Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/9ccc208f-9eae-49f5-b14c-0b6b6516b3b6.roa
File: 9ccc208f-9eae-49f5-b14c-0b6b6516b3b6.roa (raw, json)
Hash identifier: Arr2I6luLy9nn8pVMcL3li75Wvvl3etkD5/lvkvcFLs=
Subject key identifier: DD:29:47:16:77:3D:12:08:98:BA:42:F3:42:D2:7D:05:B3:0E:39:7C
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 2AEE522E21B520AC719FC478EAAD77C7B12F7D92
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/9ccc208f-9eae-49f5-b14c-0b6b6516b3b6.roa
Signing time: Mon 23 Oct 2023 00:00:00 +0000
ROA not before: Mon 23 Oct 2023 00:00:00 +0000
ROA not after: Mon 27 Nov 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2a:ee:52:2e:21:b5:20:ac:71:9f:c4:78:ea:ad:77:c7:b1:2f:7d:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Oct 23 00:00:00 2023 GMT
Not After : Nov 27 23:59:59 2023 GMT
Subject: serialNumber=42e29e8859064ca35efe36ff41849a4223ce2091bb23322a46501de1a08d6160, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:01:0b:aa:20:61:3d:72:7b:4e:47:1b:d1:0f:
ba:d7:b9:ec:83:92:83:60:11:54:ec:70:a1:36:d3:
81:57:65:58:80:e9:72:41:db:d8:77:cb:cf:8e:f8:
70:52:9f:60:de:04:aa:de:c2:8f:70:5b:18:b5:5f:
b6:7a:27:b0:64:b0:c4:99:b5:58:57:b7:80:76:2b:
a5:f0:30:7d:21:30:f0:24:6f:59:f1:97:3f:0c:e9:
d0:96:b4:b2:41:ee:b6:49:a3:07:b5:49:5e:32:c9:
89:b4:83:04:b2:95:84:1f:4e:99:41:1c:60:d5:31:
7f:de:0c:51:0e:8d:97:0a:7f:ca:8f:40:3a:1a:25:
ac:0e:17:6a:d9:4f:d2:25:d1:b8:ee:f6:ad:31:a8:
0a:b4:c5:90:cf:4a:5c:5f:40:e4:20:bf:75:83:cb:
16:c0:a9:27:5f:e5:5a:76:53:b5:01:65:e0:10:63:
7a:06:c4:80:6d:87:19:b5:91:57:9a:dc:51:da:22:
26:4f:82:4a:7c:48:c4:58:b7:81:85:27:fd:27:a5:
88:02:87:10:fe:60:6f:d3:4e:06:1c:d7:0d:d1:8b:
dd:14:ea:d4:71:3b:9a:e4:3a:34:5c:9a:f5:fe:54:
9a:89:05:e0:ac:76:4b:37:42:b1:b3:4d:4f:74:14:
13:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:29:47:16:77:3D:12:08:98:BA:42:F3:42:D2:7D:05:B3:0E:39:7C
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/9ccc208f-9eae-49f5-b14c-0b6b6516b3b6.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
94:13:f8:3f:82:f2:71:63:72:89:c5:16:0a:07:fc:26:7c:f2:
7a:dd:5c:f0:d5:f5:ba:03:b8:cc:32:75:b4:7a:cc:91:c8:71:
3b:62:c1:ff:ba:da:94:27:31:1d:c2:6c:a3:e6:49:0c:5f:02:
68:c9:ce:04:c1:d9:37:4b:71:27:be:7f:07:d6:4f:60:b0:1d:
14:4e:61:c0:0a:ee:e2:56:c3:ff:87:3c:c5:e0:ce:22:c2:e4:
ed:75:66:17:0b:29:0b:34:3c:67:8e:d3:2b:d5:95:ad:97:26:
f1:ea:e9:93:5b:77:56:91:fa:c7:c7:94:b0:47:8a:aa:e3:79:
21:75:c1:19:b5:9f:11:38:ea:a0:9c:b2:3d:05:bc:d7:0d:03:
0f:50:48:37:57:15:45:c9:1b:05:5b:b8:81:05:42:ab:6c:69:
3e:ba:75:48:d3:9f:35:02:0a:54:de:3c:80:bb:2a:07:67:55:
de:eb:37:b0:f0:63:87:0a:9d:1b:e6:93:89:7e:bc:70:97:06:
13:75:ed:11:49:19:e4:af:46:c4:b6:5c:ab:39:f6:0b:33:0a:
b3:03:4b:42:01:92:f5:93:0d:2c:12:c0:ec:c2:cd:51:ef:45:
de:4d:d6:a4:c7:22:5a:70:12:eb:24:55:8e:d2:3e:30:26:12:
f1:8d:f2:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 18:31:31 2025 by rpki-client