Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/064007ba-6663-4cb6-a827-8ac78295a7b9.roa
File: 064007ba-6663-4cb6-a827-8ac78295a7b9.roa (raw, json)
Hash identifier: JUXxqRDsr3dF8GhtRl8J/Ipi0BzbHvlaUfEzOd7ZtcA=
Subject key identifier: 8F:FF:EC:86:C6:B8:A8:1A:80:21:6A:D6:3E:30:10:05:E6:01:AE:83
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 62E6C5F60162B2621544277C749A25A8D30EFC9A
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/064007ba-6663-4cb6-a827-8ac78295a7b9.roa
Signing time: Wed 05 Jul 2023 00:00:00 +0000
ROA not before: Wed 05 Jul 2023 00:00:00 +0000
ROA not after: Wed 09 Aug 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
62:e6:c5:f6:01:62:b2:62:15:44:27:7c:74:9a:25:a8:d3:0e:fc:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Jul 5 00:00:00 2023 GMT
Not After : Aug 9 23:59:59 2023 GMT
Subject: serialNumber=fa207f040890f0bde4e9b6b7d18152f3920d10eeb732786c0f2d387237d7d9d3, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:b0:76:ce:61:dd:cb:2b:19:1d:90:43:dd:69:
94:b9:8f:c0:de:18:50:47:2a:82:07:68:b8:0b:28:
ca:39:96:25:51:3a:84:45:fc:14:79:e4:58:5e:ce:
7a:7f:15:5d:27:94:47:e0:d8:f3:82:f0:50:53:90:
3e:a5:d6:f4:89:62:bf:18:81:1b:f8:67:e4:73:5c:
3c:4f:b5:e0:03:e7:73:9b:d9:49:66:a5:1f:56:a9:
29:9a:c0:76:86:8a:53:53:c6:9c:af:37:f0:f8:38:
7e:8d:69:39:ba:a1:aa:bf:bc:60:fe:6f:dd:1a:16:
1f:14:21:65:2b:21:c1:89:69:ca:39:c7:92:8d:e7:
54:b7:47:14:4d:ea:04:2e:2e:44:5b:5b:70:3a:2d:
f7:d5:8d:04:c2:fc:a7:71:3a:25:06:74:29:51:5c:
80:c9:80:f3:38:3e:f3:86:af:e8:75:b6:8e:b8:ec:
27:d0:13:d9:b3:f0:de:af:06:90:84:94:98:d0:40:
90:31:30:23:b0:f3:04:16:06:1c:a3:0a:2f:28:88:
dc:54:03:56:a1:db:2d:43:3a:20:50:77:75:7d:ba:
e3:c1:92:3f:87:0c:71:62:ca:c8:5d:df:94:fc:43:
4e:79:ed:8f:ea:c4:02:72:7e:a2:a6:f3:1b:a7:f1:
b7:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:FF:EC:86:C6:B8:A8:1A:80:21:6A:D6:3E:30:10:05:E6:01:AE:83
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/064007ba-6663-4cb6-a827-8ac78295a7b9.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
3f:ff:7d:cf:f4:3a:95:89:b0:f7:1a:11:2a:ea:ef:37:1e:42:
24:8a:ea:2c:9b:24:86:35:e8:c0:63:5b:5b:8d:66:ac:1b:b1:
c1:44:ec:c5:fe:68:60:4e:fb:29:fd:70:db:21:bf:df:7a:a0:
1a:8a:80:39:74:c7:ac:0a:68:79:27:de:a5:a5:a4:65:29:e9:
73:b0:22:9c:0c:5d:a7:02:ae:be:52:ac:db:b0:41:2c:3c:cf:
2c:90:d3:68:63:c7:9d:cb:e4:34:b8:00:87:55:4a:94:8b:dd:
92:8a:9f:73:48:71:a8:aa:cc:bd:de:0d:ad:9f:c8:94:b4:c5:
d4:42:47:ec:67:1f:9b:bc:18:8a:64:a6:11:48:89:f4:44:9a:
7e:64:7d:79:e8:16:27:df:d0:9f:c3:6e:2a:fd:99:82:fe:d3:
8d:4d:ea:4a:e7:36:3f:77:ac:af:13:b5:e3:59:46:b4:f2:d0:
5b:9f:79:f2:1a:a2:72:b8:8b:31:c4:d0:35:f3:5a:96:89:32:
ec:78:e6:bf:1e:a8:fa:eb:a5:95:4b:31:96:14:9c:df:21:d3:
9a:ba:94:04:f1:f1:2b:21:56:bd:be:d0:4c:82:ce:14:64:b7:
37:79:f7:0e:10:0b:a5:8e:af:7d:13:3e:b8:44:67:29:36:b7:
35:24:ce:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 7 09:19:12 2025 by rpki-client