Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/36aa8bab-e3df-424b-aa64-1ad7c1e8a2cd.roa
File: 36aa8bab-e3df-424b-aa64-1ad7c1e8a2cd.roa (raw, json)
Hash identifier: MWe3fxp3YyS0J0OTOI5dJMjCViQ0HXMmMJd+fMHredI=
Subject key identifier: A6:DF:64:F6:26:43:30:17:7D:20:EE:AE:FA:4F:C1:84:C9:05:8B:DB
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 5A55410E2152CE810D0076A0E9B443C1ECD3454E
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/36aa8bab-e3df-424b-aa64-1ad7c1e8a2cd.roa
Signing time: Sat 12 Oct 2024 00:00:00 +0000
ROA not before: Sat 12 Oct 2024 00:00:00 +0000
ROA not after: Sat 16 Nov 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5a:55:41:0e:21:52:ce:81:0d:00:76:a0:e9:b4:43:c1:ec:d3:45:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Oct 12 00:00:00 2024 GMT
Not After : Nov 16 23:59:59 2024 GMT
Subject: serialNumber=48be3cb8953019f850263b52f903f385d15a27cfdfb8f20ca803d906bf333c86, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:f8:9f:4a:22:77:11:78:11:71:42:05:0e:dc:
3c:a0:b5:03:fa:f3:50:af:c4:92:0a:18:b4:ea:ef:
72:de:0d:95:a0:26:af:75:82:a4:02:8b:58:07:32:
b0:1d:e7:54:39:f6:a3:f8:0a:69:a3:82:25:fa:8c:
2c:68:84:79:fa:ad:d9:6f:d3:b0:75:13:6e:7c:c4:
42:7f:13:a1:50:bb:1e:8a:3b:b3:21:41:fb:c4:77:
19:c9:66:e1:eb:f2:7c:2a:22:16:d1:df:fa:bd:9b:
86:0f:d0:6e:5a:f7:4f:be:37:56:a1:ea:0e:89:b7:
fa:26:17:11:2e:7c:7a:a8:47:ac:fc:33:eb:b5:75:
85:7c:2a:6c:29:4a:c4:1f:45:fd:41:f8:a6:44:2f:
c9:9b:59:3a:0e:db:04:d8:3d:25:33:17:a7:1b:77:
a1:26:01:d5:83:51:78:58:3e:f1:52:9e:ca:9e:ab:
76:76:84:e4:00:03:08:0a:df:79:29:34:97:c8:23:
e4:61:5e:22:60:d0:0c:f4:78:b4:d6:17:49:05:c4:
1a:49:d2:88:46:fe:72:e2:bc:b2:6d:9b:30:b6:37:
7b:9c:e5:0e:33:52:75:58:68:a4:e1:ae:db:29:be:
b6:4f:b2:6d:5b:73:9e:96:8a:35:c8:b1:38:3c:d9:
b5:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:DF:64:F6:26:43:30:17:7D:20:EE:AE:FA:4F:C1:84:C9:05:8B:DB
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/36aa8bab-e3df-424b-aa64-1ad7c1e8a2cd.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
78:7b:77:dd:b3:49:11:d2:84:a6:65:50:40:35:40:e1:25:6e:
51:c9:ed:ea:28:af:88:c3:e2:06:79:c6:f7:a8:76:68:6a:da:
29:d4:42:49:ee:25:b1:96:1b:25:5d:71:fb:89:42:95:8f:90:
cc:dd:4c:41:f3:1a:65:ef:70:bb:bf:4c:e8:43:a3:cd:b1:48:
4f:ef:d8:a1:e3:69:59:c8:bf:e1:fd:55:4f:fe:db:e8:61:24:
96:14:1f:75:c4:4d:bf:d2:15:54:6b:73:95:90:8e:9d:7e:82:
