Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/01dca4ee-06e5-4272-a2b5-07d712efdddd.roa
File: 01dca4ee-06e5-4272-a2b5-07d712efdddd.roa (raw, json)
Hash identifier: 8gC+fIa7zPE6J2bZqmZoJmgcJyCQXDFiVfeq/0wF7sc=
Subject key identifier: F9:26:9A:92:B8:FC:1D:42:F9:86:DD:D4:8D:97:6F:54:96:5D:10:C7
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 1CBF14317777E7ECA0F068C5863FF8949BB0289A
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/01dca4ee-06e5-4272-a2b5-07d712efdddd.roa
Signing time: Tue 24 Oct 2023 00:00:00 +0000
ROA not before: Tue 24 Oct 2023 00:00:00 +0000
ROA not after: Tue 28 Nov 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1c:bf:14:31:77:77:e7:ec:a0:f0:68:c5:86:3f:f8:94:9b:b0:28:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Oct 24 00:00:00 2023 GMT
Not After : Nov 28 23:59:59 2023 GMT
Subject: serialNumber=1f6069aefe44a19b9999d4319ade8e65ac31be3813d1ec411581b0cbb818e1b7, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:3c:fa:fc:31:3a:c3:a4:5c:19:ef:88:1d:b2:
3c:3f:d7:b5:dd:5a:d4:d9:c8:46:d9:7a:e3:1f:e2:
10:f3:c0:80:b1:fb:7b:12:e2:c8:09:e2:0b:4b:bc:
03:62:b0:0d:f4:93:d3:b9:00:00:f3:7e:64:9c:f2:
8a:75:fb:37:cb:62:db:f9:9a:f7:78:0a:53:51:54:
4f:3d:ee:51:50:27:da:e7:8d:02:fc:7d:81:15:65:
50:dd:db:26:1c:04:4e:3e:76:bc:92:76:75:b3:11:
1b:83:fa:62:36:cc:a9:75:ce:a8:5b:bc:6d:4d:f9:
09:7a:bc:74:b9:1e:e9:16:f0:fc:09:47:ca:de:11:
10:45:72:ad:4d:ac:01:06:a9:fc:a6:d9:87:a4:81:
05:e6:a6:cb:b0:26:4f:cb:fc:37:8f:2e:74:ce:4a:
7d:6e:ba:46:95:b2:2e:82:77:c1:8b:ee:33:bb:0f:
25:7a:fc:02:89:8d:ab:7d:08:c7:c3:8a:4d:d5:6d:
7f:f8:1a:a7:72:95:38:9c:99:3c:d6:f6:3a:eb:11:
9e:12:34:5a:35:97:96:35:46:91:45:ae:2c:ee:9c:
36:aa:05:91:6f:2d:3c:11:3e:47:11:b7:e3:4c:b0:
4c:25:c2:80:5d:6b:f5:34:63:b4:af:c7:17:70:be:
14:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:26:9A:92:B8:FC:1D:42:F9:86:DD:D4:8D:97:6F:54:96:5D:10:C7
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/01dca4ee-06e5-4272-a2b5-07d712efdddd.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
75:40:df:8e:80:be:94:dd:41:9a:af:34:dd:77:55:7f:0d:24:
14:f6:7b:54:7c:7e:77:d3:16:b0:e2:13:e8:3e:7f:c9:13:d2:
69:e8:f7:a8:14:97:e0:aa:c3:76:6e:10:c7:53:85:52:3f:c7:
13:d7:a0:15:6e:c3:f0:f6:f9:5f:4c:a0:a6:e3:89:b3:fb:a8:
7c:51:42:b0:8e:28:06:f2:5f:4b:30:93:0f:14:19:dd:57:4e:
03:a2:a2:b0:3f:46:9b:4e:02:89:5d:c2:f6:00:1f:67:c9:f8:
50:c4:3c:ef:18:38:92:1a:54:f3:d7:d8:8e:ee:31:73:e7:05:
f2:92:63:b2:dc:85:2b:34:43:11:0f:09:86:8f:e5:3c:31:7d:
2f:01:2e:22:f1:67:15:55:8f:10:32:04:34:65:8c:76:93:0a:
e1:95:d4:5d:1a:5b:1b:89:27:b8:63:91:de:20:f4:6b:63:4a:
98:8d:0d:39:95:c5:ba:fb:ff:30:cd:5a:21:8d:98:c8:28:0b:
85:72:64:c9:b8:2f:a3:bf:a0:77:42:1d:0d:00:49:cb:1c:60:
90:4e:b6:26:f1:e3:93:00:75:92:7a:42:dd:82:b5:64:da:65:
a0:3b:38:86:fc:3a:88:2f:b1:ff:d5:5a:db:d0:be:51:d6:f3:
38:b1:0e:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 19:05:36 2025 by rpki-client