Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/66fbfadf-3561-427e-91d9-fa8454e69498.roa
File: 66fbfadf-3561-427e-91d9-fa8454e69498.roa (raw, json)
Hash identifier: MD0e85V9sB45vhEm5j4Owe+wKKjp4KKwEASubSbOEMM=
Subject key identifier: 98:CC:95:5C:2B:CA:24:B6:1A:60:4B:FA:F2:B5:28:26:92:13:68:91
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 6635C7F7BCB58ECFA12DF4FBE1B727AF5A653090
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/66fbfadf-3561-427e-91d9-fa8454e69498.roa
Signing time: Sat 11 Nov 2023 00:00:00 +0000
ROA not before: Sat 11 Nov 2023 00:00:00 +0000
ROA not after: Sat 16 Dec 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
66:35:c7:f7:bc:b5:8e:cf:a1:2d:f4:fb:e1:b7:27:af:5a:65:30:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Nov 11 00:00:00 2023 GMT
Not After : Dec 16 23:59:59 2023 GMT
Subject: serialNumber=3ff91b7f091eedfa970e1ae164fc3b7394f7eeaedbce639d94772a6e3ca4d48c, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:99:04:52:79:61:49:2a:9b:cb:a7:91:d0:ae:
d6:69:db:c8:47:c5:1e:25:12:b0:84:14:2f:32:f8:
a8:75:e3:5d:42:17:e3:60:97:0a:4c:ac:f0:3e:79:
2f:d3:c6:16:33:c3:c9:53:f9:b5:cc:d5:eb:d7:8d:
d7:78:09:d6:b4:14:c6:1b:fd:ad:36:87:e9:1c:63:
de:69:88:9f:da:56:d1:44:2e:7b:2a:f1:bc:88:08:
57:ba:92:ce:14:40:33:87:de:ae:f2:57:da:4a:0a:
c8:59:2f:c4:97:f3:13:9f:5f:66:3f:39:7d:93:11:
6c:03:73:57:c4:20:58:21:48:90:f8:3c:50:21:68:
70:c2:d2:c0:f7:29:a9:ee:1b:03:6c:25:5a:83:c0:
28:85:ee:26:20:ac:6b:d1:e7:94:09:af:8e:9b:f4:
2f:e2:ca:44:67:74:e5:ac:7d:fa:c4:67:86:db:e2:
77:0a:ec:61:83:65:33:3d:b4:b2:93:4e:c0:98:13:
79:cc:1d:56:6d:9f:cb:6f:60:2e:8d:57:3d:ac:ff:
8f:2e:be:e1:b6:f4:12:aa:7e:4b:61:99:4c:cf:64:
65:47:7a:b4:83:68:ec:35:69:d7:2b:6d:a3:6d:0e:
08:a9:44:fd:b0:1a:76:41:2b:99:da:75:e5:3c:56:
57:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:CC:95:5C:2B:CA:24:B6:1A:60:4B:FA:F2:B5:28:26:92:13:68:91
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/66fbfadf-3561-427e-91d9-fa8454e69498.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
67:0f:22:97:5e:6b:66:cd:ac:fc:89:c8:af:b8:08:85:44:62:
25:cc:a7:1b:03:cd:c0:02:c0:2e:26:61:a5:e0:81:3e:49:68:
28:6b:71:21:7e:01:16:a6:a9:00:10:c1:89:77:18:cc:ea:a2:
63:e9:64:de:43:cc:5a:cf:ab:7e:a4:7a:33:1b:12:9a:d4:34:
13:63:2f:06:77:09:80:a2:41:28:71:a5:02:8d:af:a1:d8:28:
b9:38:48:7c:ca:6c:bd:78:65:06:a7:c8:9e:3c:06:80:13:f5:
72:bb:1c:aa:ea:9e:30:66:97:d7:15:36:54:b7:7c:b6:d8:83:
24:39:e2:84:66:82:25:40:87:8b:96:1a:b0:cd:44:4e:82:2b:
c5:95:ad:51:bc:1f:0b:7d:fe:82:5c:6c:69:7d:2a:31:09:86:
2d:00:35:18:1e:ba:67:44:da:82:ae:75:68:fa:e0:04:db:32:
54:38:2c:99:55:b8:a3:6c:84:b6:ce:44:f3:9f:41:da:cd:3b:
86:5c:79:dc:8e:c3:a6:53:96:a2:ac:0a:a7:0f:c0:82:13:7d:
25:30:a1:fb:df:7a:19:c1:d7:fd:32:40:27:54:bb:fa:38:54:
bc:02:58:58:27:e5:2b:4b:8f:65:ee:d7:3f:b4:bf:10:85:fc:
49:8c:1b:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 16:14:50 2025 by rpki-client