Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/2314fca4-3304-409d-aaad-16a4b65b8264.roa
File: 2314fca4-3304-409d-aaad-16a4b65b8264.roa (raw, json)
Hash identifier: 0VTWzdeUWOuj9YK1fDrXzQop1wGC8DUczfTGSKR0QUQ=
Subject key identifier: 82:C9:4F:CB:E5:EB:07:09:55:B0:3F:55:FC:02:BF:06:FD:A5:94:8C
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 1219B5A80897EFD898D95737473DD6E03A3E685F
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/2314fca4-3304-409d-aaad-16a4b65b8264.roa
Signing time: Mon 18 Sep 2023 00:00:00 +0000
ROA not before: Mon 18 Sep 2023 00:00:00 +0000
ROA not after: Mon 23 Oct 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
12:19:b5:a8:08:97:ef:d8:98:d9:57:37:47:3d:d6:e0:3a:3e:68:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Sep 18 00:00:00 2023 GMT
Not After : Oct 23 23:59:59 2023 GMT
Subject: CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:a3:e7:e0:86:b2:2c:e6:91:d9:f7:c5:f9:f4:
5a:d3:b6:33:9b:d0:3d:52:59:c9:76:c5:14:a2:56:
c1:a9:2d:5d:4b:d8:6c:49:f2:32:2d:c3:85:62:b2:
e1:2a:02:08:fa:95:c0:87:ca:cd:e2:fa:36:05:b8:
86:26:49:eb:83:4d:cb:99:2a:3c:5a:9d:b9:5e:d9:
42:72:47:bd:b5:a4:9b:ce:59:8e:b6:d3:25:3a:5b:
20:24:2a:16:06:ff:f0:f5:46:38:9a:ff:8d:72:28:
38:18:6b:41:71:71:ca:be:4e:b8:25:c8:94:ff:aa:
f3:83:ad:d3:17:33:ba:7c:d5:72:f4:74:da:c8:7f:
74:9a:86:15:be:9f:13:92:e1:46:0c:d9:ae:f6:42:
b6:47:a4:fb:aa:12:b8:69:f8:68:27:86:df:14:eb:
cc:82:5b:fa:61:87:4d:02:9b:c8:5b:98:f0:0e:2c:
83:2d:c3:cb:d4:7c:fb:43:65:78:23:e2:37:40:d7:
7e:45:17:00:ad:b2:dc:2c:c5:d0:a2:83:7a:d5:da:
e3:50:73:3e:11:90:35:12:78:46:b3:38:39:05:51:
0d:4f:e9:5a:22:cf:3c:47:6b:2c:7a:78:2e:f2:0c:
c2:ac:c3:77:80:0b:81:33:07:a8:32:f5:de:4c:6d:
16:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:C9:4F:CB:E5:EB:07:09:55:B0:3F:55:FC:02:BF:06:FD:A5:94:8C
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/2314fca4-3304-409d-aaad-16a4b65b8264.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
44:ec:9d:af:43:da:d6:7f:86:31:e1:9f:84:6a:4b:46:77:4f:
a3:75:39:28:45:e2:05:dc:f1:38:aa:59:2c:2c:cc:7b:4c:13:
b3:48:72:e2:29:49:a7:de:2d:e2:e7:8d:c9:55:37:5b:6d:14:
65:38:93:d5:6f:48:7f:8b:16:0b:fe:31:05:ea:62:9f:c5:07:
76:c7:15:a8:a7:c6:16:b1:fb:27:04:d9:8c:3d:17:a9:b0:a4:
13:67:5a:b6:bc:a7:33:b2:59:58:8d:f0:4f:68:e1:88:34:d4:
36:49:87:0e:4e:9c:06:ac:41:10:68:d4:45:b7:80:66:18:46:
e9:f8:39:b5:b6:0c:7b:16:d7:ff:fd:6f:01:10:b6:dd:96:c8:
45:1a:e6:1c:89:03:86:04:15:91:f7:b4:69:eb:17:31:0d:a4:
c1:3e:07:60:f0:a9:e2:a3:c8:77:1c:4a:36:35:c5:20:0a:f6:
af:c9:49:0c:c9:00:29:e2:c6:b4:e9:18:38:d5:da:bb:b9:7b:
12:40:f6:36:7c:89:e8:9f:b1:b8:b9:d1:3b:4a:e3:d3:fa:4c:
2a:e0:89:ce:6e:50:86:99:f1:af:28:4b:ca:37:ce:3e:a1:c0:
a9:5a:61:5f:72:95:a7:ba:68:2c:1f:e6:41:31:ab:12:e0:b3:
86:bd:45:c0
-----BEGIN CERTIFICATE-----
MIIF+DCCBOCgAwIBAgIUEhm1qAiX79iY2Vc3Rz3W4Do+aF8wDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyMjc4YWFiODc4ZjI2NjJjZTE0ZTkwNWUxOGViY2I3NTIy
ZjkyYjM2ODRiYzQ4NjViNGQwHhcNMjMwOTE4MDAwMDAwWhcNMjMxMDIzMjM1OTU5
WjB6MUkwRwYDVQQFE0AxNGE2MmIwNWUyZDRiNDlmNWUyZGVhZjA4OWY0NzgyZGMz
MTg4YTc1ZjAzZWFjOTczMDQxNDk4OGVhYjc3NGQ4MS0wKwYDVQQDEyRjMGNlMjNl
YS00M2ZjLTRiZTQtYmVlZS1jMDE0NzgxMjJhMGUwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQDLo+fghrIs5pHZ98X59FrTtjOb0D1SWcl2xRSiVsGpLV1L
2GxJ8jItw4VisuEqAgj6lcCHys3i+jYFuIYmSeuDTcuZKjxanble2UJyR721pJvO
WY620yU6WyAkKhYG//D1Rjia/41yKDgYa0Fxccq+TrglyJT/qvODrdMXM7p81XL0
dNrIf3SahhW+nxOS4UYM2a72QrZHpPuqErhp+Ggnht8U68yCW/phh00Cm8hbmPAO
LIMtw8vUfPtDZXgj4jdA135FFwCtstwsxdCig3rV2uNQcz4RkDUSeEazODkFUQ1P
6VoizzxHayx6eC7yDMKsw3eAC4EzB6gy9d5MbRZpAgMBAAGjggKxMIICrTAdBgNV
HQ4EFgQUgslPy+XrBwlVsD9V/AK/Bv2llIwwHwYDVR0jBBgwFoAUVajdRdlEE/nR
kvUsY86M+8YUlrgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy8xNDMzZWJmZi1k
ZmQ2LTRjNWMtYjdmZi05OWM4NTEzOWQ0YTgvMjc4YWFiODc4ZjI2NjJjZTE0ZTkw
NWUxOGViY2I3NTIyZjkyYjM2ODRiYzQ4NjViNGQuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvMTZmMWZmZWUtNzQ2MS00Njc0LWJiMDUtZmRk
ZWZhOWEwMmM2LzIzMTRmY2E0LTMzMDQtNDA5ZC1hYWFkLTE2YTRiNjViODI2NC5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzE2ZjFmZmVlLTc0NjEtNDY3NC1iYjA1
LWZkZGVmYTlhMDJjNi9KbUxPRk9rRjRZNjh0MUl2a3JOb1M4U0dXMDAuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBADHJHgwDQYJKoZIhvcNAQELBQADggEBAETsna9D2tZ/hjHhn4RqS0Z3T6N1
OShF4gXc8TiqWSwszHtME7NIcuIpSafeLeLnjclVN1ttFGU4k9VvSH+LFgv+MQXq
Yp/FB3bHFainxhax+ycE2Yw9F6mwpBNnWra8pzOyWViN8E9o4Yg01DZJhw5OnAas
QRBo1EW3gGYYRun4ObW2DHsW1//9bwEQtt2WyEUa5hyJA4YEFZH3tGnrFzENpME+
B2DwqeKjyHccSjY1xSAK9q/JSQzJACnixrTpGDjV2ru5exJA9jZ8ieifsbi50TtK
49P6TCrgic5uUIaZ8a8oS8o3zj6hwKlaYV9ylae6aCwf5kExqxLgs4a9RcA=
-----END CERTIFICATE-----
Generated at Tue Feb 18 07:05:56 2025 by rpki-client