65:1c:84:93:04:ce:6c:78:61:52:af:d8:ad:4b:3a:17:ac:e5:
c3:fc:91:86:1b:eb:4f:eb:02:e0:3d:12:11:a3:79:25:f2:09:
94:2b:ed:bc:7d:3c:2f:c8:c6:d2:a6:f3:d2:56:fb:6a:94:88:
5f:38:bd:b4:4d:5c:7b:7d:da:7a:1b:a9:a6:ed:eb:4f:7a:05:
ba:2f:1f:b4:91:2f:07:c9:38:70:08:5a:98:e2:5e:39:6a:8c:
42:ca:4f:ff:9b:88:fb:b1:d3:f8:a3:15:71:b3:0e:bd:d0:f8:
68:95:f3:90:1b:bd:bd:90:d0:82:a0:66:22:85:36:08:62:af:
2b:89:41:9d:d0:e0:a5:d3:14:5f:69:87:41:71:ec:5d:1f:89:
ba:29:53:f7
-----BEGIN CERTIFICATE-----
MIIF+DCCBOCgAwIBAgIUWlVBDiFSzoENAHag6bRDwezTRU4wDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyMjc4YWFiODc4ZjI2NjJjZTE0ZTkwNWUxOGViY2I3NTIy
ZjkyYjM2ODRiYzQ4NjViNGQwHhcNMjQxMDEyMDAwMDAwWhcNMjQxMTE2MjM1OTU5
WjB6MUkwRwYDVQQFE0A0OGJlM2NiODk1MzAxOWY4NTAyNjNiNTJmOTAzZjM4NWQx
NWEyN2NmZGZiOGYyMGNhODAzZDkwNmJmMzMzYzg2MS0wKwYDVQQDEyRjMGNlMjNl
YS00M2ZjLTRiZTQtYmVlZS1jMDE0NzgxMjJhMGUwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQC3+J9KIncReBFxQgUO3DygtQP681CvxJIKGLTq73LeDZWg
Jq91gqQCi1gHMrAd51Q59qP4CmmjgiX6jCxohHn6rdlv07B1E258xEJ/E6FQux6K
O7MhQfvEdxnJZuHr8nwqIhbR3/q9m4YP0G5a90++N1ah6g6Jt/omFxEufHqoR6z8
M+u1dYV8KmwpSsQfRf1B+KZEL8mbWToO2wTYPSUzF6cbd6EmAdWDUXhYPvFSnsqe
q3Z2hOQAAwgK33kpNJfII+RhXiJg0Az0eLTWF0kFxBpJ0ohG/nLivLJtmzC2N3uc
5Q4zUnVYaKThrtspvrZPsm1bc56WijXIsTg82bWlAgMBAAGjggKxMIICrTAdBgNV
HQ4EFgQUpt9k9iZDMBd9IO6u+k/BhMkFi9swHwYDVR0jBBgwFoAUVajdRdlEE/nR
kvUsY86M+8YUlrgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy8xNDMzZWJmZi1k
ZmQ2LTRjNWMtYjdmZi05OWM4NTEzOWQ0YTgvMjc4YWFiODc4ZjI2NjJjZTE0ZTkw
NWUxOGViY2I3NTIyZjkyYjM2ODRiYzQ4NjViNGQuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvMTZmMWZmZWUtNzQ2MS00Njc0LWJiMDUtZmRk
ZWZhOWEwMmM2LzM2YWE4YmFiLWUzZGYtNDI0Yi1hYTY0LTFhZDdjMWU4YTJjZC5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzE2ZjFmZmVlLTc0NjEtNDY3NC1iYjA1
LWZkZGVmYTlhMDJjNi9KbUxPRk9rRjRZNjh0MUl2a3JOb1M4U0dXMDAuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBADHJHgwDQYJKoZIhvcNAQELBQADggEBAHh7d92zSRHShKZlUEA1QOElblHJ
7eoor4jD4gZ5xveodmhq2inUQknuJbGWGyVdcfuJQpWPkMzdTEHzGmXvcLu/TOhD
o82xSE/v2KHjaVnIv+H9VU/+2+hhJJYUH3XETb/SFVRrc5WQjp1+gmUchJMEzmx4
YVKv2K1LOhes5cP8kYYb60/rAuA9EhGjeSXyCZQr7bx9PC/IxtKm89JW+2qUiF84
vbRNXHt92nobqabt6096BbovH7SRLwfJOHAIWpjiXjlqjELKT/+biPux0/ijFXGz
Dr3Q+GiV85Abvb2Q0IKgZiKFNghiryuJQZ3Q4KXTFF9ph0Fx7F0fibopU/c=
-----END CERTIFICATE-----
Generated at Thu May 8 19:09:49 2025 by rpki-client