Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/5d5b0696-8d0e-4620-86a1-d7c2dd279f59.roa
File: 5d5b0696-8d0e-4620-86a1-d7c2dd279f59.roa (raw, json)
Hash identifier: BRUL5ZxW+Wfhl1F1dP1VTumHIDXraviZoes4d9rKoy0=
Subject key identifier: CF:69:26:58:B7:D4:FA:45:13:05:7A:BB:74:D5:40:44:1A:B4:E5:76
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 2A49A79C3151C25DAB5DF835ED6ECBD694D4B5A4
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/5d5b0696-8d0e-4620-86a1-d7c2dd279f59.roa
Signing time: Sat 23 Dec 2023 00:00:00 +0000
ROA not before: Sat 23 Dec 2023 00:00:00 +0000
ROA not after: Sat 27 Jan 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2a:49:a7:9c:31:51:c2:5d:ab:5d:f8:35:ed:6e:cb:d6:94:d4:b5:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Dec 23 00:00:00 2023 GMT
Not After : Jan 27 23:59:59 2024 GMT
Subject: serialNumber=97afb012abf5117d2cd90ce23b8a279a5385eecbb02acd8c4c93671b609c6d74, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:eb:7b:41:90:05:86:ff:4f:38:e7:15:e9:76:
5c:e5:c4:5d:e9:76:ca:06:f6:0d:6e:31:a2:55:43:
b2:73:90:eb:c1:d6:1c:0f:08:40:e9:5d:51:55:55:
b9:fd:bd:4b:b2:7f:ad:6b:6c:79:3a:83:4b:aa:25:
1b:5a:16:a0:be:60:cd:42:7e:48:00:d0:ef:2d:41:
49:b2:66:b5:8b:b6:94:6d:61:cf:ca:8e:60:d6:99:
10:28:be:af:8c:ae:b0:1d:96:3e:09:d1:75:53:a9:
58:77:40:34:7f:78:cb:b7:eb:0f:8e:4a:3d:06:e5:
ee:9f:10:72:95:80:67:e1:9a:17:2a:22:ff:a1:22:
3a:b6:bf:26:bf:17:e8:f8:f9:0e:be:a4:66:d3:49:
90:50:91:ef:61:21:24:0e:54:2d:33:9e:a4:4b:2e:
8c:e5:72:f1:05:38:bb:ff:ef:a3:0e:c4:60:ab:ea:
ff:4d:02:45:ac:ad:cf:83:69:b8:6c:7b:d6:68:17:
d1:1f:c6:87:df:09:66:79:4b:b9:e3:7b:3f:4a:ce:
2a:94:1e:1c:43:cf:aa:fe:35:5b:35:9e:13:1a:a0:
0c:a0:6c:cc:8b:09:80:d0:76:0a:b5:55:12:fc:81:
1b:2f:f0:92:98:90:07:52:d0:55:3f:d1:dc:d8:b1:
c7:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:69:26:58:B7:D4:FA:45:13:05:7A:BB:74:D5:40:44:1A:B4:E5:76
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/5d5b0696-8d0e-4620-86a1-d7c2dd279f59.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
98:ec:a0:f7:db:15:70:65:4f:7d:14:d0:1e:d7:1d:3e:dd:a3:
a9:37:77:bb:77:5c:c5:a4:3a:63:2e:2a:eb:61:56:58:bf:96:
2a:fd:3e:80:72:98:1c:54:ce:9b:95:b5:2a:5d:15:23:ec:27:
f4:a3:e6:48:bd:92:94:41:57:4f:89:af:b8:c0:95:2e:5f:64:
f6:c1:ae:dd:0a:30:ec:a5:01:fb:0b:17:6c:ee:85:d6:91:3c:
0d:f0:1c:2f:90:6b:2a:ca:62:9d:ad:71:53:01:2f:36:86:e5:
ab:7f:44:48:c5:4c:b6:69:04:5e:9e:fc:20:f6:ac:71:97:3b:
9c:e4:b0:6d:77:d3:05:d7:4d:ae:03:1a:90:a0:b9:25:7f:18:
9a:65:d3:0d:ee:a8:70:ab:6b:74:5f:55:64:cd:1f:c8:ed:d4:
52:61:d6:51:12:6e:97:20:5f:b6:0d:1f:39:b0:56:70:38:d8:
9c:02:8a:73:77:02:5a:be:32:4a:1d:ca:6c:97:6f:68:12:ef:
00:d7:0b:52:25:cc:a3:af:ea:c1:75:a8:a6:b6:d0:11:5d:a7:
63:25:a5:e0:60:12:08:17:af:25:c4:83:4b:86:77:ee:cc:de:
a2:7f:ef:f6:3d:7e:85:ad:52:e7:63:95:85:dc:7d:5a:27:08:
56:d9:93:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 19:18:15 2025 by rpki-client