Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/8acb63af-7a44-479c-8a8d-d2d453f40d2b.roa
File: 8acb63af-7a44-479c-8a8d-d2d453f40d2b.roa (raw, json)
Hash identifier: X4vwbV4YKYe31mjFRc839sBhWWOTXHTYJbbwNXoxMxI=
Subject key identifier: 7A:A0:EF:F4:01:49:23:6A:D9:CA:25:B4:09:38:45:E5:56:8B:F4:4F
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 20368CF60B6C957F5AA63CF0B6A1C328054D3D0A
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/8acb63af-7a44-479c-8a8d-d2d453f40d2b.roa
Signing time: Thu 08 Aug 2024 00:00:00 +0000
ROA not before: Thu 08 Aug 2024 00:00:00 +0000
ROA not after: Thu 12 Sep 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
20:36:8c:f6:0b:6c:95:7f:5a:a6:3c:f0:b6:a1:c3:28:05:4d:3d:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Aug 8 00:00:00 2024 GMT
Not After : Sep 12 23:59:59 2024 GMT
Subject: serialNumber=5bf8a0d3d910091e383c82bd8aa2007cf61ed7cc594abd3ddab6d8851e7ed7e7, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:1f:bd:8f:06:9c:91:e8:24:41:92:10:a5:d9:
d1:4e:87:50:44:db:df:35:92:53:1e:a7:39:18:b6:
2b:c2:03:57:e1:d2:c8:72:51:98:0f:3b:69:fd:4a:
af:2b:33:cf:80:4b:9b:dc:9b:66:25:8c:6b:a4:c8:
70:6c:79:db:95:0c:59:c0:c8:79:3c:f8:23:55:6f:
c1:98:0e:c0:84:d7:c9:81:c0:12:65:ab:0d:ce:78:
7e:00:b9:5b:11:cf:2b:13:77:e4:4f:64:ad:0b:09:
39:5f:77:18:1c:78:ff:df:99:bd:d0:8b:2c:2c:47:
e5:f4:41:76:87:b8:35:d0:d5:7d:94:12:df:d6:65:
dc:06:74:fa:b3:24:71:d5:d5:36:cb:2f:b3:bf:9e:
14:9c:9c:c9:71:29:a4:29:06:97:ee:bc:51:70:33:
f2:a3:ec:33:75:28:db:d4:4f:f6:f7:84:b3:4d:16:
3f:8d:29:b8:0d:7f:df:2a:d8:69:00:e5:a6:8f:90:
25:57:c0:a7:dc:5c:f5:54:11:26:54:c4:10:46:42:
00:af:4f:5a:7e:c3:1a:b9:ce:ee:5b:30:0c:62:9c:
e7:92:60:f7:7d:21:ab:a6:23:97:b6:28:0b:28:eb:
3c:12:38:47:92:e3:f9:2f:b8:cd:df:c6:9a:ff:31:
57:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:A0:EF:F4:01:49:23:6A:D9:CA:25:B4:09:38:45:E5:56:8B:F4:4F
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/8acb63af-7a44-479c-8a8d-d2d453f40d2b.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
7a:fe:39:2d:c6:1a:05:ad:3a:ef:39:c7:7e:07:12:5a:b2:4d:
2c:39:0e:03:61:96:d5:48:c7:5f:c1:5f:b9:d0:d3:90:36:50:
38:ac:a8:df:4d:56:c5:90:49:7b:90:f1:59:8e:1c:09:2b:af:
62:f2:89:ee:98:8f:91:30:8a:5e:72:af:d4:33:d0:f5:c0:4d:
2a:15:0a:cd:e2:f3:b9:1e:17:5b:bb:fd:16:d9:c4:f8:41:99:
b3:1c:0d:6a:12:3e:3a:b1:01:b2:6f:f6:f5:c5:71:f5:6a:22:
