Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/23a3ba51-ab29-4421-ab00-bcb1c38ac36e.roa
File: 23a3ba51-ab29-4421-ab00-bcb1c38ac36e.roa (raw, json)
Hash identifier: ReIK8ouC8PRrRzjPWuS/xl1MfrGBkik4xwcL65Xazj4=
Subject key identifier: 83:7E:C4:6F:CA:B7:C8:C6:EF:79:B8:12:6C:85:CA:2E:E5:A4:AF:08
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 6E2E1243EC056A3FE15275136BF9EBF1CE1863AB
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/23a3ba51-ab29-4421-ab00-bcb1c38ac36e.roa
Signing time: Sun 29 Oct 2023 00:00:00 +0000
ROA not before: Sun 29 Oct 2023 00:00:00 +0000
ROA not after: Sun 03 Dec 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6e:2e:12:43:ec:05:6a:3f:e1:52:75:13:6b:f9:eb:f1:ce:18:63:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Oct 29 00:00:00 2023 GMT
Not After : Dec 3 23:59:59 2023 GMT
Subject: serialNumber=d831a581956ca4e4ed61b40277eb679127091f2fb0ff3a57f98eadfd95cb0e55, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:c5:0f:f3:30:9e:5e:e8:13:8b:0b:c8:e1:8d:
1d:3f:41:d2:5e:cd:15:2f:c0:1c:0e:78:f4:93:45:
cd:4f:10:4c:f0:4c:b5:df:58:56:d1:34:00:43:24:
ea:e2:d5:be:28:73:b8:6a:81:42:d6:bd:1f:28:66:
99:54:cc:6b:e6:5b:c5:08:7f:df:ad:cc:fe:ea:94:
fd:6f:42:bb:4e:15:b2:17:a5:bf:64:6f:4a:2b:dd:
d7:59:61:c8:04:b4:3d:dd:fe:89:6c:92:c4:67:5d:
52:6c:56:b3:3b:0f:fb:28:35:9b:9d:bd:e1:5a:fe:
9e:77:39:de:35:5e:06:bf:28:7b:a9:70:6e:f5:90:
f6:58:87:84:cc:d6:5a:c3:76:2d:7c:e7:76:02:29:
0d:bc:d2:89:f2:51:de:79:29:07:ac:65:ba:8a:aa:
19:f5:be:e3:b6:5f:9b:1d:1e:88:3e:f9:8c:29:ea:
65:d0:11:c0:7e:2c:60:59:db:b7:9d:23:03:7e:21:
e4:fe:37:bc:e9:47:39:86:c4:63:55:e7:e7:63:96:
05:f7:10:8d:f7:d3:11:2c:77:03:35:6a:04:6c:78:
6b:68:8f:4c:c5:2e:98:5d:54:c7:b1:7a:2f:2b:8b:
1e:0c:d6:87:63:4d:a7:54:ff:30:55:42:45:e0:d5:
02:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:7E:C4:6F:CA:B7:C8:C6:EF:79:B8:12:6C:85:CA:2E:E5:A4:AF:08
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/23a3ba51-ab29-4421-ab00-bcb1c38ac36e.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
9a:f9:88:d1:d3:f6:75:c0:f8:65:5f:9d:fa:1a:f0:21:29:52:
74:11:bf:04:d8:b7:c9:97:8b:8b:8f:a4:a4:42:8e:44:7d:6a:
21:f5:cf:76:40:4c:f8:ef:a9:65:c4:5d:e4:aa:e8:6d:31:1a:
9c:89:f1:3d:32:83:bd:cd:95:8d:d1:b3:3d:1c:0f:b5:24:55:
95:f9:5f:2c:f0:8c:52:7b:07:52:94:f1:50:b7:a0:71:e0:e4:
f5:98:3c:a9:bd:58:2f:6f:05:24:0c:0b:2a:bb:41:d1:35:69:
8b:39:92:fc:bb:7e:cc:12:ce:e3:ba:a8:bc:5f:fb:b8:5d:ec:
02:b3:e2:a2:ee:16:c9:65:ec:a3:df:76:b5:11:3a:ff:8b:4d:
67:a5:f7:e2:23:2e:c0:48:2e:96:df:39:12:05:98:68:ff:3e:
99:46:d0:09:d4:fb:c5:ec:fa:d4:3c:62:a8:a8:6c:d4:3e:2b:
06:03:64:ce:2d:20:be:1b:fd:68:d7:b4:03:5b:45:15:e2:5f:
8e:54:ab:02:85:bb:73:d7:fb:e1:d5:d4:b7:86:7a:a5:2a:ba:
66:6a:59:27:60:41:71:fb:80:15:8a:41:62:a6:89:41:0f:7b:
a2:13:b2:c0:58:4f:6e:98:46:a0:76:bc:cc:a1:54:75:b4:1e:
fc:3f:2a:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 19:53:21 2025 by rpki-client