Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/d756e6b1-cdf3-4ac4-93c8-f78e5717d30e.roa
File: d756e6b1-cdf3-4ac4-93c8-f78e5717d30e.roa (raw, json)
Hash identifier: SlMpTed2Yzk0SPzMFFR13MoUw2fh3Q7eFd31rmYJuXk=
Subject key identifier: D9:07:7D:96:8C:AD:0F:6F:FE:6E:07:CA:9C:14:1D:3F:41:98:23:EA
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 280D31B2EF8EF630876B93F5036C4AE7EF6BCFE9
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/d756e6b1-cdf3-4ac4-93c8-f78e5717d30e.roa
Signing time: Thu 12 Oct 2023 00:00:00 +0000
ROA not before: Thu 12 Oct 2023 00:00:00 +0000
ROA not after: Thu 16 Nov 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
28:0d:31:b2:ef:8e:f6:30:87:6b:93:f5:03:6c:4a:e7:ef:6b:cf:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Oct 12 00:00:00 2023 GMT
Not After : Nov 16 23:59:59 2023 GMT
Subject: serialNumber=8e5f0db377d0b161131b9dad8bf984d78b8e7bbbb3c558f9f471db2987f3e6f8, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:30:6a:f3:1f:63:de:63:e2:20:8c:95:e3:d3:
96:1e:fe:ba:39:d6:43:1d:26:6d:22:88:bd:96:ac:
b9:fc:1a:d9:af:a9:62:ad:f0:9e:bd:ce:b3:e2:17:
92:f8:07:e8:76:24:b8:d6:76:9d:d7:84:25:39:e3:
57:68:a9:c2:3c:12:38:ae:ac:a7:8a:bb:33:72:5a:
21:97:95:16:8d:a1:07:3d:cd:db:1f:57:84:ef:6e:
00:e0:85:0f:4c:84:ed:53:77:09:72:e4:24:68:8f:
06:29:54:21:77:0d:72:b9:07:7f:d5:49:a5:8c:c0:
69:88:6f:3c:f0:59:50:73:55:3f:c6:db:00:04:a9:
cf:3f:0e:b8:af:ad:ab:54:24:d9:89:83:77:48:73:
e1:86:35:9b:ea:de:48:13:6d:d1:01:45:41:26:0a:
00:35:1e:84:60:9d:5b:f4:6b:46:ef:55:a7:67:9e:
c0:cd:6f:85:07:f3:90:ee:79:c0:0b:64:f4:a1:5e:
69:86:d4:9e:69:71:43:f8:04:3c:f6:17:68:92:e8:
b7:f9:33:d1:e7:0f:3d:1a:de:92:1b:1b:82:8b:ae:
d9:bc:be:cf:b1:cd:bf:aa:f8:7d:4c:bf:14:ef:ac:
2d:18:d1:74:7d:2f:a4:aa:35:3d:b5:3c:eb:77:a8:
d7:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:07:7D:96:8C:AD:0F:6F:FE:6E:07:CA:9C:14:1D:3F:41:98:23:EA
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/d756e6b1-cdf3-4ac4-93c8-f78e5717d30e.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
23:a2:20:50:de:62:21:e4:62:9d:0b:c4:35:03:5e:cf:b1:24:
0f:78:6d:58:be:e9:15:43:3a:9c:1b:35:69:7d:0d:ce:ab:f3:
0d:12:5c:02:87:1c:23:01:6c:e9:2d:78:a6:1e:6a:18:ba:19:
f3:7e:01:e3:06:e7:83:54:4c:c3:b1:54:d6:7a:03:17:88:79:
79:36:da:80:eb:60:f0:3f:8e:7a:0d:7c:2f:86:39:cf:49:44:
b3:1a:ee:4a:49:0d:a9:ee:6f:c0:5f:cb:b3:63:1e:d6:24:2c:
f9:66:68:e6:f1:f3:77:95:98:e9:fd:25:dd:ed:9d:2e:19:3e:
b9:ee:39:a0:67:0d:89:c2:b7:de:21:c1:18:22:87:e1:e4:d1:
1c:af:11:33:dd:c8:a6:ba:70:b5:2f:e1:3e:8c:5c:3a:56:38:
57:3e:2f:88:e9:70:1b:f2:7b:ab:07:99:14:87:0a:f7:6f:ee:
d5:a8:69:ba:5b:86:e1:7a:29:5f:0a:af:ae:f2:20:28:94:06:
ac:5a:21:04:be:83:c6:ce:23:a5:f2:8f:66:99:12:aa:11:c3:
be:f9:95:9e:24:55:b8:49:0c:65:25:f2:30:4d:78:49:17:22:
cd:7c:9b:8f:49:97:7b:dd:12:0e:e6:f4:d3:6b:56:51:ab:85:
ff:fa:68:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 18:30:36 2025 by rpki-client