Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/bf08bf80-6084-40f2-bcde-70b9af8edd7e.roa
File: bf08bf80-6084-40f2-bcde-70b9af8edd7e.roa (raw, json)
Hash identifier: YGi8c4T9p1tqbkV2Q/zzEKMaN1azou1H9tHzR2Im56U=
Subject key identifier: 21:F8:80:25:57:3E:9A:12:E3:1D:01:8C:59:E9:CA:80:F5:97:65:7E
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 6EAFDAF92CA8DB51C9E35244D3A04339AB0568C5
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/bf08bf80-6084-40f2-bcde-70b9af8edd7e.roa
Signing time: Wed 27 Nov 2024 00:00:00 +0000
ROA not before: Wed 27 Nov 2024 00:00:00 +0000
ROA not after: Wed 01 Jan 2025 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6e:af:da:f9:2c:a8:db:51:c9:e3:52:44:d3:a0:43:39:ab:05:68:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Nov 27 00:00:00 2024 GMT
Not After : Jan 1 23:59:59 2025 GMT
Subject: serialNumber=d3fb3a25d36d9f52bbc4ce71f5a3ac423980bca5f9abadc76935eaf367fe4552, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:91:32:90:c9:1d:6e:42:38:a0:63:a9:cb:47:
67:eb:57:1c:45:b4:e1:32:d0:f5:3f:ab:52:74:e6:
d2:bf:0f:82:64:dc:18:4b:ad:42:4b:1c:f4:ab:19:
6a:8d:40:d8:a1:8c:8b:18:99:8f:2a:2c:69:a9:9d:
cb:2d:73:bd:c4:3b:7c:47:04:f3:95:98:36:bc:b5:
da:3d:17:fc:26:e5:f5:c9:ba:6a:0d:1e:d2:83:e1:
ef:f0:89:5d:2a:b1:d8:c5:22:f0:e7:11:eb:2d:0a:
98:b7:fc:68:8c:f5:82:33:33:7f:58:f9:1d:1a:f3:
68:ed:ed:5d:47:01:0d:a8:85:64:fc:f6:2d:28:49:
b6:08:ae:70:58:ad:39:05:08:e5:37:c7:ff:32:ec:
07:f9:3b:08:4a:87:04:39:f9:d1:71:20:c9:89:4f:
e6:3f:9a:53:cd:80:5d:27:be:9a:c5:7d:71:fd:5f:
e7:b6:80:c2:d0:d0:4e:b6:6d:1f:3d:d2:09:0b:6a:
aa:a6:64:dd:1a:2f:35:89:29:69:a4:a5:83:29:3c:
b7:3a:8e:04:7e:c1:a8:b2:8d:44:4a:f1:76:4d:aa:
cc:e7:14:23:10:86:2d:3f:27:ef:95:50:3c:a3:ea:
11:99:81:ce:0d:bd:7e:4f:88:01:0e:81:59:39:18:
b2:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:F8:80:25:57:3E:9A:12:E3:1D:01:8C:59:E9:CA:80:F5:97:65:7E
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/bf08bf80-6084-40f2-bcde-70b9af8edd7e.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
5c:01:40:89:29:77:d0:4d:9c:f3:b1:52:43:3f:cf:ce:ad:7f:
91:1d:d2:92:6e:e0:3d:fa:f8:d2:f6:1f:41:31:39:43:e9:27:
d1:02:c8:53:6d:4d:fa:26:56:7f:15:69:3a:4c:61:ab:5b:df:
e4:0f:62:1f:37:2f:01:3a:54:fc:20:21:13:35:49:e2:52:73:
fa:54:e6:9a:13:52:ac:ab:0d:59:ed:e1:cc:67:2f:25:17:f6:
c1:5a:f5:57:af:ee:4c:6f:09:51:61:6a:b6:4a:03:ac:01:d1:
8e:f3:55:a2:69:df:a8:72:36:56:6b:d8:5f:5b:1b:58:9c:c4:
e0:b4:d6:7c:72:ad:ff:38:1f:9e:cd:16:6a:83:d4:9f:ba:5d:
93:42:5e:6c:a4:4d:7e:62:c0:2d:aa:bb:00:0d:1a:80:00:65:
2a:67:60:01:f6:05:91:92:ab:c5:53:05:67:aa:16:c2:4d:34:
2c:06:b6:3e:75:c1:ce:8e:97:77:6f:c2:f5:a1:ff:88:68:3c:
e2:ed:ff:95:38:84:7e:fc:44:ff:61:ee:39:df:d5:16:3a:5b:
a1:f6:04:1d:bb:ec:69:73:0c:dd:ba:d3:d5:9b:49:fd:16:ff:
be:04:b7:8b:19:2c:49:c9:61:e5:79:d3:e2:6c:95:62:b0:04:
5e:46:15:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 18:07:48 2025 by rpki-client