Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/58f325d7-05bd-4fe6-8851-91168669ffeb.roa
File: 58f325d7-05bd-4fe6-8851-91168669ffeb.roa (raw, json)
Hash identifier: emInNNDKCw8obg+a4CkCmo95iwzAlCNLSdMq70gL2x8=
Subject key identifier: AE:12:D8:AB:77:C1:3C:D8:08:6B:A7:9B:D4:ED:A9:9A:62:64:A5:1D
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 6AD2904DA4E8494ED947A82DCFE0E899A3279958
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/58f325d7-05bd-4fe6-8851-91168669ffeb.roa
Signing time: Thu 21 Nov 2024 00:00:00 +0000
ROA not before: Thu 21 Nov 2024 00:00:00 +0000
ROA not after: Thu 26 Dec 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6a:d2:90:4d:a4:e8:49:4e:d9:47:a8:2d:cf:e0:e8:99:a3:27:99:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Nov 21 00:00:00 2024 GMT
Not After : Dec 26 23:59:59 2024 GMT
Subject: serialNumber=fb343359dcccd6ff459def7330fcd60980c0f951b8ec58590eb923493a835061, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:f1:ed:1b:77:24:60:aa:f6:2e:4c:39:53:b2:
56:0e:ec:43:af:b9:13:b1:06:aa:e4:bd:02:24:2f:
c8:97:25:50:8f:d8:e4:c4:2c:96:4c:71:02:da:c5:
5b:22:14:f0:c5:d4:57:23:55:be:aa:a9:79:0a:1a:
01:90:9d:9f:65:6b:a6:91:90:60:44:5e:1c:91:20:
db:f1:43:d9:0c:2c:69:09:4c:15:0f:18:03:65:94:
0d:cd:1f:aa:1e:5a:ed:34:09:fb:23:87:e8:32:06:
c3:c7:22:8e:d7:59:bc:f4:ba:82:67:a1:1f:6b:ef:
0e:a5:6f:44:6f:45:04:5d:e3:dd:0d:0e:f6:4a:24:
5f:9f:a4:8a:d3:33:ac:84:5d:33:9b:f6:3e:d1:2e:
08:94:16:47:b7:0c:4f:29:ac:02:ba:d9:94:6c:9e:
be:24:31:e3:1e:05:3a:b2:a6:d5:46:93:7c:0c:f9:
d1:2e:f5:bb:a2:46:49:e2:36:42:4d:dc:a8:3c:ca:
eb:20:3d:36:2e:94:a0:d2:64:04:70:a6:0c:8b:c7:
6b:17:8f:3e:09:8b:5d:a6:72:f6:37:ca:b1:c6:84:
99:ba:10:74:41:51:3b:69:e8:fb:e6:a3:da:ff:70:
17:c5:3f:49:ba:f0:ff:a5:6b:89:16:d0:de:20:68:
7c:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:12:D8:AB:77:C1:3C:D8:08:6B:A7:9B:D4:ED:A9:9A:62:64:A5:1D
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/58f325d7-05bd-4fe6-8851-91168669ffeb.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
52:50:0f:7d:0a:dc:b4:70:ff:44:d2:08:f9:f8:f4:8a:36:3e:
ac:71:27:5a:2e:94:28:f0:19:69:94:82:ef:df:b2:3e:42:32:
e4:6c:4f:72:17:b8:69:f7:df:6c:09:bd:26:ba:d7:5d:f0:7d:
53:88:c8:cd:51:c8:57:7f:d5:c6:0b:38:79:ec:f9:50:63:a7:
8c:b2:71:49:40:c7:2b:8a:7a:dd:fd:b4:f0:57:8a:e0:3d:06:
e6:24:f9:45:1d:11:3a:9b:da:aa:3b:9d:1e:17:51:6d:44:2c:
19:18:00:c1:bd:5e:3a:d4:30:c8:ad:39:18:f3:40:26:8a:a5:
c9:be:fb:02:75:b9:04:c0:57:24:e6:b0:d0:e4:e6:42:65:6b:
5e:d3:06:7e:44:c4:66:53:c5:30:78:1d:ec:ac:49:76:ab:36:
78:7a:61:6e:48:ca:f5:f3:2b:ea:87:f1:9c:4a:55:e3:35:6a:
b0:a1:9d:7b:a7:3c:a4:b6:d5:8f:64:0c:dd:e9:d5:8a:f6:59:
18:c9:af:be:05:cd:26:61:24:43:20:66:50:23:46:81:d1:41:
11:fa:e1:72:f2:ef:01:8b:d8:43:f0:77:61:bd:5a:5b:1c:61:
91:03:cf:00:b2:8b:2c:02:cf:54:ce:aa:7b:50:6e:23:50:fd:
ea:19:75:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 16 21:24:54 2025 by rpki-client