Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/b63ef5df-c2a6-4ad4-bd3c-d0d8e49ac119.roa
File: b63ef5df-c2a6-4ad4-bd3c-d0d8e49ac119.roa (raw, json)
Hash identifier: E+A8rpfXSV+xzgz4UQkgV1k+9VovqLUg3HyMp+Wgt4g=
Subject key identifier: 86:58:EC:28:ED:73:40:52:49:F7:BA:4F:E5:82:5B:DE:EA:69:BB:8D
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 3DEEEC1326CE5EF312D7292D7CA118AC3C0F8D50
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/b63ef5df-c2a6-4ad4-bd3c-d0d8e49ac119.roa
Signing time: Thu 18 Jul 2024 00:00:00 +0000
ROA not before: Thu 18 Jul 2024 00:00:00 +0000
ROA not after: Thu 22 Aug 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3d:ee:ec:13:26:ce:5e:f3:12:d7:29:2d:7c:a1:18:ac:3c:0f:8d:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Jul 18 00:00:00 2024 GMT
Not After : Aug 22 23:59:59 2024 GMT
Subject: serialNumber=0618abb9a7710d16a4268871c59982da288cecac453d1da2ea85e63b6b1eb6c1, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:65:4d:59:5a:16:9a:47:14:73:04:6a:46:1b:
2d:7e:46:b4:b6:2b:91:15:4d:e1:6c:23:fe:cd:d6:
96:4f:18:e2:63:b9:a0:e6:78:28:14:94:82:b6:3f:
2f:7b:42:42:00:62:50:e9:3f:9f:35:d5:c9:cb:ed:
69:9a:d6:d7:93:c3:ac:e3:9b:9d:b7:47:96:e6:41:
54:92:cb:bf:7b:a3:1e:f5:c2:90:51:68:1f:8d:81:
98:24:f8:f9:5c:65:d5:40:a7:55:98:2c:fa:36:33:
64:db:15:e1:98:f2:2b:74:8b:62:2b:5d:a7:bc:02:
68:44:2d:21:0f:b2:76:49:50:57:4e:60:30:4c:b9:
19:21:8a:a6:4e:fb:f3:2b:72:45:ab:60:50:e3:71:
7b:4b:4c:29:82:3c:e3:e1:ac:96:06:64:02:0c:aa:
23:59:cd:f5:6c:30:f9:f3:81:c6:31:e9:48:67:6d:
5a:0b:6d:71:49:74:29:5b:7c:71:1d:64:86:a0:5c:
f1:d1:3f:53:9f:04:89:4b:52:16:e4:a9:e2:79:ca:
ac:9f:01:7d:ec:da:3b:e2:d8:ce:08:bd:37:f3:8f:
7d:bf:2e:6d:a0:ac:6f:ab:9f:c2:de:75:a0:5c:d1:
d0:93:21:23:d8:b0:f9:f1:10:56:06:ff:66:d5:b5:
2c:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:58:EC:28:ED:73:40:52:49:F7:BA:4F:E5:82:5B:DE:EA:69:BB:8D
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/b63ef5df-c2a6-4ad4-bd3c-d0d8e49ac119.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
17:1a:07:d6:6b:eb:a2:0c:db:37:22:40:c8:c7:5e:21:e5:0e:
f7:dd:dc:8e:e4:cf:17:6c:7b:cc:da:58:ea:15:33:af:73:91:
62:ac:ca:3d:55:0f:9a:2e:a9:d1:15:67:95:e3:22:39:04:96:
ca:b4:ad:e8:d5:6b:82:14:ec:96:82:10:b9:36:7d:01:33:f4:
18:32:9d:42:eb:02:08:a9:e2:98:f7:84:70:cf:5d:8a:47:23:
78:e4:47:6c:38:fe:01:08:33:7a:87:45:38:00:eb:fb:cf:37:
01:74:64:ac:78:9f:3f:e4:23:69:36:62:3c:49:f3:c8:ae:6e:
31:c7:1e:52:0a:3d:7a:6f:fa:e0:de:77:01:44:52:17:b6:98:
6c:d2:e8:12:a2:75:fb:32:c9:b4:68:d7:c7:80:32:00:09:f5:
bb:80:66:6e:c4:57:92:1f:ba:5c:aa:6f:81:8d:f7:08:53:30:
6c:43:07:f0:ee:f9:a0:ce:c0:24:de:8c:82:52:08:60:e1:59:
a5:77:f0:19:52:51:3e:3f:43:f8:f8:25:12:0b:8a:0a:6f:29:
80:62:c8:3f:1b:9b:16:30:b7:fe:95:8e:79:e0:fa:66:47:6b:
d3:e1:86:76:8a:ea:ce:ae:38:0c:a2:6a:65:56:cc:ec:80:a3:
64:ed:39:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 6 09:51:44 2025 by rpki-client