Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/eb7d8255-5314-4605-b911-c6f6fe239ccd.roa
File: eb7d8255-5314-4605-b911-c6f6fe239ccd.roa (raw, json)
Hash identifier: kmXBXodvVr87hwoBB2/+FJphBU+9DW/N35NJneJNWTo=
Subject key identifier: 06:73:B8:96:FB:66:64:53:35:E2:78:51:D7:71:42:9A:39:DA:70:A4
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 15FFD1B83119FAC42446C5D1F23776C95DB56F09
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/eb7d8255-5314-4605-b911-c6f6fe239ccd.roa
Signing time: Mon 02 Oct 2023 00:00:00 +0000
ROA not before: Mon 02 Oct 2023 00:00:00 +0000
ROA not after: Mon 06 Nov 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
15:ff:d1:b8:31:19:fa:c4:24:46:c5:d1:f2:37:76:c9:5d:b5:6f:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Oct 2 00:00:00 2023 GMT
Not After : Nov 6 23:59:59 2023 GMT
Subject: serialNumber=48df9ae17ee535786cb8247f5c5c21274661e922596bb05fec56a6087d012086, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:d1:76:3f:de:a4:e8:ba:69:c4:e5:98:46:34:
b4:18:3e:2d:05:4f:87:cc:3b:50:1a:86:75:2f:ec:
f4:00:38:40:e4:62:3b:43:ae:11:fb:74:fa:23:c0:
33:68:62:47:50:c6:91:18:6a:4f:84:16:30:55:5f:
ae:bc:ba:a5:75:6e:f3:8e:32:96:2f:87:e6:7f:03:
16:f7:18:56:9f:8c:d1:0a:91:e6:ac:1e:ba:1b:73:
43:4c:46:bd:f6:28:e6:87:4d:1c:22:b6:29:a9:8d:
b8:a1:92:62:f0:e2:83:0c:59:11:83:03:38:37:6d:
e2:30:10:3b:a5:1d:1f:b3:80:74:b6:f7:a7:9f:92:
46:8c:9e:96:35:47:e7:59:9e:38:4d:ff:f1:af:20:
3e:b8:70:07:8c:c2:78:9d:3a:b0:e5:48:27:c6:97:
db:1d:16:04:d7:ae:31:c7:82:cb:e8:eb:fb:92:bb:
9e:36:87:78:04:01:b1:83:32:90:7a:b5:16:a5:38:
e2:5b:33:fd:e9:e2:d1:0b:a1:97:68:f2:e5:45:ee:
4a:f6:bc:42:37:e5:31:49:93:3f:a2:70:38:e7:62:
12:85:eb:2b:89:80:99:b3:4f:62:5e:4a:f4:0d:52:
8f:ce:e8:89:38:42:3d:46:f7:79:3a:d0:28:80:b3:
df:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:73:B8:96:FB:66:64:53:35:E2:78:51:D7:71:42:9A:39:DA:70:A4
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/eb7d8255-5314-4605-b911-c6f6fe239ccd.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
0f:23:db:62:6f:51:90:5f:a3:88:12:62:a1:8c:79:57:03:bf:
2f:13:ef:fb:34:92:ad:fd:66:15:d9:9d:6f:72:17:68:09:29:
e2:05:50:17:fe:c4:e4:4d:77:ac:55:64:d9:3d:43:93:38:2f:
74:25:1e:72:37:7c:1a:86:8d:de:70:8b:93:bd:d9:30:0b:7c:
f0:22:cd:99:14:ff:2d:c0:06:d4:bc:1d:4b:9c:47:9a:cf:57:
9b:3e:46:b7:91:86:b6:bb:ca:56:cf:26:3d:d8:09:fc:dc:51:
