Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/b2495b91-ce4c-4c16-b292-3f218109ffc0.roa
File: b2495b91-ce4c-4c16-b292-3f218109ffc0.roa (raw, json)
Hash identifier: mCP4kbzzxMp3q3xllqxDm65jN29v6uN0pZ7zhHRXozM=
Subject key identifier: C4:AE:99:DD:B4:F8:29:5C:2E:1E:EE:A6:7F:78:FB:34:C3:B2:05:D0
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 197AD125A409A9B50EA098622512C01E71D45E36
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/b2495b91-ce4c-4c16-b292-3f218109ffc0.roa
Signing time: Thu 19 Oct 2023 00:00:00 +0000
ROA not before: Thu 19 Oct 2023 00:00:00 +0000
ROA not after: Thu 23 Nov 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
19:7a:d1:25:a4:09:a9:b5:0e:a0:98:62:25:12:c0:1e:71:d4:5e:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Oct 19 00:00:00 2023 GMT
Not After : Nov 23 23:59:59 2023 GMT
Subject: serialNumber=2d9a9de0300c5c0cd5cfac3cf3e14f23db8f0661dd9eb112f0b31fba319f67fe, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:71:ca:64:43:18:f9:a3:5e:f7:bb:7f:fe:7c:
0d:23:e0:68:5c:93:37:0f:ce:c4:6e:31:18:f8:16:
af:8a:aa:36:70:c1:aa:ba:42:96:65:64:41:83:1b:
4c:61:95:a7:31:70:1a:47:4a:e7:08:80:d4:e8:4d:
a2:fd:f1:f5:52:ba:f0:a0:b4:ed:36:2f:40:ad:ce:
66:3f:8f:53:bc:e6:8f:d5:22:ea:20:c0:e2:59:b0:
5e:d6:50:a7:42:a1:54:da:ea:45:5a:aa:e7:d5:84:
32:d5:0c:7e:80:e2:6d:56:c7:fd:63:ce:68:f3:7e:
22:f0:f1:7c:4a:59:5a:3e:48:83:67:8d:73:4c:02:
1a:a9:94:22:7b:ad:2a:26:18:6f:4d:e9:2e:ab:14:
ba:99:03:20:c3:a5:18:65:48:a9:05:29:07:cb:3d:
11:7c:5f:37:89:16:6d:4c:4c:5e:7b:37:dc:94:b8:
e6:1a:b8:07:52:a4:43:62:10:14:cf:04:c1:1a:0c:
a4:8c:7b:30:0d:04:fc:dc:9e:9b:43:67:3c:8a:bf:
07:c7:8a:af:fe:0b:f4:a1:f6:a1:ef:fb:b5:7a:e8:
78:d4:1c:6d:ab:09:50:9c:71:3d:1c:3d:9e:5a:21:
cc:a8:3c:14:f8:e8:3c:b9:b9:8f:e7:f2:3a:53:6c:
dc:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:AE:99:DD:B4:F8:29:5C:2E:1E:EE:A6:7F:78:FB:34:C3:B2:05:D0
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/b2495b91-ce4c-4c16-b292-3f218109ffc0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
89:b8:14:17:21:f1:87:46:ac:68:47:b7:d0:db:99:68:e2:a6:
77:64:26:d6:6f:92:94:39:50:10:b6:30:7c:23:21:56:00:db:
f2:b8:31:c8:a9:18:3c:db:5e:fe:e5:ad:76:74:d8:68:d3:d3:
b0:78:b3:eb:62:02:d9:3e:72:03:c4:d4:c7:4f:4b:9f:5a:2b:
cc:c2:e9:e4:4c:f0:cd:e0:ed:2f:bd:00:20:83:49:4f:07:08:
14:47:0a:bc:35:5a:9c:9e:9a:10:bb:15:44:c6:4f:7a:63:39:
94:6d:e4:2b:cb:c2:79:f9:b8:83:3e:68:71:4c:06:3b:a0:cd:
ce:16:e7:78:3d:b5:fb:ca:1b:0f:90:61:fc:6e:2c:c3:ef:4d:
b7:22:d8:85:b5:3d:79:33:c4:e1:07:68:f1:5f:30:15:d8:22:
e6:1d:1e:c7:42:e9:63:1b:43:01:8c:60:ff:64:63:4f:37:b8:
d4:b1:40:f6:65:63:69:74:8e:44:56:a3:4a:5c:33:c7:86:67:
93:f2:60:ca:d4:2a:5f:8b:7e:f4:37:a7:9a:ee:dc:de:7a:e3:
5d:74:c1:27:91:74:d6:b5:84:f8:b4:f0:f2:2b:47:6d:5f:2a:
bf:0e:04:71:4b:83:48:91:f2:11:7d:e0:8a:b5:95:81:e8:50:
d3:68:6d:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 18:07:47 2025 by rpki-client