Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/bbe514ca-02fa-4535-a618-1522c83243b4.roa
File: bbe514ca-02fa-4535-a618-1522c83243b4.roa (raw, json)
Hash identifier: u3veyrZ4AKW9mUx+WRvTpKPd8YyHoA8MaiaQcHpSAwA=
Subject key identifier: 26:5A:94:0E:57:DF:E5:43:70:13:F9:31:A3:9E:53:3F:FE:6D:BC:1F
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 1B667E11FF975D61656A579D229A00ECF3C8FC
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/bbe514ca-02fa-4535-a618-1522c83243b4.roa
Signing time: Thu 31 Aug 2023 00:00:00 +0000
ROA not before: Thu 31 Aug 2023 00:00:00 +0000
ROA not after: Thu 05 Oct 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1b:66:7e:11:ff:97:5d:61:65:6a:57:9d:22:9a:00:ec:f3:c8:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Aug 31 00:00:00 2023 GMT
Not After : Oct 5 23:59:59 2023 GMT
Subject: serialNumber=0b91a79dbf62b73a3d9677be2c3ef21daa71c462231a2761cb41439b9e840107, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:46:9f:a8:96:f8:20:00:23:c1:5e:ab:e9:f7:
52:52:db:c5:23:b4:db:92:9d:88:e0:83:d5:7d:e6:
0c:ab:2e:a3:16:44:0c:a9:75:0b:c2:be:b1:f0:55:
32:dc:f6:bc:2e:c5:3f:d7:16:41:59:2c:1e:af:ae:
93:44:eb:51:f5:97:02:3c:e1:29:46:36:70:56:5e:
04:f9:5b:b8:b4:c4:dd:26:17:7b:5f:6f:bb:2d:ff:
86:3a:ab:d9:e3:18:57:18:59:7c:ff:81:c1:ba:71:
fc:9d:32:f4:15:f0:97:4b:7b:5a:eb:ab:a6:a0:79:
73:6b:13:9d:dc:a4:3f:bd:7b:6c:2d:2a:a6:df:4b:
14:16:5b:8b:b4:e1:6f:e0:6f:03:92:8d:f8:83:72:
19:4a:cb:67:e9:a8:d7:16:30:3a:fe:78:d7:0b:f4:
b5:34:62:bb:b9:0c:67:98:a6:94:77:ef:4c:1f:32:
00:39:25:eb:9e:2c:24:a9:f8:89:18:c9:72:0e:8b:
a5:0a:32:3c:b3:c8:5f:5c:f7:b8:78:12:fb:bf:88:
dc:c3:c6:a6:f7:3a:a0:70:0a:b7:24:0a:cb:eb:58:
0f:31:a7:e2:52:7a:46:32:9d:75:f8:2f:bf:71:cc:
79:49:b6:50:9c:78:ed:a2:32:ab:12:a1:37:60:ea:
55:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:5A:94:0E:57:DF:E5:43:70:13:F9:31:A3:9E:53:3F:FE:6D:BC:1F
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/bbe514ca-02fa-4535-a618-1522c83243b4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
01:06:26:24:83:ea:6e:f3:cb:ab:c7:83:58:83:53:12:6f:b6:
16:39:05:74:7b:7b:13:b5:d0:74:b8:18:45:35:a2:28:49:70:
e3:33:cc:80:3d:f9:63:e1:13:9c:01:f1:a2:44:7b:a8:47:b6:
6f:7e:78:7d:2f:f7:1b:f4:f1:02:d3:ba:ca:bb:9d:61:8d:5d:
30:39:8c:af:93:d7:b2:66:00:02:85:c9:73:40:85:fa:e1:06:
a5:17:70:d4:cd:71:1e:05:2a:2a:27:35:1b:bb:cd:0f:0f:e6:
b3:92:d0:a7:ac:e2:7b:a2:37:9c:3a:97:b7:80:6f:a6:cc:7c:
0e:bb:1c:a5:24:ae:6b:00:3b:3d:d6:12:48:7b:c8:78:e6:14:
06:e3:02:f9:a9:a2:fa:e6:5e:96:30:8c:1d:aa:67:da:1c:86:
af:5d:b2:90:d1:23:9b:0d:de:72:15:0d:1f:ee:57:c5:96:47:
20:0e:6e:fb:78:a0:f4:5e:5a:2f:04:11:fa:9a:e2:c3:e0:1c:
56:96:46:ac:9a:6e:34:91:35:9e:db:85:d7:0c:36:9c:dd:36:
46:eb:31:96:5d:dd:6b:32:08:11:b2:d0:57:ca:2f:0f:34:ed:
5b:35:f5:26:9a:fd:49:51:33:77:aa:01:16:66:aa:3f:a6:a1:
95:20:fe:c0
-----BEGIN CERTIFICATE-----
MIIF9zCCBN+gAwIBAgITG2Z+Ef+XXWFlaledIpoA7PPI/DANBgkqhkiG9w0BAQsF
ADA9MTswOQYDVQQDEzIyNzhhYWI4NzhmMjY2MmNlMTRlOTA1ZTE4ZWJjYjc1MjJm
OTJiMzY4NGJjNDg2NWI0ZDAeFw0yMzA4MzEwMDAwMDBaFw0yMzEwMDUyMzU5NTla
MHoxSTBHBgNVBAUTQDBiOTFhNzlkYmY2MmI3M2EzZDk2NzdiZTJjM2VmMjFkYWE3
MWM0NjIyMzFhMjc2MWNiNDE0MzliOWU4NDAxMDcxLTArBgNVBAMTJGMwY2UyM2Vh
LTQzZmMtNGJlNC1iZWVlLWMwMTQ3ODEyMmEwZTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALpGn6iW+CAAI8Feq+n3UlLbxSO025KdiOCD1X3mDKsuoxZE
DKl1C8K+sfBVMtz2vC7FP9cWQVksHq+uk0TrUfWXAjzhKUY2cFZeBPlbuLTE3SYX
e19vuy3/hjqr2eMYVxhZfP+Bwbpx/J0y9BXwl0t7WuurpqB5c2sTndykP717bC0q
pt9LFBZbi7Thb+BvA5KN+INyGUrLZ+mo1xYwOv541wv0tTRiu7kMZ5imlHfvTB8y
ADkl654sJKn4iRjJcg6LpQoyPLPIX1z3uHgS+7+I3MPGpvc6oHAKtyQKy+tYDzGn
4lJ6RjKddfgvv3HMeUm2UJx47aIyqxKhN2DqVQ0CAwEAAaOCArEwggKtMB0GA1Ud
DgQWBBQmWpQOV9/lQ3AT+TGjnlM//m28HzAfBgNVHSMEGDAWgBRVqN1F2UQT+dGS
9Sxjzoz7xhSWuDAOBgNVHQ8BAf8EBAMCB4AwgfMGCCsGAQUFBwEBBIHmMIHjMIHg
BggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2Fy
aW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMv
MDM1NzI3MmMtYTc5YS00NWJmLTk1ODYtOTJkZDQ5ZWYzMjIzLzE0MzNlYmZmLWRm
ZDYtNGM1Yy1iN2ZmLTk5Yzg1MTM5ZDRhOC8yNzhhYWI4NzhmMjY2MmNlMTRlOTA1
ZTE4ZWJjYjc1MjJmOTJiMzY4NGJjNDg2NWI0ZC5jZXIwgZ4GCCsGAQUFBwELBIGR
MIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h
bWF6b25hd3MuY29tL3ZvbHVtZS8xNmYxZmZlZS03NDYxLTQ2NzQtYmIwNS1mZGRl
ZmE5YTAyYzYvYmJlNTE0Y2EtMDJmYS00NTM1LWE2MTgtMTUyMmM4MzI0M2I0LnJv
YTCBiAYDVR0fBIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0
LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvMTZmMWZmZWUtNzQ2MS00Njc0LWJiMDUt
ZmRkZWZhOWEwMmM2L0ptTE9GT2tGNFk2OHQxSXZrck5vUzhTR1cwMC5jcmwwGAYD
VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw
BgMEAMckeDANBgkqhkiG9w0BAQsFAAOCAQEAAQYmJIPqbvPLq8eDWINTEm+2FjkF
dHt7E7XQdLgYRTWiKElw4zPMgD35Y+ETnAHxokR7qEe2b354fS/3G/TxAtO6yrud
YY1dMDmMr5PXsmYAAoXJc0CF+uEGpRdw1M1xHgUqKic1G7vNDw/ms5LQp6zie6I3
nDqXt4Bvpsx8DrscpSSuawA7PdYSSHvIeOYUBuMC+ami+uZeljCMHapn2hyGr12y
kNEjmw3echUNH+5XxZZHIA5u+3ig9F5aLwQR+priw+AcVpZGrJpuNJE1ntuF1ww2
nN02Rusxll3dazIIEbLQV8ovDzTtWzX1Jpr9SVEzd6oBFmaqP6ahlSD+wA==
-----END CERTIFICATE-----
Generated at Sat May 10 22:15:06 2025 by rpki-client