6d:2a:4e:e2:b0:81:bf:2d:f7:91:13:e9:13:9c:8a:66:cd:6e:
c7:e9:64:a0:18:fe:9a:9d:a0:bc:c0:be:8c:b8:af:36:5d:9f:
86:6b:88:10:47:a5:70:74:36:92:80:2a:53:5a:b5:00:14:3e:
91:16:a9:bf:bb:6d:f6:b3:77:ba:3b:35:8e:e7:6f:b5:6b:3a:
75:69:c4:46:fb:da:69:a2:9a:00:fc:ad:1e:36:69:62:a7:5a:
5e:1c:24:58:5d:05:5c:34:92:ef:ee:4a:1f:20:3d:2a:b5:39:
b7:16:2a:a2:9a:16:9f:52:f5:a2:55:5f:8a:c2:36:7c:8b:64:
cc:9f:7f:ff:90:59:59:27:bb:0a:5c:8b:b9:db:5b:4a:d4:8d:
a5:87:5b:4f
-----BEGIN CERTIFICATE-----
MIIF+DCCBOCgAwIBAgIUFf/RuDEZ+sQkRsXR8jd2yV21bwkwDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyMjc4YWFiODc4ZjI2NjJjZTE0ZTkwNWUxOGViY2I3NTIy
ZjkyYjM2ODRiYzQ4NjViNGQwHhcNMjMxMDAyMDAwMDAwWhcNMjMxMTA2MjM1OTU5
WjB6MUkwRwYDVQQFE0A0OGRmOWFlMTdlZTUzNTc4NmNiODI0N2Y1YzVjMjEyNzQ2
NjFlOTIyNTk2YmIwNWZlYzU2YTYwODdkMDEyMDg2MS0wKwYDVQQDEyRjMGNlMjNl
YS00M2ZjLTRiZTQtYmVlZS1jMDE0NzgxMjJhMGUwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQDc0XY/3qToumnE5ZhGNLQYPi0FT4fMO1AahnUv7PQAOEDk
YjtDrhH7dPojwDNoYkdQxpEYak+EFjBVX668uqV1bvOOMpYvh+Z/Axb3GFafjNEK
keasHrobc0NMRr32KOaHTRwitimpjbihkmLw4oMMWRGDAzg3beIwEDulHR+zgHS2
96efkkaMnpY1R+dZnjhN//GvID64cAeMwnidOrDlSCfGl9sdFgTXrjHHgsvo6/uS
u542h3gEAbGDMpB6tRalOOJbM/3p4tELoZdo8uVF7kr2vEI35TFJkz+icDjnYhKF
6yuJgJmzT2JeSvQNUo/O6Ik4Qj1G93k60CiAs9/HAgMBAAGjggKxMIICrTAdBgNV
HQ4EFgQUBnO4lvtmZFM14nhR13FCmjnacKQwHwYDVR0jBBgwFoAUVajdRdlEE/nR
kvUsY86M+8YUlrgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy8xNDMzZWJmZi1k
ZmQ2LTRjNWMtYjdmZi05OWM4NTEzOWQ0YTgvMjc4YWFiODc4ZjI2NjJjZTE0ZTkw
NWUxOGViY2I3NTIyZjkyYjM2ODRiYzQ4NjViNGQuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvMTZmMWZmZWUtNzQ2MS00Njc0LWJiMDUtZmRk
ZWZhOWEwMmM2L2ViN2Q4MjU1LTUzMTQtNDYwNS1iOTExLWM2ZjZmZTIzOWNjZC5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzE2ZjFmZmVlLTc0NjEtNDY3NC1iYjA1
LWZkZGVmYTlhMDJjNi9KbUxPRk9rRjRZNjh0MUl2a3JOb1M4U0dXMDAuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBADHJHgwDQYJKoZIhvcNAQELBQADggEBAA8j22JvUZBfo4gSYqGMeVcDvy8T
7/s0kq39ZhXZnW9yF2gJKeIFUBf+xORNd6xVZNk9Q5M4L3QlHnI3fBqGjd5wi5O9
2TALfPAizZkU/y3ABtS8HUucR5rPV5s+RreRhra7ylbPJj3YCfzcUW0qTuKwgb8t
95ET6ROcimbNbsfpZKAY/pqdoLzAvoy4rzZdn4ZriBBHpXB0NpKAKlNatQAUPpEW
qb+7bfazd7o7NY7nb7VrOnVpxEb72mmimgD8rR42aWKnWl4cJFhdBVw0ku/uSh8g
PSq1ObcWKqKaFp9S9aJVX4rCNnyLZMyff/+QWVknuwpci7nbW0rUjaWHW08=
-----END CERTIFICATE-----
Generated at Sat Apr 26 19:20:47 2025 by rpki-client