Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/3d1da77a-db4b-4a78-9194-3e923ef14e4c.roa
File: 3d1da77a-db4b-4a78-9194-3e923ef14e4c.roa (raw, json)
Hash identifier: k9viYpw9fXmymCRyGJDV8AYHCUqah2/VF62VvWVuE0Y=
Subject key identifier: 20:CD:9C:63:7E:B0:80:8E:2B:AB:19:43:18:A1:1D:54:A2:34:45:F7
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 28051C13F5DA349A7D6AA82C823B5077EEC6FDE4
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/3d1da77a-db4b-4a78-9194-3e923ef14e4c.roa
Signing time: Sun 10 Dec 2023 00:00:00 +0000
ROA not before: Sun 10 Dec 2023 00:00:00 +0000
ROA not after: Sun 14 Jan 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
28:05:1c:13:f5:da:34:9a:7d:6a:a8:2c:82:3b:50:77:ee:c6:fd:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Dec 10 00:00:00 2023 GMT
Not After : Jan 14 23:59:59 2024 GMT
Subject: serialNumber=380b1031211b31632c520163372e053c60d89ae77e8906984f8963eb1daec3b6, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:46:79:0c:98:ea:8a:e6:f4:3f:78:73:bf:19:
79:bc:fa:d3:06:05:5b:d6:1b:65:d3:24:b6:a6:d7:
ce:2b:ff:69:1f:98:e3:a4:94:ca:a7:9b:d2:7b:92:
44:4b:3e:b5:d0:bb:a3:0b:fd:15:6f:0f:11:c4:61:
af:c0:24:b7:3e:e7:97:19:71:17:97:21:6a:9e:46:
cd:8b:7f:98:73:55:e6:b2:9c:12:ff:af:be:9e:31:
f6:26:1a:65:33:78:65:53:e3:a7:2b:ec:4b:a8:aa:
9b:34:f3:10:37:ec:0d:7e:69:33:c5:99:74:1f:61:
15:8c:8f:52:87:e4:bf:ae:de:ab:4b:3e:ff:23:53:
62:58:cc:a7:84:aa:07:14:b6:32:da:36:1a:81:76:
4a:91:67:c4:59:7d:77:46:16:d8:2b:67:d3:fa:9c:
3d:38:86:2c:f2:f7:6a:15:24:13:a5:a8:97:e3:78:
b7:9c:67:6c:c1:c8:49:ed:df:e0:00:2d:2f:74:91:
1e:02:88:37:10:cc:b6:9f:c7:97:58:2a:ea:96:1a:
6d:50:3c:f3:12:de:14:5b:84:eb:99:fe:8d:d1:8e:
c7:3d:8e:58:4a:57:e5:4a:30:05:9c:ce:86:d8:89:
b6:b4:63:a2:52:65:a8:67:16:16:a8:f4:a0:cc:1e:
09:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:CD:9C:63:7E:B0:80:8E:2B:AB:19:43:18:A1:1D:54:A2:34:45:F7
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/3d1da77a-db4b-4a78-9194-3e923ef14e4c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
2f:0c:0e:ce:fe:a1:ed:a9:26:ca:a5:bb:2b:4e:27:b7:18:ed:
5c:b0:73:3f:1a:62:b8:0e:a8:01:ee:58:42:ba:27:18:41:64:
d1:ef:d5:ba:ea:1b:3c:46:8d:b1:63:7c:38:69:6e:41:fe:81:
b3:4a:0b:48:60:55:b2:47:18:c6:f3:c5:34:78:82:34:23:13:
65:5b:a5:e6:6c:aa:39:e2:b4:63:92:45:76:c0:68:c4:83:a3:
9e:08:ec:07:1c:a4:f7:e6:92:35:9b:88:d2:26:03:a1:77:0f:
10:c4:a4:dc:99:91:f7:d5:93:39:8a:7a:c0:4d:96:8d:7e:2c:
57:7e:45:42:1d:d1:ce:1f:ee:47:17:c5:cf:c2:c6:b0:7a:43:
06:a3:86:0f:b8:e9:6e:aa:8c:de:ad:5b:ec:09:03:81:bb:f7:
6f:c6:6e:7c:c4:04:ae:2e:75:5d:70:0e:cc:bb:33:f8:e6:b8:
d2:3b:a8:2c:10:12:41:80:a1:e6:da:15:fe:aa:99:5d:fe:20:
19:81:75:71:00:06:c9:37:98:80:9d:6e:91:44:b2:2b:19:9a:
c8:d3:dd:3d:18:92:91:e6:3c:aa:a9:05:e5:40:e3:ff:4e:ae:
f8:dc:f2:e9:fa:d2:74:12:97:0c:a2:75:48:8b:82:a3:f1:a1:
f1:7b:ea:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 23:40:13 2025 by rpki-client