Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/f77b08a1-e09f-41f0-b5d5-bd4ac682c96e.roa
File: f77b08a1-e09f-41f0-b5d5-bd4ac682c96e.roa (raw, json)
Hash identifier: uQ8ADnwoG+sUspbLmQAjF+jYqebGmY4m8R49BgY+Gxw=
Subject key identifier: 97:67:B2:A3:59:03:F7:57:09:23:75:EC:B5:E6:D1:8B:6A:FE:02:6A
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 40D279E1E8D8E8F268568DC8A6063F92568217E6
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/f77b08a1-e09f-41f0-b5d5-bd4ac682c96e.roa
Signing time: Fri 19 Apr 2024 00:00:00 +0000
ROA not before: Fri 19 Apr 2024 00:00:00 +0000
ROA not after: Fri 24 May 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
40:d2:79:e1:e8:d8:e8:f2:68:56:8d:c8:a6:06:3f:92:56:82:17:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Apr 19 00:00:00 2024 GMT
Not After : May 24 23:59:59 2024 GMT
Subject: serialNumber=68420b112394431c2a137ae4803d43080fd183ae1f3b83da49168f88ed12b2be, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:1a:6a:77:7c:b4:49:53:98:6e:fb:95:4d:22:
3e:8c:88:1c:6a:39:71:ca:9f:ac:f2:9f:35:0d:d2:
11:ff:ab:8f:9c:94:86:14:30:04:ec:55:01:f4:1d:
83:3c:d0:9e:e3:9d:76:1a:c7:5c:16:dd:4a:6f:d7:
66:e4:04:da:5c:cb:87:4c:1f:92:7e:40:eb:d1:cd:
19:64:03:d6:32:d3:9d:fc:3d:67:5f:c3:54:e2:bd:
4a:3c:98:25:e5:fc:36:c6:b6:a2:26:6f:4b:64:20:
29:75:92:13:a3:db:8e:96:d2:04:59:4f:ff:c6:42:
2f:e5:cb:ea:71:19:7e:a2:c4:84:84:77:d8:1f:11:
e0:41:25:3a:58:8b:78:24:26:37:bd:70:ea:ae:d7:
75:e6:76:bf:fb:3c:49:89:7e:f4:7c:0c:cd:dd:e6:
ae:c7:42:1c:aa:9e:23:12:43:8d:bb:3e:a8:b0:94:
ad:2b:dc:76:80:58:0e:6b:30:60:06:6a:bd:ab:09:
a3:5e:bf:1f:ea:ae:5d:a5:46:a6:d5:3a:32:71:a6:
0a:d8:35:d2:40:0e:c8:58:ca:10:1f:eb:4b:be:58:
62:54:8d:85:cf:56:06:67:c5:e5:e3:2d:0f:3e:f4:
d1:4b:54:e4:c1:e6:38:43:36:8b:d6:65:66:0d:3c:
c2:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:67:B2:A3:59:03:F7:57:09:23:75:EC:B5:E6:D1:8B:6A:FE:02:6A
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/f77b08a1-e09f-41f0-b5d5-bd4ac682c96e.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
b1:53:0f:f9:7b:58:8d:a5:9c:1e:91:15:d5:18:36:ce:99:73:
6f:73:41:ce:89:9d:e1:5f:4a:ad:48:26:9b:11:9b:df:b6:03:
6b:c7:95:93:b3:d5:80:59:31:3d:2a:8d:3e:f5:ae:15:24:2e:
ba:e0:3c:8b:09:0a:4c:3c:d6:b9:8a:03:99:06:81:68:5a:34:
ad:07:16:57:1a:f8:dc:7b:a0:2b:81:cb:d4:5e:bc:73:be:bd:
9b:96:bc:4d:3d:50:10:cb:f1:7c:30:81:e4:ab:51:13:f7:9e:
23:d1:b2:2c:88:87:45:5f:85:d3:fd:3a:6c:1a:a7:98:a9:70:
89:b4:6a:6f:93:ea:9a:ff:83:bf:89:2b:07:57:d8:94:71:10:
2a:73:26:2f:16:1d:b2:10:a0:aa:93:99:4c:83:7a:b4:e6:78:
6e:d0:fd:09:d3:c3:04:25:17:70:f1:34:5a:85:22:94:e9:13:
f8:c4:93:5e:18:b0:ac:34:df:f5:ce:1d:89:5d:39:fc:98:db:
25:9c:35:f1:07:da:1d:f3:cb:1b:f9:45:a9:c3:9b:cc:8b:1b:
b2:e0:e0:fa:b0:16:03:b8:53:b5:12:8b:bf:7d:71:bc:fd:e5:
3d:f6:66:3e:9a:2c:b2:f2:0d:44:e2:96:b6:ca:b3:b2:5f:e8:
3b:82:a0:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 18:27:54 2025 by rpki-client