Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/635165ed-74ff-4fa7-9e6b-b5bfda76565f.roa
File: 635165ed-74ff-4fa7-9e6b-b5bfda76565f.roa (raw, json)
Hash identifier: UPH3YaJwK27EuchA7feOHGjlyTtinNXQ5UDVlbsqWOI=
Subject key identifier: 03:30:D3:52:CE:3B:63:6A:ED:B9:D9:F9:61:6A:2F:4E:FD:A9:38:29
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 36DB03B990019163D02D4B6195E22F4FD5DD4CF1
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/635165ed-74ff-4fa7-9e6b-b5bfda76565f.roa
Signing time: Fri 21 Jun 2024 00:00:00 +0000
ROA not before: Fri 21 Jun 2024 00:00:00 +0000
ROA not after: Fri 26 Jul 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
36:db:03:b9:90:01:91:63:d0:2d:4b:61:95:e2:2f:4f:d5:dd:4c:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Jun 21 00:00:00 2024 GMT
Not After : Jul 26 23:59:59 2024 GMT
Subject: serialNumber=c12384cbf20388f65aec4f1c2ef3ebaa14c9271931b35231985f31409f71dc92, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:e3:b6:59:60:7d:c1:e7:14:1c:be:ba:a9:e3:
37:8a:06:ee:f5:bf:4a:ff:48:6c:63:46:61:cd:b0:
ec:9e:38:dd:b2:60:83:a0:86:1f:3a:08:ad:58:40:
60:8e:5d:36:9a:9d:3f:f9:1b:18:12:a0:a6:a9:c7:
5b:4e:af:bf:51:1d:40:88:5c:5d:b6:4e:57:b8:65:
f9:ed:dd:c9:69:83:52:95:63:34:a4:e7:d2:69:d5:
9b:4f:60:0e:81:9c:97:ea:eb:1a:63:3e:67:a9:79:
c3:5f:a0:53:a0:32:ec:3d:ea:f3:cd:9c:61:d0:3a:
cb:ee:f8:bd:d0:12:96:9b:e1:27:23:30:92:09:4e:
aa:1f:c9:16:31:2d:24:b6:89:7c:f2:cf:cf:3b:67:
5f:29:51:0b:fb:00:f0:3e:96:8e:52:fb:3e:cc:fc:
7f:c9:84:39:52:0c:29:31:17:a3:30:10:45:24:bd:
d1:e0:a7:a6:c9:d9:95:0f:6f:c6:ca:c7:c8:41:b7:
e3:b5:da:4a:a3:25:8e:de:23:38:cc:bf:e3:80:cc:
2b:89:2c:6d:32:78:b1:e6:b3:76:b1:e4:73:be:e7:
dc:57:60:87:18:35:e9:30:eb:95:c4:9e:c7:1d:bd:
31:4f:0f:fc:e7:8a:74:2f:ad:a0:e1:c4:02:10:41:
2c:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:30:D3:52:CE:3B:63:6A:ED:B9:D9:F9:61:6A:2F:4E:FD:A9:38:29
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/635165ed-74ff-4fa7-9e6b-b5bfda76565f.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
ad:70:be:39:b1:6a:71:ff:db:70:95:87:22:47:3c:18:fb:60:
3f:79:6b:e5:06:55:a1:68:8d:28:76:62:63:ca:de:33:b5:e0:
d7:25:2f:41:30:18:93:69:e5:7d:ef:41:af:c1:65:d8:b4:89:
7d:b1:0d:7f:49:fe:87:31:a0:98:96:cb:36:22:06:ef:f0:a8:
8c:62:ba:de:e2:67:e7:94:28:cc:0e:c5:3f:8b:88:4a:ed:af:
8e:de:e5:ad:4e:64:f5:b5:0a:d6:40:6f:16:e0:24:65:81:c6:
e7:2e:bf:4c:f9:69:c7:94:05:30:4d:f5:13:34:c9:2e:8f:74:
5a:fa:63:ed:f8:26:50:e6:7b:70:e8:42:23:0a:7c:e3:bc:d8:
c5:c8:55:ca:ae:24:99:85:a7:3d:9c:6b:0b:eb:57:60:80:61:
ca:36:cb:bc:14:92:c2:f5:ae:e6:09:0a:97:35:70:9d:44:e2:
b1:2f:13:18:43:37:95:f2:0a:8f:50:a0:86:57:e3:be:de:80:
e6:f9:df:bf:56:3b:05:24:ae:74:66:44:d9:c0:de:ec:4d:9b:
df:62:10:ae:39:de:ca:7b:14:24:53:16:e6:01:2e:dc:44:35:
84:4b:89:74:07:74:9d:47:82:18:3b:f8:8e:94:d8:d8:0d:10:
85:79:4e:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 16 12:09:30 2025 by rpki-client