Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/11a3a659-cb3e-4c59-b38a-d37832196346.roa
File: 11a3a659-cb3e-4c59-b38a-d37832196346.roa (raw, json)
Hash identifier: E1x/Lid3roKW7pa7+lkHAt/UUzHsv76nrfJRWd9Uop0=
Subject key identifier: CA:FA:A0:8D:EC:29:B5:52:91:77:C3:A2:EE:6F:0B:D7:72:7B:05:E6
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 4956A073EA5D7C9022B8C2406A1A22A1014A4AA6
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/11a3a659-cb3e-4c59-b38a-d37832196346.roa
Signing time: Sun 05 Nov 2023 00:00:00 +0000
ROA not before: Sun 05 Nov 2023 00:00:00 +0000
ROA not after: Sun 10 Dec 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
49:56:a0:73:ea:5d:7c:90:22:b8:c2:40:6a:1a:22:a1:01:4a:4a:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Nov 5 00:00:00 2023 GMT
Not After : Dec 10 23:59:59 2023 GMT
Subject: serialNumber=a302035f05b970ed88d9884cace104ccb2570f36d6ecde62b0b3378b06d1aa0d, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:2c:14:c6:d6:1a:89:ef:66:e9:e9:6b:f1:32:
62:61:f4:1f:f2:e7:32:0c:d3:a0:4d:39:83:6a:2b:
33:39:d0:7a:0f:94:5a:96:a2:ee:34:98:3e:ab:f9:
18:8d:45:e5:c2:1f:c2:21:1e:17:4c:c6:28:e5:4e:
46:4d:6d:f4:e3:4b:1b:37:5e:51:2c:b8:10:1e:48:
48:ab:53:f2:be:53:6e:cc:75:a9:f3:72:4a:20:b1:
c5:67:fd:3c:bb:57:3e:5b:e5:f7:29:d1:7d:99:0c:
ec:81:f6:26:80:9f:50:a1:41:a3:8e:e2:24:51:54:
a1:cf:bb:56:82:dd:f9:e0:4e:b2:0f:94:1f:92:17:
32:e5:ff:16:30:83:2c:e1:ae:94:99:30:32:31:b3:
8e:67:c3:16:a2:19:81:09:58:17:34:2b:01:56:29:
af:ca:b4:5e:c4:25:d6:a2:1b:11:75:ec:cb:55:3f:
36:74:8a:04:0c:16:0f:bf:3f:66:e7:b6:7e:93:a1:
46:6c:7d:47:62:22:f3:6c:5e:0d:56:27:22:f5:8d:
16:43:39:59:ba:7f:fc:e4:e2:d8:bf:99:b8:40:a8:
f3:a0:ac:d7:0f:dd:b0:04:79:a5:52:0d:53:5c:6c:
63:20:0f:46:63:f5:cc:f4:2e:2d:aa:fe:a8:1f:d0:
e0:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:FA:A0:8D:EC:29:B5:52:91:77:C3:A2:EE:6F:0B:D7:72:7B:05:E6
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/11a3a659-cb3e-4c59-b38a-d37832196346.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
b7:26:12:2c:3b:c7:47:5a:27:6f:cc:eb:99:e0:b2:45:30:22:
a5:22:9f:fa:d2:3c:82:e6:22:a4:73:75:50:42:08:0a:94:c4:
3b:11:8c:aa:4a:e8:f1:84:32:f7:ba:11:88:9a:20:c2:bc:fc:
a7:7c:16:0c:2c:65:a6:57:3f:83:15:a5:fe:e7:29:04:44:80:
95:09:e1:91:67:32:7a:14:45:40:20:3c:c9:9c:66:d0:7a:88:
65:99:7a:71:5b:d6:6b:6a:0f:f3:50:c3:e2:cd:fe:ac:37:4f:
a2:e8:9c:ee:df:8c:db:af:4f:29:22:1b:1d:3e:19:43:a7:3a:
13:1d:b0:2a:90:7a:a8:da:1d:27:02:04:0d:2c:e3:4d:ce:0e:
67:ff:d8:fc:17:11:58:38:a4:eb:cb:f7:0a:74:cb:60:a9:73:
14:5f:53:74:1d:b7:0b:8c:cf:8b:46:94:36:db:96:af:38:86:
54:44:38:22:e5:39:08:20:4e:76:15:2b:4e:3a:1f:65:f1:0d:
c9:ad:9a:b1:94:d7:be:31:82:c0:e9:1c:8e:8d:cc:1b:60:40:
81:f4:84:52:17:7b:b2:7d:00:bd:06:27:7a:b7:9c:a2:f8:9d:
54:61:96:a9:05:56:0c:13:a0:ac:ea:9e:c0:ac:c2:0a:63:33:
80:8d:be:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 7 14:10:20 2025 by rpki-client