa (raw, json)
Hash identifier: 4lqMsvIez5bitCCa1mpqS4r7EE2IWdS2bNdNZx7m7jc=
Subject key identifier: 77:9D:B3:86:5F:73:49:3C:C6:82:F1:53:1F:54:3A:00:27:F7:62:87
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 754A32DF1E07D55B51A95821637A39653D0212F5
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/dca70731-8578-4cbb-956d-39d5e3bc12c7.roa
Signing time: Sat 17 Aug 2024 00:00:00 +0000
ROA not before: Sat 17 Aug 2024 00:00:00 +0000
ROA not after: Sat 21 Sep 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
75:4a:32:df:1e:07:d5:5b:51:a9:58:21:63:7a:39:65:3d:02:12:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Aug 17 00:00:00 2024 GMT
Not After : Sep 21 23:59:59 2024 GMT
Subject: serialNumber=1e32cc30c8fc7c1305a68c8124d96af8a6c99d4889753f96ac35ff73e626677b, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:83:79:a0:3d:15:7e:63:4d:5c:8d:fa:f6:83:
bc:a1:6e:00:5e:7e:8a:e2:79:d1:c6:6d:6a:77:98:
9d:42:14:d7:ad:91:e9:6d:a5:0c:56:2b:d7:9f:10:
da:32:b2:c0:42:4a:d7:b4:75:db:be:b2:d3:ee:55:
2d:0c:95:1b:f7:d5:f6:96:e4:1f:86:78:da:25:ff:
d0:34:b1:e9:3a:36:2c:67:17:23:a2:a6:ec:ae:c1:
7c:b2:11:8c:70:c8:b1:65:e0:91:9b:f9:6d:c3:fb:
57:e8:99:f6:57:af:d7:0b:6e:34:57:74:8b:72:34:
4b:66:d2:cc:97:23:19:1f:7c:f8:11:7b:a1:50:75:
3a:5f:83:ad:56:b2:70:0e:b8:98:c7:21:8f:ff:15:
11:6f:15:83:7c:ab:a9:9f:a1:25:c8:bf:6f:fb:48:
ad:a7:53:cc:c7:53:bd:e2:14:d6:35:a2:35:ef:93:
74:16:55:b3:69:ac:05:e7:a7:0c:52:3b:24:d8:b0:
48:66:aa:c0:ea:8c:01:f0:18:83:0a:7f:14:a4:38:
1a:e6:58:1c:b8:73:8b:c7:5a:c5:51:ff:5b:97:d4:
e5:9d:80:85:4b:67:f6:40:20:5c:a8:96:97:3d:6e:
55:13:5f:c4:c1:89:fd:df:89:19:67:1d:ce:e1:94:
f3:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:9D:B3:86:5F:73:49:3C:C6:82:F1:53:1F:54:3A:00:27:F7:62:87
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/dca70731-8578-4cbb-956d-39d5e3bc12c7.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
77:9a:92:0c:3a:48:d2:8f:e2:ba:47:3f:c8:60:b2:5e:bc:d3:
cc:12:fe:71:9f:e5:07:15:67:30:4b:39:b2:bb:67:b5:a9:81:
ca:fc:d2:fe:30:bc:cc:cd:db:87:67:0b:a2:6b:0a:af:90:14:
15:0a:c3:f8:0a:34:05:2e:48:c2:32:ca:29:39:7c:c5:4b:77:
5c:38:a3:28:5c:b9:fd:c5:1e:4d:a3:e5:f5:d0:e3:68:5f:c1:
00:61:60:35:e3:f8:cd:69:e8:3f:ca:6b:ce:12:41:61:36:04:
78:fd:7c:6a:33:da:67:54:94:03:3c:51:ba:c3:52:cc:fb:ad:
