Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/5cdca9ec-8ef6-4cea-b4ee-9a35fa187a7d.roa
File: 5cdca9ec-8ef6-4cea-b4ee-9a35fa187a7d.roa (raw, json)
Hash identifier: 5fg81LQkhypHyK81ElElBqPHo70PlqBeMiKskuBYbQ0=
Subject key identifier: 2A:DE:F7:F1:ED:A3:8A:5B:CB:01:9E:25:28:6F:FB:F4:FA:AE:98:EE
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 3C102A4B9B2DC52EE793B59F342A5D07F237DF3F
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/5cdca9ec-8ef6-4cea-b4ee-9a35fa187a7d.roa
Signing time: Mon 21 Oct 2024 00:00:00 +0000
ROA not before: Mon 21 Oct 2024 00:00:00 +0000
ROA not after: Mon 25 Nov 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3c:10:2a:4b:9b:2d:c5:2e:e7:93:b5:9f:34:2a:5d:07:f2:37:df:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Oct 21 00:00:00 2024 GMT
Not After : Nov 25 23:59:59 2024 GMT
Subject: serialNumber=51fb952c1378df3853c3a6d25c4d9898d4708e8315883f4ac3ef2aeadfcc6a4b, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:1f:0e:21:a5:a7:b9:b8:94:06:2e:23:f9:c7:
29:15:3a:31:26:6b:63:fa:ca:78:1f:aa:02:cf:b2:
42:9c:7e:19:c1:15:db:12:22:f3:b1:27:ef:74:1e:
0b:d3:02:cc:be:31:fa:b6:2f:21:36:b9:89:62:48:
24:39:6a:49:85:ad:85:84:22:e0:92:16:2f:7a:f9:
1d:1f:1d:a9:cc:aa:c6:6f:e0:f4:87:5a:0b:a4:df:
ec:89:a0:34:aa:b9:ca:64:07:73:a2:62:8c:a1:93:
41:30:e3:70:8f:76:b6:f7:50:f7:32:90:77:31:c4:
66:4d:15:39:a2:a7:31:14:48:4e:77:31:65:cd:f9:
de:91:d4:73:42:12:8f:4b:0e:0e:26:95:12:3d:2e:
33:7d:d7:00:f9:11:20:71:25:a4:91:a4:50:02:26:
8f:37:ee:af:e1:bc:3e:6b:e9:d4:64:8e:d0:39:e2:
24:f2:80:cd:68:24:66:81:d1:0d:48:6e:42:fc:45:
09:30:69:60:0a:4b:d4:1d:48:ec:21:3d:2d:2a:71:
90:4b:d6:9e:ff:6a:bb:37:7b:48:64:e4:3c:10:b9:
cd:e5:13:2f:45:27:96:cd:d4:03:3d:56:25:53:38:
f2:c5:9a:96:63:4d:88:a3:6c:6d:4e:79:5b:5d:b8:
46:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:DE:F7:F1:ED:A3:8A:5B:CB:01:9E:25:28:6F:FB:F4:FA:AE:98:EE
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/5cdca9ec-8ef6-4cea-b4ee-9a35fa187a7d.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
00:91:29:74:28:f5:60:41:5c:19:f3:53:dd:2a:2f:88:68:32:
d2:93:41:ba:dd:d3:4d:54:d4:08:d3:78:7e:1d:98:fe:81:8c:
16:db:41:3f:6f:f5:91:15:ef:1a:54:ca:3c:60:c2:fc:9a:7b:
6f:6f:55:ae:3c:61:39:51:5e:7f:cc:6b:d8:3f:e5:79:72:6e:
09:ef:ce:d4:e8:1e:6c:65:2e:eb:09:c7:b6:15:a4:51:13:55:
fd:d7:78:68:29:85:e9:bb:f7:30:12:bc:69:44:42:97:ea:a5:
e5:ee:1a:ce:d7:3a:49:6a:49:15:f5:17:77:21:54:1f:b2:a2:
33:1c:52:4e:11:ba:23:fb:b4:3b:55:c5:cc:a3:e4:08:f6:46:
1d:fb:1c:f8:ad:97:4f:10:be:7a:c1:3e:02:e2:14:0d:b1:05:
17:70:cc:40:7a:52:4a:0e:99:3d:93:59:08:8b:87:41:46:c9:
f6:6a:69:a7:31:82:37:0a:6e:b5:84:87:e1:2b:83:de:8e:18:
2e:41:2d:b8:4e:1a:ad:04:67:2a:79:63:5a:b5:8f:b5:eb:6a:
d9:fd:89:af:3d:73:98:14:97:23:db:3e:41:a3:ca:a0:a6:f4:
02:65:ac:7b:27:85:84:c5:f9:7f:60:df:ca:dd:93:48:a8:3d:
27:70:37:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 16 11:29:41 2025 by rpki-client