Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/20d06963-461f-4747-aa7d-4bd4bfac416e.roa
File: 20d06963-461f-4747-aa7d-4bd4bfac416e.roa (raw, json)
Hash identifier: HHLCZmBIHm2o2cSNJkIcJxGz3wp1sXujHLMgRl1z1Io=
Subject key identifier: 51:24:8C:7F:C0:F3:EE:75:5E:EB:69:F6:CF:AF:68:D9:64:13:00:E1
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 2AE6F73A6F276C797A1FE43AEF14EE3DACAE4B75
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/20d06963-461f-4747-aa7d-4bd4bfac416e.roa
Signing time: Sat 03 Aug 2024 00:00:00 +0000
ROA not before: Sat 03 Aug 2024 00:00:00 +0000
ROA not after: Sat 07 Sep 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2a:e6:f7:3a:6f:27:6c:79:7a:1f:e4:3a:ef:14:ee:3d:ac:ae:4b:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Aug 3 00:00:00 2024 GMT
Not After : Sep 7 23:59:59 2024 GMT
Subject: serialNumber=476c3a85b466c6060d8dd19fca0719dee7ffa9cd0addcc0a6f1eab30b9477a54, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:09:84:ce:0f:b6:85:d4:f7:70:f3:59:62:15:
d9:e9:97:07:cd:c6:ce:4f:bc:9c:e7:06:b0:fb:fa:
4d:84:2b:ad:41:95:86:ff:cd:52:ce:12:6d:c6:59:
46:0f:23:9a:cd:35:d4:a4:06:88:ae:c5:e7:89:0d:
21:d4:f7:c9:fe:75:e7:cb:fa:5c:27:57:22:aa:65:
b4:83:0b:d2:4a:80:0d:e0:2d:16:37:86:5d:c2:44:
c1:bd:10:d0:10:6e:4d:4d:02:1c:da:9b:25:2a:a3:
8f:63:b2:63:e9:61:27:b1:a6:ef:ad:5c:99:60:5a:
4d:d6:3f:81:96:ec:47:20:43:bf:72:28:3a:22:d5:
0a:32:10:66:2c:e9:c2:c1:09:df:78:a2:e2:c1:eb:
41:00:03:ab:96:ca:c9:b6:5a:e7:e9:e3:05:e5:37:
11:bb:4a:e2:76:df:67:16:99:f5:78:b4:01:3b:ba:
00:7f:fc:d4:08:4e:d1:56:a7:a8:45:e4:7b:f2:c1:
02:22:6c:dc:10:a1:b0:aa:96:da:2b:80:31:6a:58:
37:74:82:b6:da:dc:f5:06:fb:34:50:97:7c:fe:37:
e4:a1:5f:3d:f4:d4:c0:dd:eb:96:21:0a:92:4e:7e:
71:ba:6b:de:d1:fb:02:44:a6:32:b8:74:f7:96:76:
24:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:24:8C:7F:C0:F3:EE:75:5E:EB:69:F6:CF:AF:68:D9:64:13:00:E1
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/20d06963-461f-4747-aa7d-4bd4bfac416e.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
9a:97:b2:1d:7d:df:3d:1c:90:5f:83:50:8e:b0:4a:91:d5:5c:
40:3e:c0:13:95:38:c6:ab:42:57:8f:f3:53:28:f6:ed:1c:73:
1e:4a:19:37:ed:88:fb:d0:7f:b5:a8:c1:ff:91:df:12:53:17:
53:ef:cf:13:0e:b2:dc:5a:7d:07:cf:4c:29:6d:47:52:8f:b3:
45:d0:eb:93:2e:a8:8e:47:38:73:57:cb:10:c5:66:41:19:72:
72:d6:67:f8:40:14:a9:30:6c:4a:a5:85:3a:5d:30:36:c9:64:
d6:3d:28:18:28:d7:35:ad:7e:99:4f:de:3e:43:ab:f1:5f:34:
90:f6:d5:f9:e6:8c:2c:60:c4:7b:09:69:58:79:fc:db:e7:cc:
2e:34:cd:9b:7b:c0:66:33:e5:24:92:83:86:51:a2:4d:78:02:
d4:04:ed:bf:35:43:32:03:a6:94:b1:9c:f5:29:76:2d:77:79:
bd:68:f7:0f:ef:83:06:9f:e7:f5:95:ca:77:e5:b5:72:97:b7:
8d:65:15:87:92:7c:5b:2a:3a:47:c9:95:df:34:50:60:52:f6:
f0:d1:e4:83:7f:7d:32:c5:66:02:25:f3:5f:1b:e4:9c:fb:a4:
49:bd:3b:33:76:ba:e6:fe:60:18:5f:51:0e:ac:b7:b1:ce:56:
6f:38:6d:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 20:52:28 2025 by rpki-client