Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/9122f751-18bd-433d-a1d3-ae6d785123a0.roa
File: 9122f751-18bd-433d-a1d3-ae6d785123a0.roa (raw, json)
Hash identifier: syc6/OIoxSLBYr3lTDAiJnHvNFeKQP1zhw+s9KOo8MM=
Subject key identifier: C9:84:22:39:A2:3C:E5:20:A2:F3:BD:79:C1:F8:E5:32:E2:27:B5:54
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 67D362E62C87A458E1418D8B9A902B5203F73407
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/9122f751-18bd-433d-a1d3-ae6d785123a0.roa
Signing time: Sun 14 Jan 2024 00:00:00 +0000
ROA not before: Sun 14 Jan 2024 00:00:00 +0000
ROA not after: Sun 18 Feb 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
67:d3:62:e6:2c:87:a4:58:e1:41:8d:8b:9a:90:2b:52:03:f7:34:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Jan 14 00:00:00 2024 GMT
Not After : Feb 18 23:59:59 2024 GMT
Subject: serialNumber=4683e9fd2b8d3b60a06440889ba632571ccae256f6e61326940cfa9898826c6e, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:c9:8e:20:fd:be:e4:f1:0e:83:53:6b:aa:c3:
5d:1b:8a:d7:20:9d:ea:79:67:36:b1:97:9e:60:5f:
dc:8e:6b:03:24:c0:d0:42:ae:38:e2:23:5e:71:d0:
d6:a0:2d:b9:c6:6e:3a:f9:12:bc:9b:15:0a:5d:42:
ba:1c:a4:92:82:78:4f:c7:f7:22:b5:d3:fd:29:84:
e1:c1:16:ec:d4:44:04:ff:39:26:8c:e7:1f:fc:16:
d7:66:76:9b:11:1e:dc:39:24:a2:7a:37:c8:be:47:
36:85:3d:c9:c6:8a:0c:6c:fd:c3:ac:b2:ad:8f:b2:
9c:6c:7b:2a:f7:a6:37:86:7e:45:9e:5e:13:47:fc:
ed:7d:da:65:81:f1:1f:68:bb:d6:cc:9d:74:0e:ae:
76:96:65:31:0d:6c:a2:e7:bf:8a:e3:56:01:5b:1d:
3f:30:9a:dc:4e:03:24:93:c2:4e:ef:82:be:4c:80:
b6:b7:95:12:0f:26:02:0a:39:1c:b4:bd:f5:ff:1d:
43:35:89:68:e3:14:af:8c:7b:71:af:81:b6:d4:97:
ac:03:6d:56:c1:19:59:c0:81:e4:4b:7e:4c:8a:b7:
50:b2:1c:89:56:ec:4c:5c:63:43:6c:77:f1:7d:73:
0c:48:ba:b8:5c:f1:05:d9:a0:5d:af:43:69:60:4b:
b0:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:84:22:39:A2:3C:E5:20:A2:F3:BD:79:C1:F8:E5:32:E2:27:B5:54
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/9122f751-18bd-433d-a1d3-ae6d785123a0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
a3:2e:4d:85:d4:36:a6:03:0c:c6:ba:d1:cd:f4:df:1f:b9:c9:
e7:6a:dd:a8:2d:75:ea:1a:a3:89:a5:fa:f0:56:9c:d3:3c:9b:
66:46:93:b0:1d:1c:8c:87:63:be:7e:d4:2c:b4:94:eb:0a:ba:
84:00:e8:71:c6:eb:21:60:f1:b7:8e:3a:06:21:a5:a8:eb:49:
f9:f8:b4:23:f6:a1:96:75:40:74:c0:2d:82:30:ce:88:c3:17:
a4:0b:d5:cf:14:8c:4b:ca:64:a1:17:67:3e:96:b9:4c:4b:86:
cc:d5:75:43:ae:e3:5d:b4:0e:52:2a:dd:d1:cd:35:c7:14:58:
2b:6a:1a:49:df:ce:3c:82:93:21:af:03:09:07:a9:eb:99:64:
83:76:fe:91:26:a3:6f:4b:f5:49:bc:68:58:36:48:32:ee:19:
5b:b7:13:a9:84:d0:08:81:22:b9:8f:68:ff:f8:a9:fe:0a:06:
23:3b:02:34:28:e0:bb:f4:f4:fa:19:5d:0f:03:f4:6c:43:24:
31:e9:1e:db:cf:05:2b:94:b1:a7:a0:50:fd:77:aa:f2:fa:ae:
da:03:90:8f:e5:1e:29:a7:f6:a6:84:1d:97:8a:92:1c:54:49:
60:d5:c1:ee:a8:cb:98:20:06:5d:cf:5e:71:94:4e:30:59:e4:
19:25:a4:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 19:09:45 2025 by rpki-client