Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/be155536-b57d-4184-b737-7f1481d02b66.roa
File: be155536-b57d-4184-b737-7f1481d02b66.roa (raw, json)
Hash identifier: 8yY2k2xIJ5yit9uKgxI7wdqNZsEPtxUF3NZqRFfCd6s=
Subject key identifier: 34:49:97:0D:3C:F8:AE:F8:83:42:63:BF:D7:B9:55:7A:41:CD:7E:83
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 788DECB646D471004348FCCAA167DC5709FF47D4
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/be155536-b57d-4184-b737-7f1481d02b66.roa
Signing time: Sun 01 Oct 2023 00:00:00 +0000
ROA not before: Sun 01 Oct 2023 00:00:00 +0000
ROA not after: Sun 05 Nov 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
78:8d:ec:b6:46:d4:71:00:43:48:fc:ca:a1:67:dc:57:09:ff:47:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Oct 1 00:00:00 2023 GMT
Not After : Nov 5 23:59:59 2023 GMT
Subject: CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:5e:72:b4:59:65:8d:c1:f0:91:fc:d9:51:6d:
58:80:1a:fa:bf:4f:e0:c5:6d:b8:99:6d:83:a8:6e:
6e:17:69:df:02:1f:54:f4:06:c7:b8:1e:47:4f:8e:
a5:84:33:36:bd:f3:3d:f8:e9:e6:8f:e3:ac:a0:f5:
f0:50:ee:11:9d:ca:d6:b5:8a:d0:8a:cf:4e:33:f7:
23:5f:dc:e1:2d:22:51:7c:fa:18:cd:f9:28:2f:b9:
10:5f:41:6e:4b:48:3a:58:3d:eb:1f:3b:16:d1:8c:
29:f4:7b:92:67:05:78:c3:b4:77:03:e7:c6:9f:c0:
44:f5:5e:df:ef:ef:7a:b3:f7:fe:cd:5b:28:ff:bb:
b1:c5:34:64:35:a2:6c:76:75:44:6b:ab:c6:92:25:
b7:b4:67:0c:38:a4:f1:99:d7:94:c6:43:12:2b:b4:
a8:e5:71:3d:0d:82:f3:ec:d3:fc:b7:c4:c5:f5:a5:
c9:d1:38:7e:e4:3e:87:32:6d:ef:15:b2:5d:6f:99:
7f:7b:03:91:34:cd:54:f1:b8:1a:23:1c:32:ec:c6:
68:da:9b:0a:ee:03:87:a4:da:4b:b1:1e:16:c4:04:
2a:b1:e9:e0:aa:9d:4a:af:a7:f4:d3:18:b5:eb:eb:
6d:47:34:e0:a7:09:ba:31:b1:96:8b:d0:99:fc:21:
b6:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:49:97:0D:3C:F8:AE:F8:83:42:63:BF:D7:B9:55:7A:41:CD:7E:83
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/be155536-b57d-4184-b737-7f1481d02b66.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
b0:79:d5:85:81:74:3c:d9:bc:4a:9b:28:8a:5b:50:0c:5c:72:
ae:ae:b0:73:67:bc:40:11:64:06:98:27:d7:92:9f:7a:11:6e:
01:65:6d:01:ae:36:6a:16:0a:92:55:fa:e8:bb:8c:58:cd:02:
55:4d:42:22:87:1c:0f:66:72:fa:16:57:74:21:3c:3c:ec:1c:
bd:90:73:c9:08:5f:6e:c8:5f:87:6d:bb:98:be:80:7b:db:31:
e5:be:a0:50:01:32:6a:e5:01:eb:d9:48:fc:b6:05:a5:cd:e2:
64:7a:fb:32:de:b1:67:2f:4c:27:4a:ed:1a:ee:37:73:fb:75:
