Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/80341791-50b2-47d7-a8ee-5381806789b0.roa
File: 80341791-50b2-47d7-a8ee-5381806789b0.roa (raw, json)
Hash identifier: 8lORGNFKRV4vy8srUnlCo7x1XMx5EJuMZsfHRXa1JPg=
Subject key identifier: 76:5D:B4:64:6A:B5:CB:A0:9A:25:93:E1:9C:1C:F5:2C:FE:78:A6:A8
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 118F103AF58343B88A03F67B191E83724D5EEAAA
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/80341791-50b2-47d7-a8ee-5381806789b0.roa
Signing time: Tue 20 Jun 2023 00:00:00 +0000
ROA not before: Tue 20 Jun 2023 00:00:00 +0000
ROA not after: Tue 25 Jul 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
11:8f:10:3a:f5:83:43:b8:8a:03:f6:7b:19:1e:83:72:4d:5e:ea:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Jun 20 00:00:00 2023 GMT
Not After : Jul 25 23:59:59 2023 GMT
Subject: serialNumber=85cc8ff7957480ef0931423c0082c559bcdb9bd2a2e9a351ff0f1fbbac3d0146, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:16:5d:e6:81:2c:e2:22:4d:79:49:ec:e2:90:
c4:fc:fe:8e:86:d3:b9:d6:11:fc:12:36:a1:6e:06:
0d:5e:01:52:31:e0:eb:45:f5:95:87:6d:5f:c2:dc:
69:9e:9e:05:c8:ab:54:0b:c3:db:9b:51:14:12:68:
c7:fb:49:65:3d:2c:9e:b8:0f:d1:00:98:c4:fb:14:
0d:95:0c:41:40:bf:b6:b6:69:28:3b:a1:19:a3:76:
6e:fe:7c:b2:4e:8e:0f:e0:0f:cf:33:07:68:a5:2b:
38:bd:55:c1:6b:96:fd:e6:3f:69:4f:80:48:e1:68:
75:8a:05:6a:2a:b7:f6:55:da:91:6a:8c:7d:59:ca:
cb:69:fb:6d:b5:b2:7f:42:d7:0d:c7:ea:12:cc:23:
21:50:29:da:30:a4:47:64:9a:65:d2:3a:77:49:0f:
cb:29:1b:78:e1:cf:37:29:45:9e:a1:7e:e9:e5:00:
88:d5:64:40:66:0f:56:9d:be:24:de:64:fe:d1:ac:
73:94:0d:4a:0d:3c:48:1a:f5:3d:34:22:80:14:5d:
71:b9:30:9d:4c:5c:26:27:45:39:cb:57:ab:bf:fb:
b9:03:ef:86:e4:98:cf:87:5d:1c:ac:19:50:54:10:
df:e0:c6:45:d6:ce:30:74:ad:6c:e2:69:d8:a4:a6:
1d:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:5D:B4:64:6A:B5:CB:A0:9A:25:93:E1:9C:1C:F5:2C:FE:78:A6:A8
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/80341791-50b2-47d7-a8ee-5381806789b0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
3f:ae:d9:67:35:c0:86:ca:5f:be:32:f8:94:b3:fd:28:1f:af:
1a:32:67:49:db:d1:c1:12:e1:53:9a:f2:c6:70:a4:1a:1f:e4:
a9:a7:4b:9e:8a:a0:aa:3d:fc:2e:76:38:15:96:4c:22:0b:33:
ba:26:6d:1c:1a:08:da:45:dc:c9:9e:5f:10:ac:76:4e:b1:84:
e3:8d:83:20:f8:95:dc:ca:b8:dd:75:91:69:f7:a5:27:d7:b0:
14:f2:d7:90:90:8c:8a:b0:4b:4d:4d:98:ca:38:f8:ab:31:dc:
78:24:76:7f:cc:da:1b:dc:a3:ae:33:5b:74:6f:91:d9:de:29:
3b:59:39:3d:95:11:9b:ed:9f:d5:16:57:f1:82:7e:d5:f7:0b:
7c:50:2b:cd:e5:81:82:99:41:91:bb:3e:b2:65:02:ef:14:d1:
a3:69:a0:8f:c1:1c:01:81:22:d1:fa:06:1f:87:c3:f9:02:61:
42:76:01:1e:35:54:48:94:1e:74:d6:33:3b:75:b2:0b:12:3a:
64:21:03:af:e4:33:f3:6b:f0:2a:88:16:4b:a5:e3:4d:c9:0b:
c1:09:ff:af:ba:ff:fc:65:a0:82:6f:8e:15:17:4d:65:b8:d1:
f9:73:0e:20:d7:ac:d6:cc:3c:43:a8:44:fc:09:c7:22:50:f8:
cd:fb:7b:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 18:05:29 2025 by rpki-client