Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/f066af91-722f-45a6-a0a2-957f1ae1e676.roa
File: f066af91-722f-45a6-a0a2-957f1ae1e676.roa (raw, json)
Hash identifier: WfDfeksScpruA70+pQ03pGjDdv3ziMcf1EnZPO6bCks=
Subject key identifier: 4D:B3:08:5A:2D:02:C0:8D:4A:5A:0C:70:A9:63:9F:D5:1F:70:53:C2
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 56A4A731CE6C0F61791C6244B0BB056DFF47C946
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/f066af91-722f-45a6-a0a2-957f1ae1e676.roa
Signing time: Thu 09 May 2024 00:00:00 +0000
ROA not before: Thu 09 May 2024 00:00:00 +0000
ROA not after: Thu 13 Jun 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
56:a4:a7:31:ce:6c:0f:61:79:1c:62:44:b0:bb:05:6d:ff:47:c9:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: May 9 00:00:00 2024 GMT
Not After : Jun 13 23:59:59 2024 GMT
Subject: serialNumber=4c4de47908d18243600027a4289f91d71e86e5ed8e28620a9b9f2535e3f582a9, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:be:fa:3a:26:ec:16:47:c8:0e:01:f7:7b:9b:
4a:b4:d2:a4:1a:6b:8f:55:36:97:00:bb:0a:e9:d1:
20:9e:f2:4d:eb:b6:94:5e:cc:74:94:84:06:7c:19:
5e:3a:56:c4:f3:2b:4b:6d:7f:5c:2a:ee:b9:a1:21:
bb:fe:ff:90:94:2d:c9:53:8d:fe:98:07:41:f6:5e:
65:1d:71:b1:ac:4d:da:e5:5d:34:ef:a9:45:a2:cb:
27:55:ee:ed:cf:a0:f3:2b:b1:e3:4a:83:cb:ae:3b:
62:37:84:af:fd:0b:64:e5:7f:d4:37:6f:1a:1f:f3:
b0:b0:0c:73:d4:8f:67:5f:f0:1e:2c:5e:e9:88:6a:
84:4b:fd:cd:f6:8e:27:1d:3c:9c:1f:9d:88:50:78:
a8:46:f2:60:22:32:32:0e:7d:9a:e5:ce:49:be:99:
1f:ed:65:4c:92:79:6a:18:7c:bb:87:ea:95:ad:29:
ff:a6:17:91:17:7a:88:59:12:d5:0c:eb:32:98:ac:
97:fa:0c:19:4c:25:6c:c3:7c:b6:1b:a0:2f:ab:69:
4c:17:9d:40:59:92:af:2f:c5:2b:c0:09:82:63:f8:
59:1e:84:18:1c:de:c8:52:a1:b8:7b:70:f1:ff:f7:
25:b8:78:7c:0a:39:89:72:dd:09:ee:53:e5:c0:d4:
69:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:B3:08:5A:2D:02:C0:8D:4A:5A:0C:70:A9:63:9F:D5:1F:70:53:C2
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/f066af91-722f-45a6-a0a2-957f1ae1e676.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
19:c6:b1:4c:46:24:57:62:e8:40:2e:a2:21:ae:82:cf:0c:be:
14:3e:6a:28:30:18:81:fd:06:96:c7:c0:9c:2a:21:b1:24:50:
00:74:f3:5b:11:f5:5c:9c:26:9b:1e:ae:a8:04:b4:42:09:b9:
2c:2d:3d:f5:c8:6f:1a:89:26:4d:00:36:14:56:96:bc:39:0e:
ef:b8:36:16:83:37:53:60:8e:10:c9:26:c9:45:1e:08:64:13:
ca:b2:23:2c:1f:d5:a5:5a:44:0d:62:f5:6e:b6:f7:cb:be:d7:
5e:40:5d:de:db:5c:90:ea:ac:5d:aa:28:d6:6f:76:a5:32:6d:
2c:53:45:33:b0:29:ad:ba:8a:01:b6:8b:48:f1:dd:ff:32:24:
64:a9:cc:f3:54:5e:10:e1:c4:dd:a7:17:f0:0a:d0:fa:df:f9:
20:59:2b:e0:b9:5b:99:6b:39:c4:1c:2d:2f:34:53:9c:95:58:
99:c2:da:c3:c4:94:b4:67:ec:ad:ee:66:88:2b:71:8c:57:b6:
12:77:d8:70:7f:75:eb:83:55:ff:9b:0b:24:7f:b2:f4:1d:f2:
29:74:01:60:48:70:1d:20:9c:c6:a8:20:6e:11:86:b9:1f:c3:
4a:5b:58:76:c2:a5:2c:6f:45:6b:7d:f1:25:83:53:86:29:74:
25:93:d3:20
-----BEGIN CERTIFICATE-----
MIIF+DCCBOCgAwIBAgIUVqSnMc5sD2F5HGJEsLsFbf9HyUYwDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyMjc4YWFiODc4ZjI2NjJjZTE0ZTkwNWUxOGViY2I3NTIy
ZjkyYjM2ODRiYzQ4NjViNGQwHhcNMjQwNTA5MDAwMDAwWhcNMjQwNjEzMjM1OTU5
WjB6MUkwRwYDVQQFE0A0YzRkZTQ3OTA4ZDE4MjQzNjAwMDI3YTQyODlmOTFkNzFl
ODZlNWVkOGUyODYyMGE5YjlmMjUzNWUzZjU4MmE5MS0wKwYDVQQDEyRjMGNlMjNl
YS00M2ZjLTRiZTQtYmVlZS1jMDE0NzgxMjJhMGUwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQC7vvo6JuwWR8gOAfd7m0q00qQaa49VNpcAuwrp0SCe8k3r
tpRezHSUhAZ8GV46VsTzK0ttf1wq7rmhIbv+/5CULclTjf6YB0H2XmUdcbGsTdrl
XTTvqUWiyydV7u3PoPMrseNKg8uuO2I3hK/9C2Tlf9Q3bxof87CwDHPUj2df8B4s
XumIaoRL/c32jicdPJwfnYhQeKhG8mAiMjIOfZrlzkm+mR/tZUySeWoYfLuH6pWt
Kf+mF5EXeohZEtUM6zKYrJf6DBlMJWzDfLYboC+raUwXnUBZkq8vxSvACYJj+Fke
hBgc3shSobh7cPH/9yW4eHwKOYly3QnuU+XA1GnvAgMBAAGjggKxMIICrTAdBgNV
HQ4EFgQUTbMIWi0CwI1KWgxwqWOf1R9wU8IwHwYDVR0jBBgwFoAUVajdRdlEE/nR
kvUsY86M+8YUlrgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy8xNDMzZWJmZi1k
ZmQ2LTRjNWMtYjdmZi05OWM4NTEzOWQ0YTgvMjc4YWFiODc4ZjI2NjJjZTE0ZTkw
NWUxOGViY2I3NTIyZjkyYjM2ODRiYzQ4NjViNGQuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvMTZmMWZmZWUtNzQ2MS00Njc0LWJiMDUtZmRk
ZWZhOWEwMmM2L2YwNjZhZjkxLTcyMmYtNDVhNi1hMGEyLTk1N2YxYWUxZTY3Ni5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzE2ZjFmZmVlLTc0NjEtNDY3NC1iYjA1
LWZkZGVmYTlhMDJjNi9KbUxPRk9rRjRZNjh0MUl2a3JOb1M4U0dXMDAuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBADHJHgwDQYJKoZIhvcNAQELBQADggEBABnGsUxGJFdi6EAuoiGugs8MvhQ+
aigwGIH9BpbHwJwqIbEkUAB081sR9VycJpserqgEtEIJuSwtPfXIbxqJJk0ANhRW
lrw5Du+4NhaDN1NgjhDJJslFHghkE8qyIywf1aVaRA1i9W6298u+115AXd7bXJDq
rF2qKNZvdqUybSxTRTOwKa26igG2i0jx3f8yJGSpzPNUXhDhxN2nF/AK0Prf+SBZ
K+C5W5lrOcQcLS80U5yVWJnC2sPElLRn7K3uZogrcYxXthJ32HB/deuDVf+bCyR/
svQd8il0AWBIcB0gnMaoIG4Rhrkfw0pbWHbCpSxvRWt98SWDU4YpdCWT0yA=
-----END CERTIFICATE-----
Generated at Wed May 7 09:07:16 2025 by rpki-client