Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/f47fa114-c1dd-46c5-89ad-1fd7ecf4992b.roa
File: f47fa114-c1dd-46c5-89ad-1fd7ecf4992b.roa (raw, json)
Hash identifier: XUhmIb+fdRjXT66SYGbxk1/JOZlLW1uMWaFdLq3rexs=
Subject key identifier: 0C:A0:58:30:AF:CC:27:52:A8:22:01:FF:DF:AE:27:A7:F7:5E:4F:D8
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 03B85C6D9BF4D2C7BC59C30D38AFC9D871CB2B99
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/f47fa114-c1dd-46c5-89ad-1fd7ecf4992b.roa
Signing time: Mon 23 Oct 2023 00:00:00 +0000
ROA not before: Mon 23 Oct 2023 00:00:00 +0000
ROA not after: Mon 27 Nov 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
03:b8:5c:6d:9b:f4:d2:c7:bc:59:c3:0d:38:af:c9:d8:71:cb:2b:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Oct 23 00:00:00 2023 GMT
Not After : Nov 27 23:59:59 2023 GMT
Subject: serialNumber=57bce65b7d603551c82f0dfc495680b53b66f2339647e54a0bfefc917a094189, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:5d:dd:a3:b5:6f:9b:da:9f:c5:96:dc:70:30:
42:53:22:46:3d:80:1e:d5:73:86:ab:09:4c:b7:b6:
7f:17:e8:90:21:55:13:bd:78:8f:e7:02:54:c9:31:
2a:c1:89:ac:15:2a:e2:58:84:7a:b2:47:bd:6d:b2:
34:6d:54:d2:da:f3:e7:56:5f:27:a2:55:4f:5c:eb:
b1:bc:6a:58:c4:97:70:b3:3c:26:41:d0:c6:c9:ba:
5a:3f:4a:91:40:8d:20:21:15:60:47:b2:2d:dd:b2:
97:57:9b:60:6c:cf:0b:e0:67:66:22:95:2d:3e:48:
c3:58:1c:4b:7d:78:8e:9f:d7:4d:82:2f:05:d1:c6:
6c:06:9d:13:6a:4d:6a:18:d6:28:ae:2d:70:96:e2:
1c:b7:f0:a9:77:f4:b4:69:58:0f:3b:85:a9:66:70:
50:aa:15:91:2a:2d:d5:fa:70:83:88:36:d7:c5:2f:
52:f6:50:b9:7f:50:f2:c1:10:fb:00:7f:11:1a:10:
31:7b:fc:c6:6a:4b:2a:53:1b:19:2a:66:45:0b:21:
d5:0e:06:ae:77:bd:3c:62:10:79:20:d1:70:aa:bd:
e8:f6:14:20:cf:8b:65:68:69:2f:78:7d:fe:36:60:
62:14:9c:6e:6c:17:fe:22:c9:26:d4:dc:85:dc:0d:
57:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:A0:58:30:AF:CC:27:52:A8:22:01:FF:DF:AE:27:A7:F7:5E:4F:D8
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/f47fa114-c1dd-46c5-89ad-1fd7ecf4992b.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
9f:7e:dd:f7:b1:81:43:8f:dd:91:ca:3a:40:be:f0:d5:fa:6e:
d4:c8:3d:3b:69:96:11:b5:54:c0:4c:18:06:4c:e1:ff:b7:61:
b0:1c:e1:13:70:ac:02:b9:d8:4e:a3:95:92:94:6a:b3:92:f6:
a4:3c:5a:92:44:dc:43:25:ba:d6:57:bf:7d:2c:6a:8c:61:92:
96:8e:02:9c:bb:8e:93:2e:8d:55:45:67:b7:06:a1:07:d5:38:
05:75:c6:0f:cf:b3:03:ca:08:cf:f3:57:f1:47:ca:6b:a6:4c:
8c:c5:c4:45:dc:89:46:ad:9d:7a:25:b0:3c:d2:f8:3d:a2:5e:
b2:55:61:f8:6f:d2:9e:95:6d:3f:85:ce:6b:69:36:70:e9:3a:
ca:8f:9a:cf:02:2c:64:81:c5:88:6a:12:ef:d5:b4:79:83:ef:
03:d6:cd:c4:63:d6:a4:b1:7c:f5:99:ec:5f:c5:27:f5:59:fc:
a5:b0:30:a1:33:3a:ee:0c:5f:08:9b:fc:59:52:cd:b1:9a:8e:
9a:ee:ed:b4:eb:bc:4b:fd:a9:42:04:c4:d7:a4:59:88:f1:71:
34:37:68:58:2a:db:77:0a:a1:ef:b0:30:4b:e3:84:cb:27:3d:
52:cb:21:73:4c:c3:f5:5f:a7:62:03:40:ad:09:d5:38:5e:bf:
c8:c9:d8:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 18:05:41 2025 by rpki-client