Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/a77f2e60-5b7e-4653-b262-d01a35ae10d3.roa
File: a77f2e60-5b7e-4653-b262-d01a35ae10d3.roa (raw, json)
Hash identifier: 4SYK3GcOBHBZmfhXzxF+HT1bx6szrLaIgHfl4bs7Rbs=
Subject key identifier: 32:B3:29:33:21:C0:48:D9:A6:BC:DD:32:4B:85:3F:0C:16:2D:E3:CC
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 73FD1702337244C14F2085D1D545678B81400441
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/a77f2e60-5b7e-4653-b262-d01a35ae10d3.roa
Signing time: Wed 08 May 2024 00:00:00 +0000
ROA not before: Wed 08 May 2024 00:00:00 +0000
ROA not after: Wed 12 Jun 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
73:fd:17:02:33:72:44:c1:4f:20:85:d1:d5:45:67:8b:81:40:04:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: May 8 00:00:00 2024 GMT
Not After : Jun 12 23:59:59 2024 GMT
Subject: serialNumber=211ed4e1f05bce429cc23a34adea3df8721115ed4cb34f6c7f9a74f85945e4ee, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:d6:c6:c2:38:2c:af:fe:e5:d6:70:b8:26:0a:
59:96:6f:ad:6f:dd:a7:ea:b2:e9:cb:ed:95:3e:60:
90:ca:0e:dd:1c:5f:81:38:c6:41:52:b6:8b:f2:fe:
a6:16:62:7b:b1:6a:22:d1:82:58:8d:a7:34:ef:ff:
c1:60:bd:13:b5:54:5c:56:c4:e7:4a:19:86:10:61:
19:f8:02:01:0c:79:4b:f3:c4:56:92:a1:18:6b:21:
76:a3:d6:36:2a:bc:bc:73:e6:f0:15:8b:b6:3d:6a:
ae:c0:f5:1d:82:f0:bd:a6:7a:2f:f5:f2:7b:f8:c6:
b4:df:a9:e3:85:ce:be:73:31:70:37:24:5f:44:75:
fa:3a:c9:96:83:e1:36:b7:1d:1e:6a:e2:a4:8b:c9:
f7:f3:57:e2:d9:91:bf:04:7f:fb:c6:c0:22:0b:30:
de:74:b0:c4:fd:61:17:f2:5f:af:61:02:c5:48:1e:
18:0e:b1:0a:d7:05:a4:fa:74:51:24:5e:37:9d:a8:
b7:35:f1:51:34:5a:e6:e5:24:79:bc:c0:15:c2:9f:
eb:bb:cb:46:b5:3e:f6:fb:61:b8:fe:cc:a2:26:80:
ac:1b:31:45:5f:1f:c4:a9:13:d3:21:6d:36:3a:b6:
90:3c:dc:79:cf:57:26:6f:ca:ea:d2:5e:ea:f1:2c:
d8:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:B3:29:33:21:C0:48:D9:A6:BC:DD:32:4B:85:3F:0C:16:2D:E3:CC
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/a77f2e60-5b7e-4653-b262-d01a35ae10d3.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
8d:8b:c4:05:90:b1:05:f3:23:da:38:3c:f6:f1:8b:6a:db:a9:
92:ef:5a:f4:44:0f:0d:9e:51:34:20:f1:99:f2:4e:c3:1f:91:
84:3b:29:ea:64:71:06:d7:d2:57:e5:a3:6d:19:21:24:5a:b9:
af:8e:62:46:dd:71:c8:2f:1d:7b:5d:5e:93:bc:23:cb:b8:6e:
dc:ea:c2:ee:26:ea:5c:a1:9d:6a:33:1b:a6:ae:00:ea:4a:a7:
cd:73:e1:9c:d6:b9:a9:b2:36:5f:2b:46:1b:17:e8:ac:ff:5b:
17:10:15:3b:f2:37:ae:20:dc:5b:0d:78:de:0b:8d:1d:39:35:
b0:5d:53:7e:5b:16:6a:28:62:d8:0a:fb:1e:d7:1f:48:2e:5b:
e4:02:30:23:43:b6:7d:87:f1:bf:25:b0:f2:12:6f:cb:4f:79:
b1:24:4a:2a:0f:1e:b8:ba:cb:9c:ce:fa:05:48:11:1e:ae:df:
2b:61:d0:c7:95:64:b9:4e:2b:04:89:51:08:cd:8b:1c:a6:88:
dc:53:20:01:ff:85:98:bc:c2:e9:b9:e8:24:c7:00:b9:c5:50:
9a:dc:1f:06:d4:87:b5:4a:5a:79:a8:b3:10:50:a9:2c:a2:a3:
95:21:1b:c1:b8:28:5d:fd:54:5f:f8:8e:26:54:b2:17:ea:40:
33:77:d0:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 07:14:29 2025 by rpki-client