Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/d9915734-7207-4da9-8582-bcb7a2ea15d0.roa
File: d9915734-7207-4da9-8582-bcb7a2ea15d0.roa (raw, json)
Hash identifier: xv9+O28UmQJSGw5vpkObd5n8M5wS5YtLQQzIf02GHjE=
Subject key identifier: 57:90:00:F7:14:F9:E9:95:6A:F9:C0:22:E2:3B:C0:A7:CB:34:D6:29
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 6F117930AC3B61EBF140441BEA6989D00F8ADEAC
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/d9915734-7207-4da9-8582-bcb7a2ea15d0.roa
Signing time: Wed 12 Mar 2025 18:18:30 +0000
ROA not before: Wed 12 Mar 2025 18:18:30 +0000
ROA not after: Wed 16 Apr 2025 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6f:11:79:30:ac:3b:61:eb:f1:40:44:1b:ea:69:89:d0:0f:8a:de:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Mar 12 18:18:30 2025 GMT
Not After : Apr 16 23:59:59 2025 GMT
Subject: serialNumber=8da3b5ee5ec57be5a9be9d80813dbac4c3b5818f27a0c146a518d3a336593278, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:10:e6:1f:48:56:52:c3:00:0d:ba:a7:e0:1f:
0a:86:84:b9:45:26:c6:57:06:68:8d:ce:f7:f0:85:
4e:8e:9d:f0:54:b2:47:14:87:29:a8:c6:78:0d:5b:
d2:34:68:55:85:cd:47:80:74:4d:55:b7:68:26:d4:
b8:15:95:db:17:6e:99:9b:de:e7:94:f8:60:85:7e:
26:66:a4:c5:cb:23:0b:3a:0d:6a:60:7c:69:1c:9e:
3e:35:7c:ea:3f:84:e3:c3:d1:07:fa:a5:7f:75:38:
cf:b3:a1:e9:f6:39:bf:4e:d5:60:db:05:f4:ef:40:
66:ee:e1:92:6a:75:5d:e1:76:8b:e4:1e:cc:a3:8e:
9c:e4:e5:bf:11:61:a6:f9:c3:ef:50:7a:08:83:b7:
73:ed:88:ab:0b:22:2e:53:64:de:08:71:ed:07:01:
50:e3:68:d9:11:02:a2:40:43:0d:7d:c2:7e:48:98:
d5:4c:b0:f3:3e:7a:b6:cc:0a:ee:38:2f:91:e5:81:
6e:f0:cb:eb:19:9e:99:81:26:54:2a:e0:c1:8f:ea:
60:0f:c1:e3:98:88:ab:14:b1:4c:ce:e3:4a:27:ca:
71:f0:05:f5:02:42:32:eb:24:fa:91:be:e1:cd:42:
ca:53:b3:7c:c0:a5:8e:7f:62:9e:e2:a3:99:ed:6f:
26:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:90:00:F7:14:F9:E9:95:6A:F9:C0:22:E2:3B:C0:A7:CB:34:D6:29
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/d9915734-7207-4da9-8582-bcb7a2ea15d0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
55:e2:5f:6c:6d:33:ef:4a:90:a2:10:58:ab:47:14:24:e0:bd:
e2:0a:d6:7e:38:08:25:07:95:af:a2:90:da:7f:fc:48:2c:f6:
f0:6b:5b:3b:ed:96:00:07:a4:76:2c:c4:38:7c:22:81:bd:68:
38:6c:31:71:74:e6:46:0e:ab:35:55:86:30:30:5b:5a:19:bf:
2e:76:67:00:d7:fc:2c:d7:ef:64:33:50:dd:77:13:a9:38:ce:
1b:8c:f1:e6:da:78:1a:b2:fe:5d:92:9c:ab:4f:8d:b2:42:be:
