Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/690753d2-3ce5-4d0f-a0c9-2df75dc47dd4.roa
File: 690753d2-3ce5-4d0f-a0c9-2df75dc47dd4.roa (raw, json)
Hash identifier: xBPt7PLY+Zo7vmeMw9DdVX2MmTPy5EfKvgYyGG68k3Q=
Subject key identifier: 02:BE:22:43:66:10:95:8F:A6:FA:AE:47:92:E1:5A:53:C3:2C:9E:3F
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 6BEA175B510FAAD49D6B7E8C089A66C5B6A0D4
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/690753d2-3ce5-4d0f-a0c9-2df75dc47dd4.roa
Signing time: Fri 16 Jun 2023 00:00:00 +0000
ROA not before: Fri 16 Jun 2023 00:00:00 +0000
ROA not after: Fri 21 Jul 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6b:ea:17:5b:51:0f:aa:d4:9d:6b:7e:8c:08:9a:66:c5:b6:a0:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Jun 16 00:00:00 2023 GMT
Not After : Jul 21 23:59:59 2023 GMT
Subject: serialNumber=c1bcbacf40c4640334d073d1494033eb5fbaa20b11e3d324302ba67d57412946, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:59:e8:26:75:23:7f:d2:a8:5c:1c:68:b6:b0:
5c:92:e8:57:cb:c0:21:7c:bc:9d:29:75:7c:43:8b:
a3:f9:64:ac:f7:ea:a6:da:7d:2b:e4:69:57:f7:1d:
3a:69:8b:ef:de:dc:d4:b5:3c:45:c2:72:d5:d4:cd:
1c:39:3b:aa:06:e1:f8:c4:36:7a:40:bf:e5:4d:27:
00:d6:e6:9c:99:dc:ea:e0:13:e9:75:cc:ce:63:a2:
b7:17:a9:88:3e:ed:44:d8:e3:02:ca:f1:61:01:fd:
ef:14:df:3e:64:0e:03:ff:39:52:dc:27:8c:ff:47:
df:76:64:c4:c7:3e:a8:ec:22:c6:bb:38:f9:49:a1:
8e:ed:2e:c2:76:65:29:93:20:83:7a:f3:a6:8e:36:
5d:c3:82:a1:70:67:3a:2c:1b:1b:b0:9b:75:7a:fd:
e3:cc:4a:71:36:47:6a:9a:26:8f:01:ae:0b:7e:22:
20:f6:d5:3c:31:da:d7:fd:34:ec:3c:f3:10:40:f5:
f9:bf:b8:31:16:82:41:7d:b4:c9:ff:3b:d5:9f:af:
a8:97:be:2d:27:51:47:33:01:99:b8:cb:6b:62:87:
cd:da:74:1c:7f:94:5c:2c:26:9b:37:cd:18:f7:99:
ff:f6:29:f4:39:2d:bc:9d:1a:e9:9b:6b:40:35:19:
2d:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:BE:22:43:66:10:95:8F:A6:FA:AE:47:92:E1:5A:53:C3:2C:9E:3F
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/690753d2-3ce5-4d0f-a0c9-2df75dc47dd4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
ac:55:1c:47:a0:6b:33:c3:0a:c2:35:fb:ee:66:a6:1a:f3:27:
4e:4b:92:37:55:ad:d6:a8:ac:40:1b:d1:a8:c5:12:cf:96:3c:
32:70:75:2d:d7:c9:2a:9f:8a:91:51:09:fc:6d:18:a7:6e:5d:
4c:17:2d:f7:6b:a0:48:4a:6f:5d:9b:60:92:0a:60:e1:10:ed:
86:00:95:8d:ae:f9:88:2c:11:c8:48:80:e9:c5:46:96:ce:2d:
b1:89:58:7e:bc:18:4a:90:e9:6b:ad:df:8c:f7:f6:43:00:6e:
67:3a:55:aa:da:59:18:3d:0d:b5:5d:a3:aa:84:1d:7c:c5:1e:
ef:fe:45:ac:72:24:37:b3:0b:f9:e0:e8:12:af:a4:bb:6e:eb:
8c:a7:a5:33:02:f3:e0:10:5e:6c:a0:89:c9:5e:ac:9c:0f:52:
aa:38:0a:81:c9:6f:cc:46:fd:a5:ca:04:6d:1e:d9:95:4e:00:
c3:45:4e:f1:97:f5:27:d3:95:04:01:ea:7f:74:60:cd:37:d2:
d2:05:87:8d:2b:a7:48:2a:04:73:fc:68:85:75:39:eb:5d:ec:
51:ea:e3:ed:bb:aa:3d:5b:45:b9:b3:00:94:14:be:51:d2:57:
59:50:82:07:73:bd:35:6d:23:b1:0f:c3:03:0b:81:b7:e0:ea:
dc:ee:b8:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 18:35:24 2025 by rpki-client