ba:f4:2d:8a:51:65:55:bb:59:8d:8b:6f:ca:c7:e2:5b:91:51:
0f:30:c2:1f:51:ba:b4:f7:57:4a:c7:83:16:53:89:14:d1:40:
fd:d3:b5:f3:ac:a9:27:c5:90:36:2d:da:34:81:90:0c:84:61:
9c:24:0d:35:89:6c:90:d4:af:7c:a9:81:ba:f3:6d:a4:38:31:
53:3c:d6:4c:87:0b:73:ea:77:ef:da:ee:d9:4a:04:af:d7:cb:
e2:c1:af:a8:3e:19:6f:4c:5a:3d:cb:e7:dd:bf:1b:be:f9:a2:
6a:64:ee:29:54:55:3c:d0:bb:33:d9:0d:f4:6b:a2:13:c6:f2:
9e:1c:90:ff
-----BEGIN CERTIFICATE-----
MIIF+DCCBOCgAwIBAgIUdUoy3x4H1VtRqVghY3o5ZT0CEvUwDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyMjc4YWFiODc4ZjI2NjJjZTE0ZTkwNWUxOGViY2I3NTIy
ZjkyYjM2ODRiYzQ4NjViNGQwHhcNMjQwODE3MDAwMDAwWhcNMjQwOTIxMjM1OTU5
WjB6MUkwRwYDVQQFE0AxZTMyY2MzMGM4ZmM3YzEzMDVhNjhjODEyNGQ5NmFmOGE2
Yzk5ZDQ4ODk3NTNmOTZhYzM1ZmY3M2U2MjY2NzdiMS0wKwYDVQQDEyRjMGNlMjNl
YS00M2ZjLTRiZTQtYmVlZS1jMDE0NzgxMjJhMGUwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQDfg3mgPRV+Y01cjfr2g7yhbgBeforiedHGbWp3mJ1CFNet
keltpQxWK9efENoyssBCSte0ddu+stPuVS0MlRv31faW5B+GeNol/9A0sek6Nixn
FyOipuyuwXyyEYxwyLFl4JGb+W3D+1fomfZXr9cLbjRXdItyNEtm0syXIxkffPgR
e6FQdTpfg61WsnAOuJjHIY//FRFvFYN8q6mfoSXIv2/7SK2nU8zHU73iFNY1ojXv
k3QWVbNprAXnpwxSOyTYsEhmqsDqjAHwGIMKfxSkOBrmWBy4c4vHWsVR/1uX1OWd
gIVLZ/ZAIFyolpc9blUTX8TBif3fiRlnHc7hlPO9AgMBAAGjggKxMIICrTAdBgNV
HQ4EFgQUd52zhl9zSTzGgvFTH1Q6ACf3YocwHwYDVR0jBBgwFoAUVajdRdlEE/nR
kvUsY86M+8YUlrgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy8xNDMzZWJmZi1k
ZmQ2LTRjNWMtYjdmZi05OWM4NTEzOWQ0YTgvMjc4YWFiODc4ZjI2NjJjZTE0ZTkw
NWUxOGViY2I3NTIyZjkyYjM2ODRiYzQ4NjViNGQuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvMTZmMWZmZWUtNzQ2MS00Njc0LWJiMDUtZmRk
ZWZhOWEwMmM2L2RjYTcwNzMxLTg1NzgtNGNiYi05NTZkLTM5ZDVlM2JjMTJjNy5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzE2ZjFmZmVlLTc0NjEtNDY3NC1iYjA1
LWZkZGVmYTlhMDJjNi9KbUxPRk9rRjRZNjh0MUl2a3JOb1M4U0dXMDAuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBADHJHgwDQYJKoZIhvcNAQELBQADggEBAHeakgw6SNKP4rpHP8hgsl6808wS
/nGf5QcVZzBLObK7Z7Wpgcr80v4wvMzN24dnC6JrCq+QFBUKw/gKNAUuSMIyyik5
fMVLd1w4oyhcuf3FHk2j5fXQ42hfwQBhYDXj+M1p6D/Ka84SQWE2BHj9fGoz2mdU
lAM8UbrDUsz7rbr0LYpRZVW7WY2Lb8rH4luRUQ8wwh9RurT3V0rHgxZTiRTRQP3T
tfOsqSfFkDYt2jSBkAyEYZwkDTWJbJDUr3ypgbrzbaQ4MVM81kyHC3Pqd+/a7tlK
BK/Xy+LBr6g+GW9MWj3L592/G775ompk7ilUVTzQuzPZDfRrohPG8p4ckP8=
-----END CERTIFICATE-----
Generated at Sat Apr 26 16:31:07 2025 by rpki-client