Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/f34c4e27-a97a-40a4-85f3-e0482d7f93de.roa
File: f34c4e27-a97a-40a4-85f3-e0482d7f93de.roa (raw, json)
Hash identifier: 3UjsFAJ10vtV6GHBdewDcvt9EC5FEJ4O4Wbdk5pF7M8=
Subject key identifier: 19:36:16:A4:CB:99:87:ED:27:11:9A:2C:BD:42:4A:4E:98:71:54:DC
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 34AD4798E47EB8551FAAA5D9A90C193733866B81
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/f34c4e27-a97a-40a4-85f3-e0482d7f93de.roa
Signing time: Fri 28 Feb 2025 17:28:18 +0000
ROA not before: Fri 28 Feb 2025 17:28:18 +0000
ROA not after: Fri 04 Apr 2025 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
34:ad:47:98:e4:7e:b8:55:1f:aa:a5:d9:a9:0c:19:37:33:86:6b:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Feb 28 17:28:18 2025 GMT
Not After : Apr 4 23:59:59 2025 GMT
Subject: serialNumber=9307e78ec4a334731563bcb6ea2067cad241747fce4460ae78026a16f7bc254f, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:72:81:f9:51:06:05:97:f5:ac:b2:e6:69:fd:
0f:3d:88:87:0c:ea:91:84:e8:c8:ba:c9:a0:70:cd:
c5:02:07:af:9b:81:ae:c2:ea:3e:0c:54:79:f8:9c:
64:eb:49:b3:f6:d8:5e:7c:cd:7c:8c:91:41:14:2c:
84:cf:04:02:9c:03:30:32:c9:f4:06:ac:5e:a0:af:
c2:37:4b:02:75:1d:f2:f4:1c:33:78:bb:f9:2a:48:
71:e8:14:ee:56:b5:6d:a2:e9:3f:49:53:ba:9b:a1:
99:9d:9f:45:18:af:e3:ed:c6:be:67:54:68:c5:d3:
73:df:30:4e:42:4f:c9:c4:59:41:61:d4:1a:d1:8b:
d2:d4:e7:8b:42:be:4f:1c:d8:1f:d7:1b:be:5d:f1:
90:d2:b3:69:31:e1:a8:64:66:af:fb:31:12:02:d2:
28:0e:d2:19:34:4b:19:bc:b5:5a:5d:be:05:a4:11:
30:81:3e:65:1e:38:36:9f:72:b1:14:8e:4c:40:17:
26:42:42:f3:a7:1a:31:0c:9e:9d:79:c8:f1:b1:1c:
c4:b9:f7:91:c6:a2:05:e1:ae:56:ac:6a:3e:fe:25:
dd:31:cd:d1:aa:c2:5d:56:eb:bf:f0:80:68:5d:d4:
11:11:d1:b2:57:e9:f0:ab:ec:2b:fd:03:da:ea:70:
a3:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:36:16:A4:CB:99:87:ED:27:11:9A:2C:BD:42:4A:4E:98:71:54:DC
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/f34c4e27-a97a-40a4-85f3-e0482d7f93de.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
7b:e4:b6:ab:30:57:1b:50:0d:5c:3f:5f:9b:45:76:73:ad:9e:
0a:a6:71:fb:b8:12:ea:58:cb:87:33:5b:1e:01:02:be:07:bf:
40:87:0f:f3:e1:1e:2a:e4:1d:e6:2a:1d:37:4e:07:89:c6:6f:
a1:c3:e1:ce:9d:b7:1b:6c:46:f1:e1:f4:c1:0a:5c:c5:bd:00:
bd:91:18:3d:f8:82:53:1f:4a:11:50:a8:9e:de:0b:59:a0:85:
4c:05:b6:dc:23:23:30:30:e1:95:96:de:50:62:73:22:df:a9:
75:6a:96:12:d2:03:c9:46:57:3c:df:9b:f0:6f:56:21:f1:55:
2f:45:7a:98:e3:08:63:cb:0f:3a:5e:7d:05:d2:28:49:9d:70:
d4:18:91:d5:ed:3f:1b:a8:54:15:d9:9e:7f:c2:dd:5c:95:e6:
6a:08:bf:c1:9d:4f:44:b7:28:fe:3d:ae:07:8b:93:96:05:75:
be:26:9e:f5:ee:ce:b8:12:e8:42:b4:38:ac:10:45:cf:ee:c3:
ff:59:15:ea:be:44:fe:f0:32:97:c4:ac:af:06:63:58:9b:c8:
c1:28:16:ec:a9:b6:89:b3:2d:6e:2b:6c:33:2f:e6:d8:9b:04:
f8:b9:1a:af:77:b2:f1:2e:97:1e:78:a0:1c:56:53:95:42:0f:
93:c2:a4:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 18:34:43 2025 by rpki-client