Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/3fbf1d1f-dc6c-4393-ba90-6089c1f2035c.roa
File: 3fbf1d1f-dc6c-4393-ba90-6089c1f2035c.roa (raw, json)
Hash identifier: Yxg/Qf1bEOeXLOqJIbmgq8qN6HIiSGyS09LIALh92tc=
Subject key identifier: 57:C2:6C:D6:57:02:B1:7D:54:69:2D:28:31:F7:9A:45:C5:F1:F1:BA
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 0318BC92C59DE288EA3C2C6378D50345FEE3E192
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/3fbf1d1f-dc6c-4393-ba90-6089c1f2035c.roa
Signing time: Fri 28 Feb 2025 04:33:13 +0000
ROA not before: Fri 28 Feb 2025 04:33:13 +0000
ROA not after: Fri 04 Apr 2025 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
03:18:bc:92:c5:9d:e2:88:ea:3c:2c:63:78:d5:03:45:fe:e3:e1:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Feb 28 04:33:13 2025 GMT
Not After : Apr 4 23:59:59 2025 GMT
Subject: serialNumber=4308cb73ecb93fca67984f4950a1e4fac06c70417b848c9dcfd915f32fe442ea, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:f6:ad:c4:b4:5a:00:46:57:ec:0b:ea:e7:1f:
57:65:5e:8b:fb:20:4f:92:6f:ba:df:02:b8:b9:bd:
35:c8:6b:17:b4:9f:a1:51:07:7e:eb:a4:48:25:ff:
af:a4:ba:96:e7:71:ec:91:08:16:cd:ef:bf:be:ee:
27:8c:b3:e2:0f:d9:3c:6f:a9:b0:05:5e:97:63:de:
dc:d9:b7:9b:a4:2a:59:29:bc:9e:b0:48:3c:d5:89:
4d:09:fc:83:8e:8f:d3:b4:f2:d8:b3:73:01:47:27:
56:99:3d:bf:8d:d6:5d:ef:8a:22:2e:78:b6:8c:2c:
32:7e:1a:a5:8b:6a:79:39:35:73:30:b1:79:41:ad:
9b:12:aa:c3:82:e0:fd:0b:07:e3:53:80:c4:7a:5f:
0a:99:86:c8:08:3f:37:41:6a:b0:0e:51:a4:69:f5:
16:64:67:c3:0e:25:91:9b:38:a0:02:08:22:e0:1b:
2f:db:09:fa:a8:d7:a0:cd:6c:77:80:7c:fd:bb:e0:
8d:c2:1f:9d:17:71:d9:03:c7:30:4d:f0:55:2d:0e:
23:b9:c0:55:92:86:bf:bd:20:98:19:83:f1:bb:85:
16:49:16:88:bf:c9:1d:07:2f:4e:fe:77:05:60:0f:
c3:1b:b9:2b:5f:64:d3:bc:38:fa:36:a9:2f:3c:7a:
b5:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:C2:6C:D6:57:02:B1:7D:54:69:2D:28:31:F7:9A:45:C5:F1:F1:BA
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/3fbf1d1f-dc6c-4393-ba90-6089c1f2035c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
01:2a:21:12:8d:1e:c3:b7:5f:63:f1:16:e0:95:9d:44:45:64:
b2:b7:69:f0:22:2f:d7:da:3d:43:ff:54:a3:1a:a7:11:a1:15:
e6:34:f9:d7:1f:77:a5:55:5c:a1:e7:2b:e1:27:a9:b2:57:19:
ff:ff:ad:e4:73:c0:d9:8b:0b:b7:c6:b1:c4:68:87:f8:1d:3c:
93:60:44:03:4d:13:64:4e:ed:f5:87:3a:22:65:3a:cc:ee:85:
11:95:59:c3:47:ce:83:1e:6e:b3:06:1f:7c:0e:b0:8e:49:84:
d6:cf:3d:d3:88:3d:8c:a8:32:71:fe:4c:65:76:9f:12:61:68:
91:84:b9:33:d4:98:7c:1e:d3:50:ff:59:e9:e2:bc:7a:e2:eb:
74:23:53:c2:2a:d1:4c:3c:38:65:68:b6:71:eb:dc:a1:93:78:
ff:ed:c0:65:b0:57:9f:d8:7b:86:eb:c1:2b:45:b5:65:42:8d:
0b:fd:d1:47:07:56:2e:ff:74:f5:cd:cb:b2:d2:70:de:65:83:
37:ee:e1:ec:b0:fe:62:3e:d1:a3:a1:69:a1:92:9c:13:c0:eb:
9b:e6:82:a7:7e:39:2c:ab:1d:8c:02:60:9b:fa:1b:fe:1e:96:
c2:73:26:22:07:25:ec:6b:b1:cb:4a:58:db:cb:7c:60:33:41:
75:0c:5a:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 6 08:12:56 2025 by rpki-client