d1:27:39:ef:9b:b3:86:37:20:fc:4a:c3:b8:b2:75:40:e9:3c:
b7:05:ae:26:03:e8:b0:3f:66:b1:eb:23:f0:e2:d3:ef:cc:e7:
d9:a4:18:53:79:a9:6a:a8:d5:80:13:62:9d:cc:29:b2:e7:b3:
4e:9b:39:9f:06:78:44:dc:52:d5:c3:51:fb:01:f0:e3:a4:46:
b0:08:2b:75:21:a0:f5:77:6f:ee:fa:84:95:b5:c3:e8:3a:43:
61:b7:02:ae:e0:07:15:f7:0f:7e:55:e8:0c:e3:fb:8e:fb:0b:
38:5f:48:91:52:ac:c8:41:af:c0:cd:1f:59:c8:7e:d3:4b:ed:
f2:1e:30:6e
-----BEGIN CERTIFICATE-----
MIIF+DCCBOCgAwIBAgIUeI3stkbUcQBDSPzKoWfcVwn/R9QwDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyMjc4YWFiODc4ZjI2NjJjZTE0ZTkwNWUxOGViY2I3NTIy
ZjkyYjM2ODRiYzQ4NjViNGQwHhcNMjMxMDAxMDAwMDAwWhcNMjMxMTA1MjM1OTU5
WjB6MUkwRwYDVQQFE0AzYWRkZGIxYTIwN2JmZGMyODU4YjJiZjk0MTI5OTYyMWQ0
YmE1ZTc3ZTg4NTdjNWMyMWU2NzIzMmNjOWRhZTAxMS0wKwYDVQQDEyRjMGNlMjNl
YS00M2ZjLTRiZTQtYmVlZS1jMDE0NzgxMjJhMGUwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQCPXnK0WWWNwfCR/NlRbViAGvq/T+DFbbiZbYOobm4Xad8C
H1T0Bse4HkdPjqWEMza98z346eaP46yg9fBQ7hGdyta1itCKz04z9yNf3OEtIlF8
+hjN+SgvuRBfQW5LSDpYPesfOxbRjCn0e5JnBXjDtHcD58afwET1Xt/v73qz9/7N
Wyj/u7HFNGQ1omx2dURrq8aSJbe0Zww4pPGZ15TGQxIrtKjlcT0NgvPs0/y3xMX1
pcnROH7kPocybe8Vsl1vmX97A5E0zVTxuBojHDLsxmjamwruA4ek2kuxHhbEBCqx
6eCqnUqvp/TTGLXr621HNOCnCboxsZaL0Jn8IbZpAgMBAAGjggKxMIICrTAdBgNV
HQ4EFgQUNEmXDTz4rviDQmO/17lVekHNfoMwHwYDVR0jBBgwFoAUVajdRdlEE/nR
kvUsY86M+8YUlrgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy8xNDMzZWJmZi1k
ZmQ2LTRjNWMtYjdmZi05OWM4NTEzOWQ0YTgvMjc4YWFiODc4ZjI2NjJjZTE0ZTkw
NWUxOGViY2I3NTIyZjkyYjM2ODRiYzQ4NjViNGQuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvMTZmMWZmZWUtNzQ2MS00Njc0LWJiMDUtZmRk
ZWZhOWEwMmM2L2JlMTU1NTM2LWI1N2QtNDE4NC1iNzM3LTdmMTQ4MWQwMmI2Ni5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzE2ZjFmZmVlLTc0NjEtNDY3NC1iYjA1
LWZkZGVmYTlhMDJjNi9KbUxPRk9rRjRZNjh0MUl2a3JOb1M4U0dXMDAuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBADHJHgwDQYJKoZIhvcNAQELBQADggEBALB51YWBdDzZvEqbKIpbUAxccq6u
sHNnvEARZAaYJ9eSn3oRbgFlbQGuNmoWCpJV+ui7jFjNAlVNQiKHHA9mcvoWV3Qh
PDzsHL2Qc8kIX27IX4dtu5i+gHvbMeW+oFABMmrlAevZSPy2BaXN4mR6+zLesWcv
TCdK7RruN3P7ddEnOe+bs4Y3IPxKw7iydUDpPLcFriYD6LA/ZrHrI/Di0+/M59mk
GFN5qWqo1YATYp3MKbLns06bOZ8GeETcUtXDUfsB8OOkRrAIK3UhoPV3b+76hJW1
w+g6Q2G3Aq7gBxX3D35V6Azj+477CzhfSJFSrMhBr8DNH1nIftNL7fIeMG4=
-----END CERTIFICATE-----
Generated at Tue Feb 18 06:59:38 2025 by rpki-client