Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/b83a57aa-6bf7-4205-9356-3b2a4257bc87.roa
File: b83a57aa-6bf7-4205-9356-3b2a4257bc87.roa (raw, json)
Hash identifier: H3IFy6Qb73Amj3OrWRWIOLuLjJk/yGYuKa5EaJL3I0Y=
Subject key identifier: F1:85:71:21:85:39:AA:0B:61:F7:6E:D9:B4:F9:83:C6:4E:71:BA:F2
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 5A36CAA2B3E3168265EC33CAAA2C8D77F62237
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/b83a57aa-6bf7-4205-9356-3b2a4257bc87.roa
Signing time: Wed 02 Aug 2023 00:00:00 +0000
ROA not before: Wed 02 Aug 2023 00:00:00 +0000
ROA not after: Wed 06 Sep 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5a:36:ca:a2:b3:e3:16:82:65:ec:33:ca:aa:2c:8d:77:f6:22:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Aug 2 00:00:00 2023 GMT
Not After : Sep 6 23:59:59 2023 GMT
Subject: serialNumber=be8a0f3551b1f78c0653623cb8662be9d00e7dc79ff647f4ecb2270e9c4a761f, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:5e:91:6c:a8:0b:d2:42:9b:f3:f4:94:aa:e6:
3a:ca:c9:70:d2:16:a3:a7:9b:b1:d0:c7:b9:f6:9c:
90:49:35:80:4d:1d:c8:8c:3b:d8:54:65:39:1b:ec:
d6:f8:6c:29:97:83:be:1c:06:a7:e7:05:9a:70:a5:
78:b4:20:46:ac:14:a5:07:7f:e5:16:40:f5:46:3d:
27:2c:5e:00:47:ad:f8:1b:da:b9:94:69:23:1d:be:
ba:15:6d:48:17:33:36:f2:8e:f5:cc:ae:bb:a9:5c:
47:b0:5b:49:db:47:94:86:01:22:fb:88:f2:59:a3:
5d:69:b6:2f:cb:a9:72:0c:65:a8:50:29:fb:06:2a:
07:c4:ad:fb:6c:c1:b4:66:8c:fe:96:68:43:b5:89:
3d:2b:e7:42:d6:28:a0:74:6c:fd:72:aa:a7:3a:5e:
6e:ce:21:55:cc:4a:07:f6:93:f7:d3:69:43:d4:ad:
a0:f6:57:ad:94:06:31:aa:0c:ce:50:59:a0:7f:46:
82:26:8b:03:58:3f:56:56:cc:b8:46:78:38:f6:89:
14:65:b7:64:30:92:47:db:f9:da:89:5b:1e:99:e0:
5b:16:d1:17:fb:72:6c:a5:7e:fa:82:9b:56:3b:ef:
d7:39:98:41:a5:db:62:a5:c6:9c:10:d5:c9:c4:1f:
ad:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:85:71:21:85:39:AA:0B:61:F7:6E:D9:B4:F9:83:C6:4E:71:BA:F2
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/b83a57aa-6bf7-4205-9356-3b2a4257bc87.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
72:66:a5:2c:6a:7b:00:0a:6a:4d:c2:b8:24:77:d3:c5:66:5d:
c7:67:b9:68:74:80:be:59:c9:8f:c7:7a:a6:8d:65:cb:24:92:
2a:02:a5:6b:94:a7:63:e0:1b:59:7c:1e:02:b7:8f:b6:44:e7:
76:b7:29:63:38:17:de:73:c1:6f:93:6f:aa:ba:cb:3f:ec:43:
a5:b4:ab:5e:f5:94:14:b1:78:7f:ed:ee:a1:d6:90:00:27:77:
b8:69:40:d9:0b:b3:4d:10:5e:f9:cc:31:cb:09:5e:ea:9c:9d:
cd:8f:e7:0f:a9:48:9c:77:2b:a0:08:a2:ba:7f:49:64:32:e3:
74:d1:3f:dc:12:b3:2f:3e:4f:0f:43:89:0b:38:db:aa:38:b4:
aa:d1:3a:6c:e9:ac:c4:48:60:12:c8:04:01:c6:89:f5:02:82:
0a:f9:ab:7c:86:c0:01:7c:80:ea:6e:4d:a2:69:20:86:f8:b2:
77:7d:b0:47:ed:3f:35:94:13:c8:90:bc:ed:89:73:f7:34:5e:
bd:a4:bf:9a:e4:cc:e9:e8:ff:96:1e:73:ab:c4:79:1c:e7:8d:
e8:50:2a:76:d3:f4:c5:10:34:53:04:9e:6b:da:40:24:7d:cd:
18:e6:e3:ce:c5:c5:e5:96:b6:fc:d6:9c:36:59:d1:67:b9:1b:
e9:18:7a:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 16:12:53 2025 by rpki-client