Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/3cbd3fca-4df0-44ab-80e8-c9eed9e493a5.roa
File: 3cbd3fca-4df0-44ab-80e8-c9eed9e493a5.roa (raw, json)
Hash identifier: 7dbB6cySc/HSJ2mBFSIud4KtugT/EJMQbRAhiqm3/hE=
Subject key identifier: 97:DD:FE:27:4E:99:E4:E9:9E:81:2E:FA:FC:10:45:BB:EC:E4:0D:A4
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 1C3EA2B8237364D3E6A6804BD8C586E0238D2C03
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/3cbd3fca-4df0-44ab-80e8-c9eed9e493a5.roa
Signing time: Wed 02 Aug 2023 00:00:00 +0000
ROA not before: Wed 02 Aug 2023 00:00:00 +0000
ROA not after: Wed 06 Sep 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1c:3e:a2:b8:23:73:64:d3:e6:a6:80:4b:d8:c5:86:e0:23:8d:2c:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Aug 2 00:00:00 2023 GMT
Not After : Sep 6 23:59:59 2023 GMT
Subject: serialNumber=baa7e5d2d270417315a53e71ba4e8e0144ba88d27f56106e1e68c0df224b8643, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:f8:ab:9f:6f:26:c6:bb:6f:7b:bf:08:9b:ad:
ac:91:34:2f:8c:58:b9:09:5b:1f:bc:79:9c:f8:94:
b9:be:bb:f3:1a:0e:aa:bc:ef:2f:e6:cf:92:3e:ad:
11:9e:68:e9:fc:2b:03:c7:50:35:76:28:a5:06:8c:
cf:e4:b8:8a:87:72:c1:54:53:2c:90:2b:5a:5f:c2:
cd:ad:f3:55:db:50:74:74:51:14:23:a2:0a:b8:43:
fb:a8:09:f7:1c:c4:e8:1b:76:4d:f0:b6:7b:ea:a1:
63:73:fc:c7:6b:05:e6:d9:f7:2f:0d:5d:91:56:08:
ff:cf:ee:a7:d3:e9:70:54:40:eb:09:74:fa:a1:2f:
00:f4:4e:c7:87:f7:01:bd:fb:e7:7b:99:70:51:6d:
9d:29:3c:af:6d:60:ca:fd:17:9d:b4:1b:ae:e2:5a:
28:e9:a6:23:e6:68:04:2d:55:3e:3e:2c:8e:3a:8c:
e5:ad:48:15:80:0f:b7:93:61:6b:74:f9:7a:f2:99:
6c:08:9d:05:2e:f0:db:65:c3:c5:c9:1c:43:de:75:
a1:d7:e1:fe:d4:86:c3:3e:94:01:ec:96:22:cd:bd:
f6:29:4d:bd:5a:42:4a:37:74:b6:a1:39:18:0b:99:
3b:2a:00:0d:2f:85:53:2b:78:18:50:55:69:4a:b7:
c9:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:DD:FE:27:4E:99:E4:E9:9E:81:2E:FA:FC:10:45:BB:EC:E4:0D:A4
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/3cbd3fca-4df0-44ab-80e8-c9eed9e493a5.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
70:f3:00:9e:37:9a:d0:9e:6a:c0:33:ff:65:85:0c:b1:c9:b8:
74:a3:ee:c3:71:f0:60:e2:12:6d:5e:c7:1c:4d:7f:ba:60:ce:
24:46:b7:b5:6e:ed:5b:80:ed:28:e0:3f:ce:3a:9e:04:05:70:
a6:4c:8f:89:59:41:54:0c:a2:1d:8e:b7:a3:e7:1b:72:db:88:
1a:75:7f:65:e2:f0:cf:15:b7:73:26:ac:e4:ff:f2:49:24:d1:
ea:bf:5c:7c:01:aa:64:fa:24:34:9b:33:cd:7b:c2:e2:d2:26:
d8:e4:99:bc:76:a7:3f:fa:3c:49:52:f2:88:3a:d2:a7:cd:29:
50:84:6d:3a:f1:ff:d2:f2:7f:82:cb:7d:6b:97:a1:5e:17:08:
6d:49:46:fd:03:c7:c0:8c:a1:a0:7d:5e:dd:0c:53:d8:d8:27:
46:ba:a6:3a:2a:8f:a4:75:58:04:1b:aa:2a:d1:dd:9c:0f:16:
a6:f6:02:a1:21:7b:5d:19:b8:9b:d3:7a:54:1d:7a:de:0d:28:
7c:e5:14:0e:ab:d0:93:9a:f7:7e:58:52:65:2c:81:9a:1a:6a:
f6:e1:1e:2e:68:29:7f:de:5b:c3:e9:5c:d0:19:ef:c7:4c:4e:
72:d5:87:04:d8:2c:61:29:96:70:e7:7e:7e:c2:ee:ce:0f:51:
6a:c2:cf:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 16 13:18:08 2025 by rpki-client