05:59:31:9e:7d:a8:f4:ff:17:f7:18:4e:2e:fd:bb:70:57:da:
a0:ca:b2:2f:4c:c9:9e:83:19:a5:9c:7d:68:f4:a0:fa:4c:c7:
67:2b:b7:ec:d5:e6:0a:2e:2e:60:84:96:2e:6a:c7:43:b9:40:
8e:8c:b5:94:b2:1b:30:65:62:47:82:06:a8:08:ae:bd:35:b2:
e3:6e:96:c2:d0:6d:2e:80:ec:c9:cf:41:b2:e1:9b:1b:9d:55:
c5:86:ee:b1:ad:04:3a:af:d9:b9:85:6e:cd:b2:7d:1f:52:90:
d3:35:df:b8:40:84:13:30:7b:01:4a:4c:ea:19:30:8b:77:07:
36:fc:55:00:be:e7:6c:46:58:8e:d1:b6:46:91:bc:9d:67:19:
c9:33:35:74
-----BEGIN CERTIFICATE-----
MIIF+DCCBOCgAwIBAgIUbxF5MKw7YevxQEQb6mmJ0A+K3qwwDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyMjc4YWFiODc4ZjI2NjJjZTE0ZTkwNWUxOGViY2I3NTIy
ZjkyYjM2ODRiYzQ4NjViNGQwHhcNMjUwMzEyMTgxODMwWhcNMjUwNDE2MjM1OTU5
WjB6MUkwRwYDVQQFE0A4ZGEzYjVlZTVlYzU3YmU1YTliZTlkODA4MTNkYmFjNGMz
YjU4MThmMjdhMGMxNDZhNTE4ZDNhMzM2NTkzMjc4MS0wKwYDVQQDEyRjMGNlMjNl
YS00M2ZjLTRiZTQtYmVlZS1jMDE0NzgxMjJhMGUwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQC9EOYfSFZSwwANuqfgHwqGhLlFJsZXBmiNzvfwhU6OnfBU
skcUhymoxngNW9I0aFWFzUeAdE1Vt2gm1LgVldsXbpmb3ueU+GCFfiZmpMXLIws6
DWpgfGkcnj41fOo/hOPD0Qf6pX91OM+zoen2Ob9O1WDbBfTvQGbu4ZJqdV3hdovk
Hsyjjpzk5b8RYab5w+9QegiDt3PtiKsLIi5TZN4Ice0HAVDjaNkRAqJAQw19wn5I
mNVMsPM+erbMCu44L5HlgW7wy+sZnpmBJlQq4MGP6mAPweOYiKsUsUzO40onynHw
BfUCQjLrJPqRvuHNQspTs3zApY5/Yp7io5ntbyZXAgMBAAGjggKxMIICrTAdBgNV
HQ4EFgQUV5AA9xT56ZVq+cAi4jvAp8s01ikwHwYDVR0jBBgwFoAUVajdRdlEE/nR
kvUsY86M+8YUlrgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy8xNDMzZWJmZi1k
ZmQ2LTRjNWMtYjdmZi05OWM4NTEzOWQ0YTgvMjc4YWFiODc4ZjI2NjJjZTE0ZTkw
NWUxOGViY2I3NTIyZjkyYjM2ODRiYzQ4NjViNGQuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvMTZmMWZmZWUtNzQ2MS00Njc0LWJiMDUtZmRk
ZWZhOWEwMmM2L2Q5OTE1NzM0LTcyMDctNGRhOS04NTgyLWJjYjdhMmVhMTVkMC5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzE2ZjFmZmVlLTc0NjEtNDY3NC1iYjA1
LWZkZGVmYTlhMDJjNi9KbUxPRk9rRjRZNjh0MUl2a3JOb1M4U0dXMDAuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBADHJHgwDQYJKoZIhvcNAQELBQADggEBAFXiX2xtM+9KkKIQWKtHFCTgveIK
1n44CCUHla+ikNp//Egs9vBrWzvtlgAHpHYsxDh8IoG9aDhsMXF05kYOqzVVhjAw
W1oZvy52ZwDX/CzX72QzUN13E6k4zhuM8ebaeBqy/l2SnKtPjbJCvgVZMZ59qPT/
F/cYTi79u3BX2qDKsi9MyZ6DGaWcfWj0oPpMx2crt+zV5gouLmCEli5qx0O5QI6M
tZSyGzBlYkeCBqgIrr01suNulsLQbS6A7MnPQbLhmxudVcWG7rGtBDqv2bmFbs2y
fR9SkNM137hAhBMwewFKTOoZMIt3Bzb8VQC+52xGWI7RtkaRvJ1nGckzNXQ=
-----END CERTIFICATE-----
Generated at Wed May 7 04:04:18 2025 by rpki-client