Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/c0ac263e-1e43-4b73-89ab-c4c6a6f386db.roa
File: c0ac263e-1e43-4b73-89ab-c4c6a6f386db.roa (raw, json)
Hash identifier: Ift5KqXU/FXhS96BC/iazQyQwL8A7YO4qL5a/Vhzsxg=
Subject key identifier: DD:BB:38:AD:5F:B8:9E:EB:89:AD:50:64:03:1A:4E:E3:84:6E:3D:25
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 75DF5255628330E5092993B746700710A8A2782D
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/c0ac263e-1e43-4b73-89ab-c4c6a6f386db.roa
Signing time: Wed 31 Jul 2024 00:00:00 +0000
ROA not before: Wed 31 Jul 2024 00:00:00 +0000
ROA not after: Wed 04 Sep 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
75:df:52:55:62:83:30:e5:09:29:93:b7:46:70:07:10:a8:a2:78:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Jul 31 00:00:00 2024 GMT
Not After : Sep 4 23:59:59 2024 GMT
Subject: serialNumber=5e52e41330cd846cc2e8470e1d4fe1fd5cc683955dc67fa618e76a08ba36f914, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:e7:bd:e3:61:54:e7:76:f7:f5:74:d6:45:b3:
48:fc:ce:fd:d9:c4:8c:18:2b:3b:ef:99:85:e7:a6:
77:a1:de:e3:cb:36:9e:28:54:7e:31:78:1a:44:65:
11:0a:9e:bc:5d:0d:e6:82:22:3e:f7:c0:41:58:7a:
fe:94:73:2c:ce:37:7e:16:68:c9:ee:7b:72:e9:d5:
ab:e7:f3:40:ef:dd:6f:51:97:b5:81:fb:0f:96:50:
90:42:bb:0c:39:7a:06:f9:74:2f:92:8b:14:db:dc:
66:db:40:c1:8d:a6:d3:10:58:e7:95:b0:e9:ec:6b:
6a:1d:d3:1e:62:4e:7e:2d:e0:e9:99:88:d3:41:57:
fb:01:a1:c4:36:b1:80:6e:7f:9e:5b:08:9e:af:9a:
7b:56:73:83:e7:df:c9:5f:f9:9b:14:0a:35:62:e6:
a8:b8:48:2b:06:d2:57:5d:f9:a6:c8:f4:66:c9:f6:
c8:28:5e:d1:55:9c:3b:fb:72:69:06:d7:22:c0:fe:
47:cd:fa:c5:40:6e:ab:bb:c3:1f:f9:9c:0c:ad:da:
48:b9:57:6e:ab:34:0f:39:12:fa:2d:d8:fb:c8:c5:
61:ba:f6:6a:67:28:8f:68:c2:08:8d:f9:c6:c5:4c:
26:2f:99:6e:95:e4:91:4c:a2:b2:1e:aa:da:6e:37:
c4:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:BB:38:AD:5F:B8:9E:EB:89:AD:50:64:03:1A:4E:E3:84:6E:3D:25
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/c0ac263e-1e43-4b73-89ab-c4c6a6f386db.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
61:dc:3b:a4:9d:c6:84:dc:7b:32:03:3e:b7:75:fa:be:6f:41:
4e:76:b0:7c:e2:29:2e:59:93:99:8d:33:e3:2d:6a:c1:85:0c:
3d:68:b6:2a:c9:ea:fa:e5:e7:30:96:7f:61:bb:5e:8e:09:f4:
20:b8:53:7a:3a:e7:18:71:14:5c:84:44:67:6d:5f:d5:94:3c:
a6:12:a0:ec:70:19:4d:d9:ca:fb:00:d1:54:46:41:ad:84:11:
ce:73:74:ca:1a:d1:e5:dc:ac:da:91:77:4c:d3:78:98:dd:72:
b3:12:39:21:0f:83:a7:cc:32:d1:62:41:4e:54:01:8e:fc:0f:
49:67:04:b1:75:fa:fb:95:72:0c:ab:84:05:2b:5e:98:b4:17:
19:70:76:43:0c:40:6f:92:76:34:72:58:0f:5c:78:fb:2a:e0:
9f:b6:a7:03:d0:a8:6b:8d:95:c3:3c:20:ce:35:2e:a1:a1:7d:
8d:73:c2:2e:fe:7c:e1:1f:6b:20:c6:40:d2:e7:3c:88:d3:f3:
98:8b:48:ab:2c:03:22:52:f3:19:70:c4:ac:40:c8:07:58:a1:
6a:48:5d:ae:76:46:6d:c2:a9:73:d9:14:a6:e8:98:3e:24:90:
ed:9c:ad:85:85:55:e6:82:cc:16:5e:a6:8e:47:03:4f:9e:1c:
12:0c:02:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 16 17:45:20 2025 by rpki-client