27:e3:a5:58:a4:ce:c0:f6:13:ad:9c:fd:d8:34:64:fe:9e:4c:
44:57:c5:a0:bb:0d:87:54:24:ea:23:ab:67:8b:fd:e6:ae:6c:
69:76:6d:ab:80:53:69:66:64:36:c0:ac:88:50:19:6e:fd:53:
f7:a5:7b:dd:e7:14:c0:4d:5e:10:08:11:f2:86:93:53:05:5b:
63:a8:f4:a8:f6:6b:4b:b8:e7:18:ef:35:eb:11:62:a0:55:a7:
59:2a:55:5d:a8:e3:72:97:c0:aa:7d:41:a4:65:5a:e0:4f:de:
30:73:4c:fb:68:ef:14:88:82:b0:ad:22:ff:5d:03:00:5b:d6:
ba:d5:72:80:5f:f7:3f:7c:b1:36:b5:af:e3:c5:58:5c:51:c3:
96:ae:35:b4
-----BEGIN CERTIFICATE-----
MIIF+DCCBOCgAwIBAgIUIDaM9gtslX9apjzwtqHDKAVNPQowDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyMjc4YWFiODc4ZjI2NjJjZTE0ZTkwNWUxOGViY2I3NTIy
ZjkyYjM2ODRiYzQ4NjViNGQwHhcNMjQwODA4MDAwMDAwWhcNMjQwOTEyMjM1OTU5
WjB6MUkwRwYDVQQFE0A1YmY4YTBkM2Q5MTAwOTFlMzgzYzgyYmQ4YWEyMDA3Y2Y2
MWVkN2NjNTk0YWJkM2RkYWI2ZDg4NTFlN2VkN2U3MS0wKwYDVQQDEyRjMGNlMjNl
YS00M2ZjLTRiZTQtYmVlZS1jMDE0NzgxMjJhMGUwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQDIH72PBpyR6CRBkhCl2dFOh1BE2981klMepzkYtivCA1fh
0shyUZgPO2n9Sq8rM8+AS5vcm2YljGukyHBseduVDFnAyHk8+CNVb8GYDsCE18mB
wBJlqw3OeH4AuVsRzysTd+RPZK0LCTlfdxgceP/fmb3QiywsR+X0QXaHuDXQ1X2U
Et/WZdwGdPqzJHHV1TbLL7O/nhScnMlxKaQpBpfuvFFwM/Kj7DN1KNvUT/b3hLNN
Fj+NKbgNf98q2GkA5aaPkCVXwKfcXPVUESZUxBBGQgCvT1p+wxq5zu5bMAxinOeS
YPd9IaumI5e2KAso6zwSOEeS4/kvuM3fxpr/MVczAgMBAAGjggKxMIICrTAdBgNV
HQ4EFgQUeqDv9AFJI2rZyiW0CThF5VaL9E8wHwYDVR0jBBgwFoAUVajdRdlEE/nR
kvUsY86M+8YUlrgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy8xNDMzZWJmZi1k
ZmQ2LTRjNWMtYjdmZi05OWM4NTEzOWQ0YTgvMjc4YWFiODc4ZjI2NjJjZTE0ZTkw
NWUxOGViY2I3NTIyZjkyYjM2ODRiYzQ4NjViNGQuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvMTZmMWZmZWUtNzQ2MS00Njc0LWJiMDUtZmRk
ZWZhOWEwMmM2LzhhY2I2M2FmLTdhNDQtNDc5Yy04YThkLWQyZDQ1M2Y0MGQyYi5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzE2ZjFmZmVlLTc0NjEtNDY3NC1iYjA1
LWZkZGVmYTlhMDJjNi9KbUxPRk9rRjRZNjh0MUl2a3JOb1M4U0dXMDAuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBADHJHgwDQYJKoZIhvcNAQELBQADggEBAHr+OS3GGgWtOu85x34HElqyTSw5
DgNhltVIx1/BX7nQ05A2UDisqN9NVsWQSXuQ8VmOHAkrr2Lyie6Yj5Ewil5yr9Qz
0PXATSoVCs3i87keF1u7/RbZxPhBmbMcDWoSPjqxAbJv9vXFcfVqIifjpVikzsD2
E62c/dg0ZP6eTERXxaC7DYdUJOojq2eL/eaubGl2bauAU2lmZDbArIhQGW79U/el
e93nFMBNXhAIEfKGk1MFW2Oo9Kj2a0u45xjvNesRYqBVp1kqVV2o43KXwKp9QaRl
WuBP3jBzTPto7xSIgrCtIv9dAwBb1rrVcoBf9z98sTa1r+PFWFxRw5auNbQ=
-----END CERTIFICATE-----
Generated at Wed May 7 16:52:05 2025 by rpki-client