Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/70b591dc-3ae3-48fb-9c8a-4a017abeee8f.roa
File: 70b591dc-3ae3-48fb-9c8a-4a017abeee8f.roa (raw, json)
Hash identifier: cUbcXBdygVS3tXU6TX751VaS7q5eVhnOs1m0PKRBZFQ=
Subject key identifier: 08:C9:F9:72:3E:7A:60:D2:83:49:3B:68:AD:75:A0:B5:B6:F1:B5:FD
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 4A6838D776098D25C4EB4C2F90F44EC186C54423
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/70b591dc-3ae3-48fb-9c8a-4a017abeee8f.roa
Signing time: Sat 19 Oct 2024 00:00:00 +0000
ROA not before: Sat 19 Oct 2024 00:00:00 +0000
ROA not after: Sat 23 Nov 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4a:68:38:d7:76:09:8d:25:c4:eb:4c:2f:90:f4:4e:c1:86:c5:44:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Oct 19 00:00:00 2024 GMT
Not After : Nov 23 23:59:59 2024 GMT
Subject: serialNumber=28d368253639fa7eac381a96d26e12fb6c048ef8b41b949230c678085de5b4ea, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:e9:ea:03:9a:72:15:ba:8b:0f:5a:67:dd:81:
91:b1:5d:be:c5:bd:8c:ef:b8:70:e1:0d:a5:f3:6d:
08:65:fd:d0:48:0b:c5:59:28:5f:ae:36:ec:60:1a:
e2:cb:64:63:64:74:07:ed:3e:d6:16:96:89:3c:dc:
f5:fc:3b:c4:1b:48:fe:61:ac:e6:76:b6:14:d2:ae:
f7:64:d7:62:46:bc:b7:56:f5:13:ad:91:8c:a9:db:
80:03:0d:3c:8e:9d:8d:2c:d3:54:85:4d:3c:fc:cb:
1e:b6:9c:4b:a4:4d:94:1c:66:2c:f7:6e:96:a1:f6:
d5:ef:81:c0:f2:60:c7:8b:36:c4:41:04:3e:b4:f8:
5a:49:6a:d7:ec:e2:6a:04:50:2a:d1:e9:1c:8b:73:
ca:6c:5e:c1:8a:84:fc:19:4d:88:df:5f:40:0a:99:
34:25:79:8f:be:03:1d:e2:7c:71:4d:79:37:6d:f2:
68:bb:48:7e:2b:40:0e:bb:7e:8e:a7:b9:46:dc:30:
19:15:c1:d5:c7:3a:00:93:90:16:21:65:92:f9:f5:
ca:bb:b7:9f:1f:2b:81:b0:d7:6e:09:a2:8c:9a:75:
a0:1c:8a:bf:47:0c:b1:73:f2:33:a5:1e:38:e8:5b:
ab:b7:73:ca:e7:39:04:ed:27:aa:e7:fb:93:d7:eb:
e1:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:C9:F9:72:3E:7A:60:D2:83:49:3B:68:AD:75:A0:B5:B6:F1:B5:FD
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/70b591dc-3ae3-48fb-9c8a-4a017abeee8f.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
79:7e:a3:f3:1c:ef:a4:e8:e2:2b:c2:88:1c:77:7c:b9:5b:78:
93:cf:b3:f8:ba:e4:1d:58:87:ec:d2:87:c2:38:86:89:8b:fe:
3c:54:7b:ad:34:a8:4f:d8:0b:63:97:40:8d:9d:d3:f4:0d:2b:
75:8c:70:72:f2:4d:f4:58:11:93:17:3e:3b:91:7f:57:9b:62:
dc:43:d4:8d:4c:e6:cd:d4:c9:cc:fe:11:97:95:4a:16:b6:69:
a8:e3:76:9c:8c:2e:c7:66:81:e3:f6:23:b2:0b:c5:51:85:8a:
9a:9d:4a:59:21:5e:69:a4:42:4e:42:0c:3f:da:24:eb:9a:d0:
42:66:96:f7:c7:06:42:89:7a:4c:ea:e6:1a:ef:73:ff:88:82:
80:21:a5:32:6a:df:f6:09:ab:44:e0:4c:6a:b1:c0:4d:ff:42:
c8:12:75:72:53:82:5f:4f:3d:03:7d:b3:93:cb:8d:62:4b:f7:
eb:0b:1c:0f:23:60:f4:50:16:75:79:73:b9:0b:45:dd:09:be:
a7:4f:f6:0f:e5:0d:f0:29:f5:0a:51:c9:41:98:31:4e:79:3d:
ba:99:50:4f:b2:75:7c:e6:ba:10:71:a9:58:0b:de:1e:5c:93:
34:4a:68:67:71:48:46:8e:21:01:37:8d:d1:0d:3c:08:b3:bb:
8c:f5:be:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 15:55:50 2025 by rpki-client