Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/6504bfbd-09df-4fa6-a7c0-ea8869d22d20.roa
File: 6504bfbd-09df-4fa6-a7c0-ea8869d22d20.roa (raw, json)
Hash identifier: Bq9l7ikbl6YXIwYlSpwfS5zCZwCHk7pt01AnICRc0sc=
Subject key identifier: C6:6A:5A:5C:5E:BC:08:BD:EE:7B:3A:44:24:AA:70:9A:F6:7A:81:D4
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 78823C90C1321EF4ED3AD600A87DDC37774A601F
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/6504bfbd-09df-4fa6-a7c0-ea8869d22d20.roa
Signing time: Wed 04 Oct 2023 00:00:00 +0000
ROA not before: Wed 04 Oct 2023 00:00:00 +0000
ROA not after: Wed 08 Nov 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
78:82:3c:90:c1:32:1e:f4:ed:3a:d6:00:a8:7d:dc:37:77:4a:60:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Oct 4 00:00:00 2023 GMT
Not After : Nov 8 23:59:59 2023 GMT
Subject: serialNumber=2b507db26fe4a0bd4fcf171f5e76471b5fe40fcf5eeffbe6e76767995c086887, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:c0:42:fb:ad:32:14:97:57:51:df:ca:e7:b6:
55:e0:b4:31:c2:d9:74:a1:eb:f4:43:28:ee:87:dd:
ea:a5:6d:a6:0b:60:08:d1:8f:13:9a:77:56:a6:13:
d8:71:83:bd:86:e3:7b:4a:2f:22:83:4d:4d:e3:60:
46:70:1f:1a:18:f8:c1:cd:f8:15:73:c2:a9:49:0c:
73:c7:0d:54:09:cf:ee:07:e4:a5:c4:92:bd:3f:a8:
87:af:7b:08:e4:75:81:04:9f:51:80:21:24:ce:da:
b5:34:25:6a:20:38:2b:46:52:f8:e5:e1:a5:a4:ac:
f7:fe:5b:7a:ef:f9:29:02:18:03:b9:7f:33:fa:e9:
32:4b:45:2b:cc:24:e2:0a:eb:88:27:fa:82:a2:0b:
d9:2c:74:03:b6:0f:ce:57:bb:eb:17:cf:a0:85:26:
3b:18:4b:a2:b1:b0:60:9d:88:4e:34:3a:ba:84:39:
e2:20:13:73:32:6f:4e:2b:39:9f:72:e6:05:48:34:
3e:c5:1e:3c:41:3d:d5:e9:2f:ca:f3:16:01:16:c5:
90:26:c1:b1:1f:9a:a1:bc:e4:b3:0c:cc:4f:42:06:
03:5f:3b:a4:0d:36:0e:3a:80:87:98:ef:1e:e5:6b:
ba:ac:6c:f6:14:63:99:10:29:a5:68:0f:b9:fd:52:
41:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:6A:5A:5C:5E:BC:08:BD:EE:7B:3A:44:24:AA:70:9A:F6:7A:81:D4
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/6504bfbd-09df-4fa6-a7c0-ea8869d22d20.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
54:99:4a:bb:cc:42:6c:b1:60:98:c7:60:74:f5:06:2a:6c:4f:
f3:a0:1b:ed:ce:f5:46:39:b5:41:37:ed:d6:9a:4d:bf:28:ec:
ff:fc:e9:bc:34:e7:e5:f6:45:1a:ae:d3:5d:a4:d8:f3:db:a3:
0a:e0:2b:89:9d:0f:eb:bc:73:38:b8:82:12:d2:b6:c0:8f:c3:
78:a2:08:b8:77:0e:fd:3e:27:54:30:8c:61:da:e4:d5:84:ed:
d6:90:c1:07:9d:7c:42:75:51:ef:9b:53:3a:33:75:e3:2d:22:
53:58:07:11:bd:9e:42:aa:1d:f2:10:2a:8e:84:27:6c:63:31:
cb:16:7b:13:12:5b:e8:d0:a0:1a:0c:8a:84:79:74:15:d4:14:
69:1b:ce:94:bb:1c:dd:c9:03:05:02:ea:fe:c4:4f:90:82:84:
f3:5c:20:71:c0:a3:14:93:68:3a:4c:1d:4f:0e:7e:50:ca:4a:
a1:0e:b4:09:67:75:76:87:59:7a:19:4a:b2:09:b8:7f:32:08:
76:cb:6e:3c:24:1b:42:71:f5:a1:24:e1:14:a5:48:3b:79:72:
3e:f0:d2:ed:2d:a0:d0:90:05:40:a8:d5:d2:4f:8b:51:7a:29:
cb:cf:a9:29:6f:bc:5c:dd:b7:eb:26:c3:b3:44:ee:de:0a:08:
6e:b5:60:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 6 10:03:09 2025 by rpki-client