Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/35b9bde2-b684-4a01-9139-39cb9770cd4d.roa
File: 35b9bde2-b684-4a01-9139-39cb9770cd4d.roa (raw, json)
Hash identifier: rFjhHW2sr/QyySlOoFKh8O1KNOBrtsTZDL2yLfGexts=
Subject key identifier: E3:87:BA:4B:57:FA:65:58:F0:92:F8:BD:D4:26:BB:4A:9D:A7:1D:45
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 090CA30EC13CEA0001E64E99EC3510960A6704D5
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/35b9bde2-b684-4a01-9139-39cb9770cd4d.roa
Signing time: Fri 18 Aug 2023 00:00:00 +0000
ROA not before: Fri 18 Aug 2023 00:00:00 +0000
ROA not after: Fri 22 Sep 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
09:0c:a3:0e:c1:3c:ea:00:01:e6:4e:99:ec:35:10:96:0a:67:04:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Aug 18 00:00:00 2023 GMT
Not After : Sep 22 23:59:59 2023 GMT
Subject: serialNumber=e856c65b82812db70a2220e9893f058d6234094ec99800cd83a6636d45f8a3e9, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:0a:ed:97:dc:ed:88:5d:99:f2:6a:4b:3f:ee:
73:a6:ff:61:33:26:30:f2:c5:7e:a9:64:b8:88:1e:
21:4b:f5:de:a4:c0:ab:f0:2d:19:dc:1f:55:e8:c7:
f1:bf:68:c4:1d:20:ea:cf:6c:0b:95:0c:8d:f2:1f:
5c:cb:39:94:72:54:4f:71:b1:0f:67:fb:91:fe:e2:
13:23:7c:d6:23:96:ea:ce:64:60:ab:c6:fa:a4:08:
24:96:df:42:af:3d:d8:2c:30:00:38:ff:6b:25:ee:
8f:5f:c8:58:c1:e8:bd:4b:0f:c7:88:56:2f:c9:90:
5f:ef:6b:b4:c1:d9:01:4f:62:5b:b6:42:e0:c0:ab:
57:a9:8f:70:3f:f1:fd:4a:36:e7:9a:8b:56:eb:8d:
15:2e:7a:13:34:5e:1d:cf:5b:77:da:71:47:0f:04:
46:73:7a:92:42:68:e6:00:0f:c2:bf:ab:ec:9d:aa:
5d:92:d5:df:22:e9:79:b2:0d:72:6a:a3:b2:9f:29:
a6:27:19:76:07:ff:e9:79:a7:bb:b9:4e:84:1e:9f:
4b:ab:5b:10:ba:9c:70:29:02:76:1e:b2:ae:05:a5:
05:3b:94:34:bf:0a:79:4e:f7:dc:6f:c7:95:54:76:
96:c8:88:99:f4:82:9e:21:6f:7a:0c:fe:27:81:e2:
bf:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:87:BA:4B:57:FA:65:58:F0:92:F8:BD:D4:26:BB:4A:9D:A7:1D:45
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/35b9bde2-b684-4a01-9139-39cb9770cd4d.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
12:b2:e4:e4:53:78:b4:27:36:d4:40:e2:12:52:7b:bb:85:5d:
d6:bf:31:22:86:b1:cc:b8:5e:a6:2c:a6:f6:a2:73:32:28:a2:
7f:8b:73:56:ba:e2:df:33:00:89:32:a6:7e:a2:6e:d7:93:3f:
90:4e:3c:61:f6:4f:a1:86:a7:44:67:09:95:9d:aa:3d:22:df:
06:dd:59:32:1c:3a:30:27:2b:d2:91:4c:93:af:e5:0a:6b:ac:
f3:81:4b:76:bb:e1:10:45:a3:79:24:40:ab:d9:67:07:58:5a:
1d:24:f5:32:99:09:08:6d:82:92:fa:61:c5:de:ad:30:15:64:
9a:d4:3c:49:a7:c9:68:cf:cd:9d:c1:48:42:d6:7c:b9:48:f2:
02:aa:ce:8e:7d:51:f2:ba:fa:51:ca:af:d8:4f:b3:19:33:da:
84:09:f0:67:ad:e8:22:fc:76:e7:b3:6f:e5:5e:85:c2:2e:cc:
1d:23:5d:42:ea:f5:c3:c8:33:d5:53:57:05:04:60:f8:56:f8:
af:f6:2c:8c:96:e2:9f:21:f1:13:0b:80:34:62:2d:b0:02:24:
c3:52:ea:53:13:12:79:6c:f6:dc:42:af:48:52:b6:4f:27:70:
21:d8:34:49:a3:31:6d:2d:2b:d5:76:eb:4d:69:1a:96:86:43:
a6:3c:db:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 16:26:36 2025 by rpki-client