Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/56d6f655-85a1-4bec-85ba-30fc67639bb8.roa
File: 56d6f655-85a1-4bec-85ba-30fc67639bb8.roa (raw, json)
Hash identifier: U94tPn+7UBPoFP9n6t1afH1geFGjPZ0DG05sApQ8Icw=
Subject key identifier: 2F:88:34:7A:35:AC:6A:B5:DF:78:34:0A:6B:9F:DC:68:F1:30:6A:02
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 69C01FD0BD7CDF2E7EC626D528B0FF98E3C69E2C
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/56d6f655-85a1-4bec-85ba-30fc67639bb8.roa
Signing time: Sat 17 Jun 2023 00:00:00 +0000
ROA not before: Sat 17 Jun 2023 00:00:00 +0000
ROA not after: Sat 22 Jul 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
69:c0:1f:d0:bd:7c:df:2e:7e:c6:26:d5:28:b0:ff:98:e3:c6:9e:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Jun 17 00:00:00 2023 GMT
Not After : Jul 22 23:59:59 2023 GMT
Subject: serialNumber=b2c7499786b630c26679d9218fd5276daee49a8853f29b4ee4ec3c33f4e959bc, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:05:33:02:d5:3d:7c:04:23:e3:ed:a3:eb:8a:
35:4f:64:1c:11:a5:cd:fd:91:ba:00:70:2a:a3:16:
5e:b8:2e:f3:14:70:6e:0a:65:ac:e0:9e:16:47:97:
96:88:43:f6:db:97:1e:43:95:8e:8f:e6:1b:08:52:
d3:cf:51:59:ab:fb:fa:b0:59:2d:d2:f9:75:54:a7:
cd:35:fc:5f:4e:29:e1:6f:5d:7e:88:5f:16:b6:88:
31:c3:3d:89:09:a3:b6:45:fd:1f:b3:42:48:e8:d4:
da:bc:91:b5:85:4e:1b:cf:e5:a0:42:91:8d:9a:0b:
12:4a:e6:18:53:bb:01:c4:bf:1a:e8:2c:be:c7:48:
94:61:34:fd:7d:d3:70:c7:b1:b1:88:46:7b:44:c3:
e8:ab:35:83:2f:6a:f1:a9:fa:ff:8b:4a:b0:1f:b0:
35:82:76:36:81:59:43:5a:57:6c:e0:72:98:fe:1b:
7e:58:3e:ae:36:b4:b4:8d:be:fd:f8:dc:2f:9d:91:
20:7a:f2:79:56:c0:dc:48:3a:70:bf:83:43:9d:c4:
88:8e:7f:bc:cb:9a:c1:29:f1:97:6d:03:5a:53:2e:
96:02:79:5f:cf:59:f4:66:39:2a:e8:d0:cb:8c:ee:
64:10:2e:57:ea:7c:e0:ad:80:7e:87:3a:01:6c:1a:
38:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:88:34:7A:35:AC:6A:B5:DF:78:34:0A:6B:9F:DC:68:F1:30:6A:02
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/56d6f655-85a1-4bec-85ba-30fc67639bb8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
a9:a7:69:43:62:45:85:bd:61:4d:a3:38:b3:0b:28:a7:b0:b9:
ec:3a:86:32:8c:d0:f0:c7:4d:e9:47:90:93:3f:78:c6:ae:ea:
fd:0b:49:f5:b3:54:39:27:94:3a:72:58:80:9e:f7:58:15:e6:
d3:30:8c:d1:df:79:95:8d:88:82:5d:9b:4e:48:47:b1:5a:13:
95:02:62:86:00:a4:76:69:46:16:7a:92:b6:c1:42:50:90:65:
cf:da:98:42:70:62:01:68:66:91:8d:f6:c5:93:e3:c0:43:68:
22:6a:a5:95:a0:7b:21:75:f4:e4:12:8e:0c:c1:7c:64:e4:47:
b2:41:06:a9:40:65:b4:b1:9e:fa:2c:5a:95:93:82:61:58:d2:
5a:c0:e4:19:f1:cc:9c:e2:39:34:62:f0:9d:74:cf:db:7c:ae:
71:ef:25:c2:33:a9:e7:75:c5:51:99:c2:f1:91:73:9c:17:24:
68:11:e2:36:6a:0e:4f:6c:9f:34:ad:06:98:86:c4:2e:da:cd:
aa:2b:73:d5:95:43:a9:3a:4a:40:bd:41:ba:6b:ff:5a:96:d0:
10:4b:e5:c5:ba:92:39:3f:8a:31:da:5c:31:f4:83:6f:ac:df:
41:5f:33:dd:67:29:4b:87:a2:92:b1:89:99:82:9f:dc:00:c4:
33:a7:b5:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 19:25:19 2025 by rpki-client