Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/216ba649-02e3-4ae8-be42-85080ff8ab2c.roa
File: 216ba649-02e3-4ae8-be42-85080ff8ab2c.roa (raw, json)
Hash identifier: Q480mCYGYHFy0GFsqb++2FttvF5XgksxXTzhdotFfrI=
Subject key identifier: 3B:C6:AC:73:DC:E0:23:EF:65:9C:BA:0C:71:93:3B:6A:C0:D7:6F:8F
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 257F7BC4C6A9AA6E2DB0E5E7586F9163E426BF80
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/216ba649-02e3-4ae8-be42-85080ff8ab2c.roa
Signing time: Fri 10 Jan 2025 00:00:00 +0000
ROA not before: Fri 10 Jan 2025 00:00:00 +0000
ROA not after: Fri 14 Feb 2025 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
25:7f:7b:c4:c6:a9:aa:6e:2d:b0:e5:e7:58:6f:91:63:e4:26:bf:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Jan 10 00:00:00 2025 GMT
Not After : Feb 14 23:59:59 2025 GMT
Subject: serialNumber=92cfad2850b95e313bf297c884ab8eecf6212d33fbd64dc92106e8675237e236, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:db:77:7f:4d:c1:27:f4:db:94:9b:1e:14:86:
75:e8:fa:d5:16:00:f9:6b:f4:75:9c:0a:68:25:54:
3a:5f:c8:86:ab:37:b4:41:09:00:d7:30:4d:b9:ac:
57:b2:2d:c0:7c:d9:15:62:4f:a1:21:47:06:d7:2b:
7b:92:5d:96:40:00:e1:61:f2:58:8c:18:53:20:2a:
59:a7:92:9c:fb:d6:01:87:bc:8c:4d:5d:d0:87:56:
99:a8:2d:cd:e0:da:33:a9:ee:d1:28:31:29:74:9d:
56:d0:6a:8b:92:e3:6c:12:3c:4d:a7:0f:35:f2:f9:
d9:21:92:50:81:45:ad:08:d6:dd:b7:81:2d:fe:6b:
a6:1d:b2:81:d3:63:16:7d:09:a1:24:72:79:96:f8:
f8:3f:fb:85:7b:74:59:32:f7:85:93:7b:50:16:cd:
22:db:7a:f2:58:c5:b9:0f:4e:78:84:6f:86:fa:fb:
cb:46:71:49:c8:23:e1:3b:04:ca:8f:82:81:ac:88:
79:55:74:64:83:24:24:96:f3:ee:f9:81:3f:79:bc:
d1:04:b1:c6:d2:f6:42:2d:cf:ac:f9:4c:ef:61:4f:
22:f6:9d:bb:0b:9d:f4:61:f1:10:ad:4c:35:09:0d:
a1:ad:a8:f9:90:bf:5d:5c:1f:5f:13:28:16:e5:5e:
86:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:C6:AC:73:DC:E0:23:EF:65:9C:BA:0C:71:93:3B:6A:C0:D7:6F:8F
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/216ba649-02e3-4ae8-be42-85080ff8ab2c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
8a:8b:57:b3:3c:25:4c:ae:d0:40:a9:d2:f5:da:59:5e:9e:88:
90:ab:e1:d5:c7:64:9f:dd:69:3b:d6:e0:c7:e8:0c:2a:0c:84:
4f:de:61:87:f2:b7:0e:f4:dd:6c:c9:84:b9:51:37:9a:37:b5:
3a:10:18:22:19:4e:17:d8:ab:ab:17:73:b7:66:59:51:af:bf:
5e:17:f0:d2:4c:32:37:62:0a:21:ee:12:5a:00:b4:98:f3:75:
53:b7:11:24:dc:01:d7:3f:49:de:00:c8:81:7b:40:1e:65:0b:
b2:88:7d:33:94:e9:c4:e2:09:f4:20:96:db:f6:71:e5:98:af:
64:3b:3d:fc:fe:88:db:03:f9:5a:ae:7e:33:7d:62:2b:dd:7d:
78:19:41:2b:54:9b:41:9f:7f:22:a9:46:52:4f:e0:70:e2:48:
36:8a:04:60:f1:3f:07:31:35:f5:f3:c9:4b:e1:94:64:35:48:
c4:57:ba:a1:9a:be:7f:d9:27:d8:d6:d4:23:27:23:69:2d:21:
f8:a6:35:eb:05:1e:bd:c1:58:fd:aa:ae:fd:e9:e6:69:f5:77:
9a:0d:00:cd:63:12:4e:72:4a:bd:3a:bc:a5:a2:08:cf:d6:70:
df:4a:9e:12:34:7b:b2:da:90:2f:8e:97:d7:c8:6d:d0:8a:96:
3b:65:8d:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 16:11:35 2025 by rpki-client