Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/53e85c49-ab3e-46b3-aeeb-ca85eb889d41.roa
File: 53e85c49-ab3e-46b3-aeeb-ca85eb889d41.roa (raw, json)
Hash identifier: e+94H/EMLMHkv6UZtHWxeDLsx1uRF/R6M1UYyZ6+MmE=
Subject key identifier: 96:4D:25:9E:F0:CC:9B:D3:17:90:E5:53:46:93:35:98:38:8B:A8:EE
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 211DD80A7F1FAD597745517F69DC2AF4832C7377
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/53e85c49-ab3e-46b3-aeeb-ca85eb889d41.roa
Signing time: Tue 11 Jul 2023 00:00:00 +0000
ROA not before: Tue 11 Jul 2023 00:00:00 +0000
ROA not after: Tue 15 Aug 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
21:1d:d8:0a:7f:1f:ad:59:77:45:51:7f:69:dc:2a:f4:83:2c:73:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Jul 11 00:00:00 2023 GMT
Not After : Aug 15 23:59:59 2023 GMT
Subject: serialNumber=48b5b591def0b1fda2e30a5fb1ac95c82c9024a213dcd939b5980171c9ed9318, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:94:6f:ac:73:b8:f1:9d:85:fa:fd:47:61:9c:
6e:a8:43:99:2e:c1:32:cc:ed:a6:2c:a4:78:21:b4:
e1:df:84:c2:aa:3c:f9:c0:de:a0:58:fc:d5:19:3a:
82:52:60:c5:b4:aa:5a:9e:c9:c8:dc:cc:ff:b7:41:
c3:b2:57:f9:0c:05:6e:2d:ef:90:f9:3e:7c:1f:cd:
34:a1:69:05:61:b8:de:9e:72:31:e1:a6:35:54:91:
ca:47:8b:c8:8a:27:6a:d6:57:9a:eb:2e:30:95:18:
e1:1f:64:81:61:b5:68:e0:34:d7:3d:95:ef:a8:57:
bc:40:a4:e6:4e:56:4f:eb:87:1b:03:fc:4a:86:fb:
59:72:fa:38:9c:c5:f8:8d:a1:17:09:f9:ee:46:ed:
8f:e9:e7:72:38:17:74:63:e7:b3:eb:6a:e0:d3:94:
4b:5a:e6:2e:58:bd:81:a1:ae:f4:cf:b6:98:c4:b0:
3c:fe:37:19:0a:e4:87:ed:68:5f:5f:e5:f0:16:eb:
5a:80:f8:ed:55:aa:82:bf:0a:bc:22:c5:10:46:ca:
36:86:fa:41:71:dd:09:fb:66:21:d7:1c:da:54:d7:
e2:c6:47:08:85:fc:ca:b1:74:b3:62:2c:1a:8d:0c:
6c:0f:f3:02:e5:e8:1b:fc:78:5a:c5:42:8b:bd:18:
80:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:4D:25:9E:F0:CC:9B:D3:17:90:E5:53:46:93:35:98:38:8B:A8:EE
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/53e85c49-ab3e-46b3-aeeb-ca85eb889d41.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
96:2b:82:69:62:7a:3e:8e:65:78:e5:45:5f:74:49:d4:07:d3:
b7:63:ea:e5:44:b6:f0:46:39:18:0b:c2:2b:b4:55:a1:96:5b:
86:ff:99:34:97:13:96:23:7d:44:f6:03:8c:a8:49:25:ed:af:
4e:a4:c0:48:8e:1f:b4:fb:a4:74:84:5b:e8:e9:7b:89:52:57:
a6:8c:0c:4d:fe:57:93:74:54:ad:f1:d6:27:db:5f:16:88:e9:
63:14:47:97:7a:ff:36:60:e9:f2:15:64:52:46:b6:af:cb:5b:
0e:09:0d:18:77:7e:37:79:fe:8c:2e:f3:2f:83:26:dc:c7:7e:
63:6b:f4:fc:6d:4b:94:50:23:e9:1b:6f:b9:62:36:f2:25:6a:
ca:e1:7d:49:42:f7:0b:27:9c:52:28:e6:f5:31:10:80:3b:73:
bd:51:9f:c8:ea:11:ce:8a:45:c9:35:3a:0b:e9:ff:1c:18:ee:
7c:62:75:d1:ce:9f:34:ce:07:13:37:ef:26:4d:1f:58:86:a0:
bb:a2:83:b4:17:4d:b1:d0:4d:e8:93:94:37:b2:e5:13:6f:57:
b2:d5:1e:27:46:96:40:ad:92:03:39:0e:c4:52:3f:ee:84:ff:
8a:4a:39:6d:b6:bc:93:40:75:ad:56:c0:b4:13:0c:dd:87:3c:
ae:d1:63:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 17:41:22 2025 by rpki-client