Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/8b35dbc8-d714-4eb5-8741-8ad3d53adb42.roa
File: 8b35dbc8-d714-4eb5-8741-8ad3d53adb42.roa (raw, json)
Hash identifier: U/OqBttr1wiQyAshJ7uFIBax2yzOXeZu+1Xp6ujFytE=
Subject key identifier: DA:A6:71:7F:16:81:4E:6D:FF:67:67:A9:56:F4:01:15:CA:3A:F7:AF
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 557FF10C2730EB41E5C36CDEBC5D0F51DEF2EC82
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/8b35dbc8-d714-4eb5-8741-8ad3d53adb42.roa
Signing time: Wed 10 Jan 2024 00:00:00 +0000
ROA not before: Wed 10 Jan 2024 00:00:00 +0000
ROA not after: Wed 14 Feb 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
55:7f:f1:0c:27:30:eb:41:e5:c3:6c:de:bc:5d:0f:51:de:f2:ec:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Jan 10 00:00:00 2024 GMT
Not After : Feb 14 23:59:59 2024 GMT
Subject: serialNumber=7262f748625b21618a282362a62c41b0c83811a2e3819b478440dc17853f09d7, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:87:81:54:bb:67:e1:2d:61:13:61:af:e6:7a:
2c:a9:a4:aa:3c:df:b3:74:66:fd:11:7a:35:b2:e6:
43:0c:09:49:ce:99:97:d6:73:9e:02:64:1c:d0:d4:
08:68:65:fa:d2:9b:ba:57:6d:6c:e2:e9:d0:3a:84:
cf:8e:d3:6c:00:9b:05:43:66:c6:f0:d7:60:b5:5a:
c8:3e:01:cf:69:ac:66:48:18:92:f4:b8:1e:34:b5:
3e:e6:76:b0:82:2e:40:e6:ea:da:7b:39:15:5b:ba:
b6:95:0f:fb:df:a8:0c:10:55:4d:ad:de:40:96:72:
15:03:7d:fd:1a:ff:ef:ac:dc:92:1b:3c:1c:63:f5:
3b:29:90:ce:31:06:b0:3b:ca:f2:ca:6b:3c:a1:9a:
30:d3:13:5f:9c:76:ae:d4:1b:09:df:5e:30:a2:e9:
cf:0a:b9:a9:22:dc:2c:16:8a:40:71:c5:2d:49:6b:
af:86:0f:c2:dc:de:bb:90:ea:1d:96:a0:3c:67:ab:
19:a8:2c:3e:e2:24:69:77:e2:d9:b3:02:2d:cd:fb:
27:16:0c:d0:4f:bc:5a:12:3a:f9:fb:64:65:b4:0a:
ca:d9:04:d2:9c:49:2a:56:af:ff:4c:fc:f4:65:bf:
e0:22:c7:9d:90:5b:26:8a:84:2d:7b:0d:d2:0b:6d:
04:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:A6:71:7F:16:81:4E:6D:FF:67:67:A9:56:F4:01:15:CA:3A:F7:AF
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/8b35dbc8-d714-4eb5-8741-8ad3d53adb42.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
39:6a:0e:95:d0:35:7e:b3:2d:8b:00:b1:af:67:db:e6:19:f7:
5a:b2:ea:43:ef:aa:e6:96:7e:76:1f:d3:04:08:6a:46:8c:34:
29:7b:68:35:ab:ab:8a:89:19:f8:96:37:17:f2:98:3b:31:90:
9c:ae:40:7d:a9:2c:85:84:2e:0e:5e:80:66:b5:87:89:ec:73:
a0:07:9a:85:dd:ae:3f:cf:63:fb:8c:39:e6:82:8d:af:55:d6:
37:81:79:5e:11:aa:51:8d:8f:18:d6:80:d8:3d:cd:df:1f:e6:
50:32:1c:65:47:d2:9c:0b:2a:3f:df:40:00:a5:31:19:40:4f:
ce:9f:ac:4a:29:d7:34:73:ad:e4:82:9f:fe:4a:ad:e5:49:d0:
b2:04:22:6d:0c:de:e4:48:27:8e:d2:f8:6b:4a:a0:dc:2a:fe:
7e:0e:0c:86:14:60:71:5d:8d:3c:df:b0:ee:35:bc:34:f9:da:
ab:1b:42:b5:8e:6d:57:74:60:ea:a0:38:5b:1a:43:1a:0f:75:
cc:9a:43:49:7e:49:56:f8:33:f2:d5:48:a2:16:d1:9b:65:3e:
3d:e5:9c:05:03:41:d2:06:04:6c:db:35:43:d2:6c:72:42:6e:
58:57:19:89:51:0d:eb:19:a1:8e:79:b9:6e:79:90:2a:21:f8:
bc:cf:ea:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 16:02:45 2025 by rpki-client