Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/1db8a954-1146-41f2-8998-d8d4079eff55.roa
File: 1db8a954-1146-41f2-8998-d8d4079eff55.roa (raw, json)
Hash identifier: s4v60JYwkJSTcBq+/ImlMzm7W/WsTOnVFXmIk3ItgZ0=
Subject key identifier: 6A:53:73:D3:55:E3:E1:35:9D:4C:7C:8E:64:49:9A:34:35:E3:81:53
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 0C4AE706C70AEBD3C4D10085A8663E7C2854495E
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/1db8a954-1146-41f2-8998-d8d4079eff55.roa
Signing time: Mon 03 Feb 2025 00:00:00 +0000
ROA not before: Mon 03 Feb 2025 00:00:00 +0000
ROA not after: Mon 10 Mar 2025 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0c:4a:e7:06:c7:0a:eb:d3:c4:d1:00:85:a8:66:3e:7c:28:54:49:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Feb 3 00:00:00 2025 GMT
Not After : Mar 10 23:59:59 2025 GMT
Subject: serialNumber=fa163b8855b93d44e1e1e63752b6849cfab2a16dae484a46e1432db239bdbbca, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:71:e6:6c:cb:76:0f:80:dc:2c:8b:44:80:25:
49:b9:8b:0d:76:de:4d:0c:9c:74:c9:39:47:9e:60:
19:bd:ff:40:7d:33:8e:63:f4:43:fa:fc:f6:be:43:
84:cc:dc:46:82:96:ff:89:7f:a6:65:05:05:6d:85:
86:e1:73:92:6d:7b:03:32:ef:4e:74:ce:e7:7c:51:
de:50:ef:dd:92:7c:43:21:00:a8:95:e0:82:4f:9a:
7c:6e:38:1a:e8:a8:fe:af:64:c6:60:18:9c:ca:fb:
70:28:cc:f5:d9:d9:7e:17:9d:6b:d1:c1:96:59:04:
1d:b6:db:4d:b6:89:01:19:e1:b4:e3:84:26:18:56:
7b:7a:df:9c:0d:a8:9e:1f:51:e8:9e:da:c4:d2:fe:
2a:76:d3:b2:2f:15:1c:c4:78:0b:cb:95:d1:5a:c9:
a5:75:e9:ea:14:dd:58:12:ad:82:c5:39:9a:eb:8d:
fd:1d:8e:79:a4:a1:7f:fe:79:98:9f:ff:c2:ea:c1:
c7:51:61:10:57:78:7e:01:fc:33:ca:65:1f:c1:d4:
d3:93:af:61:d7:14:59:ef:ea:26:38:f2:97:ec:ee:
c0:72:f3:bb:94:47:a3:16:2d:8e:95:13:b8:09:e9:
90:c8:ba:5c:fc:b8:e2:b8:02:fd:2a:77:a6:49:ae:
fe:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:53:73:D3:55:E3:E1:35:9D:4C:7C:8E:64:49:9A:34:35:E3:81:53
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/1db8a954-1146-41f2-8998-d8d4079eff55.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
81:3d:72:8c:d2:05:f9:75:a2:b0:17:f0:14:41:9b:ab:6f:89:
7d:1c:0d:20:f1:70:5e:01:ce:15:4f:fd:fb:1a:c4:c9:fd:88:
bd:2e:9e:10:ac:55:d0:6f:0f:d5:8b:f3:6e:42:b2:b4:d4:50:
2c:d2:ea:d9:6e:ba:a2:14:d3:85:ab:a9:53:e4:16:bb:3c:cd:
87:94:ee:05:e7:eb:9f:e9:d3:16:fe:1c:d8:56:3d:fa:d5:cd:
45:1d:93:a8:39:f6:a0:c8:9c:a0:61:3a:68:bd:92:3c:51:12:
92:29:9e:0b:2d:bf:38:06:61:43:04:d9:96:bd:1d:a8:f5:76:
33:aa:4e:d8:4e:88:58:10:5d:b0:36:44:52:22:5e:68:a7:ff:
f1:fa:3b:7d:fd:82:9c:4e:32:2e:a6:62:87:7a:ff:bc:7f:6c:
b9:3a:21:e8:32:20:ac:c4:59:74:b9:1a:94:9d:28:9e:06:0e:
21:0d:69:f8:90:2b:4e:1f:aa:bf:e4:58:73:08:b3:d3:65:26:
ff:a8:88:e4:2f:7e:37:b1:ef:3a:12:64:e6:8e:41:64:80:36:
68:97:57:87:c2:3e:82:17:88:59:4c:33:23:dd:d8:af:bf:5a:
08:d1:76:68:66:a8:c4:c8:84:79:8b:4e:9a:9f:54:72:95:9e:
ff:07:98:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 21:50:40 2025 by rpki-client