Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/1b92c35f-5ba3-426f-ac08-7e10b71fc304.roa
File: 1b92c35f-5ba3-426f-ac08-7e10b71fc304.roa (raw, json)
Hash identifier: HxXjOsFHD4YSy0KABRgAO5CmAEDAsuFJWqFEkV0AYzw=
Subject key identifier: 16:7D:3F:F6:3D:84:A5:BB:BF:13:C1:B4:E0:5B:9A:D5:B6:1A:5A:6B
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 73AD54D5EE49564F3068B8F2D6D96BD1863B3BB0
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/1b92c35f-5ba3-426f-ac08-7e10b71fc304.roa
Signing time: Thu 27 Mar 2025 00:53:15 +0000
ROA not before: Thu 27 Mar 2025 00:53:15 +0000
ROA not after: Thu 01 May 2025 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
73:ad:54:d5:ee:49:56:4f:30:68:b8:f2:d6:d9:6b:d1:86:3b:3b:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Mar 27 00:53:15 2025 GMT
Not After : May 1 23:59:59 2025 GMT
Subject: serialNumber=a933d497a552b74909bf33be4f4d6d1c5b3d336331644e012179cd5951af846d, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:de:8a:6d:84:23:59:21:4f:7a:37:07:49:d0:
03:a2:b1:89:d6:3e:aa:c7:05:b6:17:c0:af:f8:3c:
0e:1b:c8:77:e2:3c:0d:4d:a2:11:58:04:aa:fb:a2:
fc:cf:02:d0:7a:f5:2c:f4:36:63:3a:bb:f9:cc:04:
52:3f:b8:0d:7a:82:bb:29:b9:5d:93:fd:05:04:2f:
36:12:9d:6f:b1:40:90:d0:9e:5e:1b:e3:2d:b3:5b:
c0:3b:b4:87:47:b0:15:7e:4b:de:61:78:fc:e9:6a:
5a:e5:f1:f7:f3:48:9c:da:1a:70:65:58:b3:6a:46:
d4:5e:ee:97:3f:2b:c6:2f:e3:e5:3c:24:6d:f1:a6:
98:a4:cc:5a:0e:84:8d:0e:65:bf:79:d2:30:2b:f1:
5e:f0:c2:a6:c1:88:8c:d8:d1:ae:ad:58:ae:63:72:
cc:a0:3b:94:ed:cd:11:f3:25:b9:94:fb:46:86:8c:
a7:56:35:ea:38:2b:ed:dc:be:bf:8b:76:d5:6f:fe:
da:45:6f:00:3b:23:63:0b:bd:f8:7a:95:93:0d:44:
70:3c:68:da:7d:fb:b4:b0:aa:72:62:03:b9:e9:2c:
de:7d:20:f4:83:a9:71:76:8c:ab:41:c7:a2:14:f3:
51:3e:0f:30:42:a6:c6:69:fb:0c:33:ca:af:c0:05:
5e:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:7D:3F:F6:3D:84:A5:BB:BF:13:C1:B4:E0:5B:9A:D5:B6:1A:5A:6B
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/1b92c35f-5ba3-426f-ac08-7e10b71fc304.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
82:d8:3b:fe:71:d9:0d:c3:f3:ae:c0:b7:ac:e7:0f:ac:ce:50:
ac:72:16:4e:e9:60:5c:bd:b2:83:12:30:e2:38:9f:26:91:db:
2e:60:86:83:cf:e0:f6:05:ab:a6:bc:39:fd:ad:37:d7:34:10:
eb:e9:4f:e6:dc:fa:33:77:28:72:e8:a1:97:4d:1b:43:31:94:
e3:2c:dc:dd:62:3e:46:d9:c8:d2:44:0e:e8:85:25:53:80:2a:
b9:82:92:1f:ab:dc:c8:06:b4:75:c2:0d:a7:16:17:43:b3:fc:
dd:66:73:96:3a:d7:a6:f8:d3:d2:79:43:07:c0:a6:53:a5:c3:
1d:7d:1c:34:d7:8c:fa:d1:ba:0b:11:0a:3a:84:6b:0c:fb:18:
d1:e8:a9:9c:86:dc:af:ce:e9:eb:63:39:ea:70:40:63:b2:a2:
7f:64:5c:eb:e4:76:91:e7:76:80:42:16:14:81:95:0a:67:ad:
ca:45:2b:83:02:c3:a4:2e:73:02:0a:be:89:da:a7:a6:63:49:
d4:05:3c:e0:ae:60:df:47:d8:19:88:01:2d:17:8c:ac:10:63:
4a:0b:a6:0b:44:7a:e0:6d:af:20:0b:3e:2d:e1:ac:b8:15:0d:
c1:f3:8b:10:c3:25:c6:5e:2b:34:b2:f2:57:63:70:e5:7a:09:
a0:ae:7a:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 16 15:50:39 2025 by rpki-client