Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/1405c9f3-cca9-4a02-940c-6db5ea374bcf.roa
File: 1405c9f3-cca9-4a02-940c-6db5ea374bcf.roa (raw, json)
Hash identifier: cP/j6rFzpfiWZmNUj/rZLaU45NDWajegbo1vOGVuipw=
Subject key identifier: 35:1F:EC:F6:A0:76:42:87:6E:66:4B:52:C4:B6:11:39:76:2B:9C:16
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 1AEAEB2D485DD2D2C2F197257897DD0D291A5552
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/1405c9f3-cca9-4a02-940c-6db5ea374bcf.roa
Signing time: Sun 19 Jan 2025 00:00:00 +0000
ROA not before: Sun 19 Jan 2025 00:00:00 +0000
ROA not after: Sun 23 Feb 2025 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1a:ea:eb:2d:48:5d:d2:d2:c2:f1:97:25:78:97:dd:0d:29:1a:55:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Jan 19 00:00:00 2025 GMT
Not After : Feb 23 23:59:59 2025 GMT
Subject: serialNumber=edb6021e879fbdbf6548cfef8d0573b54174d84765a6dbc25f397584b7196616, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:25:f6:2b:ee:8d:62:af:22:3e:f1:da:2b:b5:
40:80:c9:4e:4c:72:7c:f9:cb:a6:b8:39:ea:e8:0f:
10:62:63:70:87:fc:98:db:20:e1:b8:0b:fb:07:f0:
0b:46:ba:57:c7:ec:9d:7f:9e:d7:3b:38:82:18:37:
27:12:92:70:09:66:c0:c8:d0:f1:fb:43:fa:4d:5e:
7e:aa:de:f6:72:9a:20:e2:49:c0:e4:94:04:d6:b2:
78:e9:73:cb:57:75:e7:f3:b7:e7:5e:07:e6:ac:21:
8e:d5:91:9e:fc:66:b9:7e:5b:a3:ec:69:28:ef:28:
0d:bb:7d:d5:5c:ff:7b:52:b2:ac:bb:66:14:40:bb:
d4:88:61:65:86:10:05:eb:c0:7e:57:c9:e7:b6:0a:
d5:b6:e2:33:41:9e:62:81:0e:a2:f1:9b:ca:4c:ed:
91:19:c2:29:82:61:84:f4:91:64:6a:d1:0f:76:6c:
d7:a4:54:c5:54:2a:45:30:01:18:a0:25:ba:20:20:
87:b1:80:f9:f6:09:93:21:f6:6f:76:3d:d3:0e:d3:
34:55:dd:bb:5b:90:47:ff:68:77:d6:bd:01:5a:33:
3a:32:d4:a0:84:18:ca:28:29:14:b4:f3:b7:b2:1e:
22:0e:13:01:f0:5b:e1:66:78:22:ac:01:44:33:a7:
62:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:1F:EC:F6:A0:76:42:87:6E:66:4B:52:C4:B6:11:39:76:2B:9C:16
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/1405c9f3-cca9-4a02-940c-6db5ea374bcf.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
86:1f:7d:42:28:cf:19:7d:68:00:bd:4b:2b:a6:9a:bc:f0:cb:
e5:6f:97:fd:fb:4d:f8:53:dd:a0:16:eb:9b:bb:53:5c:06:38:
48:72:e9:6b:46:5e:5a:e7:b7:af:95:b2:c3:69:83:10:19:5b:
6a:44:e2:f3:12:ee:cc:64:6e:74:29:8a:99:be:59:cf:2d:47:
0c:9c:df:7c:d4:0b:af:0f:90:b3:f3:df:ff:ac:65:ea:d6:28:
32:1e:5a:e1:e8:93:5b:35:c5:ad:4e:69:08:98:80:8d:32:99:
c4:c1:5d:cd:54:25:72:cb:bd:11:5d:71:7c:e3:54:39:41:c6:
35:44:14:1f:dd:76:65:79:d8:93:1e:04:38:8b:ca:40:7a:2b:
5c:24:bd:9f:3c:34:20:24:09:94:f0:c9:40:82:48:ac:ce:5a:
b6:3b:7f:32:5b:ec:63:63:f4:ed:d7:81:67:c5:44:88:ca:5e:
d5:63:78:03:4f:e9:8f:af:07:44:04:cf:b5:29:08:15:b5:d5:
85:18:69:52:8a:bc:67:7f:be:dc:0e:d0:22:b7:a1:02:aa:f6:
ad:77:65:bc:be:47:04:d1:a3:2a:7f:d9:00:84:3c:ea:53:75:
6a:1f:11:fa:e2:91:ef:9a:19:bc:60:e9:64:26:0a:21:fc:1c:
c6:79:2e:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 17:45:58 2025 by rpki-client