Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/62c64a7c-a4e3-42e9-9c98-0923aee2bf92.roa
File: 62c64a7c-a4e3-42e9-9c98-0923aee2bf92.roa (raw, json)
Hash identifier: nghnpEcAlQ9cCvttepPFOhZvfP2V0NG0owJ/1qAx7w8=
Subject key identifier: 6E:3B:71:90:6B:B4:3D:79:6B:BB:0D:99:BA:28:E6:2D:09:5F:2A:27
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 32BBB07714F0FACF484AAFC00C6B830EFD77A9A2
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/62c64a7c-a4e3-42e9-9c98-0923aee2bf92.roa
Signing time: Mon 05 Aug 2024 00:00:00 +0000
ROA not before: Mon 05 Aug 2024 00:00:00 +0000
ROA not after: Mon 09 Sep 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
32:bb:b0:77:14:f0:fa:cf:48:4a:af:c0:0c:6b:83:0e:fd:77:a9:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Aug 5 00:00:00 2024 GMT
Not After : Sep 9 23:59:59 2024 GMT
Subject: serialNumber=1923d52be02af3566d57e1db4fa18c7fef027803ce057e6970b99f908e981762, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:66:18:5e:65:fc:1f:41:22:83:5d:37:b6:95:
30:46:3d:ba:32:a0:a0:67:77:e6:08:cf:81:84:40:
eb:bc:ac:df:a9:d6:07:fb:85:2d:13:12:d6:c4:2f:
2c:43:b6:e7:75:a4:e4:89:54:e3:eb:b4:e8:51:38:
11:68:3c:a3:a9:97:2f:ac:1f:15:00:13:f6:ac:fa:
96:ce:ae:33:8c:a4:6b:a0:4e:c0:5e:33:56:55:b2:
4e:66:b1:5b:48:cb:5d:1e:68:3e:33:d2:bf:e2:1e:
0b:69:c4:af:83:49:19:25:61:66:db:23:e2:3a:b8:
0e:e0:e2:04:39:bc:8d:a8:eb:a8:33:fa:68:00:74:
1c:10:54:ab:7d:f3:87:8f:d8:51:82:2f:7a:6e:17:
fc:60:07:3e:02:64:5b:97:f5:ef:a0:0d:8c:af:75:
dc:4a:d1:43:cc:7b:5b:bf:0d:0b:ec:d2:26:f1:dd:
e3:b4:c5:04:08:48:75:02:fa:e1:1a:36:2b:a0:47:
04:45:99:54:d1:d3:de:34:21:86:3c:41:ab:aa:e1:
87:9a:84:01:5e:8b:1c:fd:0f:29:f0:2d:89:a4:3d:
a7:b1:c9:04:bf:19:2a:12:0c:11:ab:d8:e5:74:64:
59:c4:d4:93:a7:ad:cf:56:97:5d:e4:32:e3:63:9a:
dc:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:3B:71:90:6B:B4:3D:79:6B:BB:0D:99:BA:28:E6:2D:09:5F:2A:27
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/62c64a7c-a4e3-42e9-9c98-0923aee2bf92.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
6c:6a:1f:03:69:3e:d9:e6:d1:6c:e1:37:12:ad:05:8d:2a:db:
b7:ef:05:8f:d2:01:94:e1:53:7a:a2:4c:aa:7a:98:8d:39:97:
42:8b:c9:93:31:dd:6f:ba:80:6c:ed:2c:8b:c9:22:04:cf:a1:
3c:72:d0:c5:c5:90:a5:32:5e:5d:a3:0f:78:85:76:24:f4:55:
ac:c3:59:83:b3:7c:c7:b1:bc:30:8c:4d:11:71:84:77:83:7e:
1b:9c:4c:71:aa:53:61:94:30:c5:93:9d:84:fe:86:2e:b1:59:
be:04:3f:f9:67:5c:25:c7:8a:03:8c:41:82:e7:9e:2b:3c:f1:
b5:35:c0:7e:52:60:8d:32:87:90:77:e9:5d:e3:6f:d9:bc:00:
91:cb:9e:3f:c9:f7:62:9d:7b:f6:fd:98:72:f8:36:24:72:8e:
44:6f:e1:19:b7:15:5d:8e:da:f6:6c:fc:ba:b4:d1:33:30:3c:
78:5e:04:65:8f:33:78:64:bb:16:36:0e:d5:ae:62:94:8d:7d:
36:bd:e9:5a:2c:f7:90:88:26:4c:8b:ba:93:ea:2d:b3:de:07:
a0:cb:3b:a7:f8:e4:98:83:1f:d4:fa:ed:56:bd:04:9c:49:f7:
10:c3:c6:b5:58:e5:c0:40:0d:8a:bb:47:bb:0f:79:80:e2:41:
ba:ac:66:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 7 07:19:28 2025 by rpki-client