Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/1da7f6b4-b46a-41b2-a45e-ff21ab944228.roa
File: 1da7f6b4-b46a-41b2-a45e-ff21ab944228.roa (raw, json)
Hash identifier: g4W0DVTrlXTmQoRomWWc7F5IiHSAhRB8VeJrjK/UnDg=
Subject key identifier: 0E:D6:ED:94:D4:DC:61:AA:EE:BE:F2:82:3A:51:CD:84:CF:C7:E2:91
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 48AFED09E7849B832DDB69C293B4E02259AA27D1
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/1da7f6b4-b46a-41b2-a45e-ff21ab944228.roa
Signing time: Wed 02 Oct 2024 00:00:00 +0000
ROA not before: Wed 02 Oct 2024 00:00:00 +0000
ROA not after: Wed 06 Nov 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
48:af:ed:09:e7:84:9b:83:2d:db:69:c2:93:b4:e0:22:59:aa:27:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Oct 2 00:00:00 2024 GMT
Not After : Nov 6 23:59:59 2024 GMT
Subject: serialNumber=bef05107b1a94d5c72eed557ee1677619ee269823292bce4a1d2129cf25f19e7, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:91:32:98:c7:16:f9:90:67:7a:0d:53:d7:d3:
ee:d5:01:6e:9a:34:9d:81:dc:1d:9a:10:b0:7e:31:
89:6b:e2:0d:72:81:5f:1d:4d:fe:26:a0:9e:65:1b:
82:f5:d0:d7:9e:78:21:21:66:f2:37:69:b9:dd:f6:
22:37:94:f3:d9:58:5c:11:6e:11:ba:c4:7f:38:2f:
93:5f:d4:0f:b0:43:8b:a9:3e:c2:36:c7:dc:a5:c3:
ea:b1:59:2f:12:ad:f5:00:f2:22:33:dc:63:88:97:
38:c5:59:c4:d2:7e:dc:25:c7:96:cf:84:a7:64:06:
23:32:20:5a:15:bb:82:b8:da:da:4c:6c:f5:bb:44:
65:ba:6d:37:17:96:63:2c:b0:3b:47:eb:5d:6b:f1:
54:5d:b1:e0:79:1a:53:85:30:36:06:4a:81:21:a6:
b3:e6:50:19:bb:f0:b4:f1:cc:12:0d:cc:63:43:c3:
3a:14:c3:fe:87:4c:e5:64:36:eb:ed:ea:2f:a4:c0:
36:f7:3b:ce:68:31:2a:f4:3b:16:8f:dd:a7:76:7a:
54:09:3c:f2:e1:4c:cd:50:8f:0d:c6:b7:51:16:f8:
99:a2:e7:d8:60:b1:b5:7d:01:d1:bb:7c:79:d7:e8:
39:9e:4b:6f:47:a7:13:62:b9:f4:88:e4:42:a7:d0:
15:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:D6:ED:94:D4:DC:61:AA:EE:BE:F2:82:3A:51:CD:84:CF:C7:E2:91
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/1da7f6b4-b46a-41b2-a45e-ff21ab944228.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
87:dc:88:f0:05:f9:0b:b9:74:a0:5f:2e:6e:c4:bf:10:6e:94:
c8:6f:31:47:78:4c:3c:86:12:c7:ab:7a:99:78:0e:22:f6:e6:
e3:c4:0b:7a:24:32:80:f5:2d:3a:a0:80:05:97:af:b0:29:ab:
b8:8a:35:a9:1c:83:41:85:0a:5c:c3:d5:c4:97:cd:fa:ba:73:
41:d3:f5:55:88:33:66:c3:9d:68:0e:f5:79:7b:fd:77:82:aa:
82:da:28:04:82:40:59:64:5f:f0:d6:52:9e:e5:2c:74:ff:d2:
66:1a:91:38:8d:7e:9e:5e:8b:7f:f3:e8:4b:60:93:e6:76:98:
0b:82:b9:95:e4:99:09:77:5a:9b:33:c9:24:9a:65:44:21:f2:
e5:f9:45:24:6f:bf:63:1f:b2:75:5d:3f:da:db:89:f3:fb:85:
6c:d1:75:b7:09:e3:a0:69:ed:52:9e:34:43:4c:6a:bd:39:5b:
ba:13:89:22:98:69:63:37:78:9e:05:3d:73:1c:31:a5:51:84:
f5:77:46:53:ed:6b:5d:f1:7b:59:bc:d6:eb:c5:da:01:6f:2f:
98:60:8f:5f:74:ca:ff:c6:5f:db:62:7a:94:3e:1d:3a:c0:e1:
b7:95:8f:13:0a:5e:37:e5:90:65:51:c3:96:49:1d:78:ad:f4:
10:d5:46:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 17:40:07 2025 by rpki-client