Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/59aa3dd2-d127-4338-bc0d-3dbe4d818c73.roa
File: 59aa3dd2-d127-4338-bc0d-3dbe4d818c73.roa (raw, json)
Hash identifier: Qcah55ahG168sgrjdSTTRbvqIPAni+vdWYhYev/aGWM=
Subject key identifier: 98:F6:30:0C:FA:DF:0C:26:AA:66:99:48:CC:E4:2C:36:78:10:B5:D1
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 64D7AA0C3A63CA28FAC83CE91A8CC4FF9890A05C
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/59aa3dd2-d127-4338-bc0d-3dbe4d818c73.roa
Signing time: Tue 12 Sep 2023 00:00:00 +0000
ROA not before: Tue 12 Sep 2023 00:00:00 +0000
ROA not after: Tue 17 Oct 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
64:d7:aa:0c:3a:63:ca:28:fa:c8:3c:e9:1a:8c:c4:ff:98:90:a0:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Sep 12 00:00:00 2023 GMT
Not After : Oct 17 23:59:59 2023 GMT
Subject: serialNumber=d1116e1b98f1de9937e97538e0148f7518ae5aae6dd57672d8577f62fcaa27d6, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:e0:f7:46:51:05:be:b6:47:8c:8b:7f:c8:b8:
d1:ac:6d:98:d7:1f:c0:00:6f:82:dd:01:4f:d9:f0:
09:10:b2:e1:01:7f:24:01:87:a3:3c:1b:8c:76:2b:
ba:67:cd:62:0c:b0:1e:df:aa:9b:ff:15:10:19:5f:
a3:97:cd:a2:a7:59:b3:ba:9b:e8:1d:96:f9:f8:c9:
75:96:29:88:39:90:a6:7a:fa:5c:ec:ea:7e:79:5d:
05:9f:ae:ca:e4:84:3b:9f:b5:8f:ee:54:80:45:a7:
6b:09:f6:52:14:2f:72:49:17:de:bb:18:ce:4f:10:
45:c8:66:0e:bb:25:43:92:d4:64:bd:2a:8b:1b:0f:
88:e3:4c:63:72:f0:9a:2d:3c:a6:a9:8f:ba:fb:34:
f6:59:cc:6c:0b:aa:14:97:4f:30:de:cb:2d:24:2f:
ca:20:2c:03:bd:ce:18:dd:d8:4b:fe:23:d2:21:de:
35:10:1c:07:11:b0:fb:60:ea:35:45:2a:33:a3:74:
04:92:89:f1:86:35:46:4e:3f:b9:4d:f7:55:c9:3a:
2f:d4:79:b0:90:8d:bc:5b:0a:b7:b4:a8:2c:c4:e3:
97:d5:ab:8b:c9:d3:9e:c3:f2:87:1a:f2:8b:6c:50:
eb:a6:87:0b:c8:d3:cc:af:78:ad:7f:6c:5f:80:c3:
18:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:F6:30:0C:FA:DF:0C:26:AA:66:99:48:CC:E4:2C:36:78:10:B5:D1
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/59aa3dd2-d127-4338-bc0d-3dbe4d818c73.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
b1:9b:b8:9f:0c:6f:13:96:8f:06:3a:07:47:1c:88:8c:d0:3c:
a6:ea:68:15:f1:3b:e3:b3:15:db:4f:74:3b:77:5d:44:5e:99:
f0:a9:62:28:67:57:05:13:b9:4c:68:09:60:f0:41:56:49:d8:
53:39:2e:55:73:4c:07:e5:36:e1:f6:87:26:f0:bf:8f:6c:95:
be:f8:8c:4c:b5:ac:fe:c2:82:34:a8:0f:ec:49:88:87:12:b0:
7c:7f:ed:2f:91:79:33:9b:47:85:c2:98:07:02:b1:c5:92:25:
54:d0:31:a4:ea:2a:1d:d8:60:59:54:6b:1a:5a:b9:07:94:68:
d6:9b:68:e7:e8:a5:07:27:7c:9f:12:5d:4b:50:99:df:3b:93:
62:0c:04:86:b1:fd:24:9f:3e:05:97:5c:13:dd:8a:25:05:b3:
5c:28:fa:5d:03:ff:25:4e:9f:fe:99:15:a0:80:a4:a7:b4:fb:
02:ae:a2:8e:76:72:32:45:36:80:88:0f:8f:a9:cc:5c:56:e0:
15:5f:c2:9d:57:59:7c:5f:6e:b0:6d:6f:d8:32:29:dd:6b:3b:
5b:dc:fe:bf:6c:07:16:ca:8c:c0:49:d0:04:88:e5:82:6f:8a:
93:73:28:1d:b6:44:d9:60:61:a6:5c:ec:e9:f1:3c:75:79:0e:
2f:09:ee:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 17:45:39 2025 by rpki-client