Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/2ed1a877-ad82-401e-adea-c211082567bc.roa
File: 2ed1a877-ad82-401e-adea-c211082567bc.roa (raw, json)
Hash identifier: kcXScYkFVkbgGIYBocinp4H8y64TriL3zsUc8t04K4k=
Subject key identifier: 15:58:4D:12:43:BC:99:5A:9B:0E:21:24:D2:93:DC:B1:D1:D3:B4:D4
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 4FB818315B993C4175B9D92847D610CAD1D90DB1
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/2ed1a877-ad82-401e-adea-c211082567bc.roa
Signing time: Fri 24 Nov 2023 00:00:00 +0000
ROA not before: Fri 24 Nov 2023 00:00:00 +0000
ROA not after: Fri 29 Dec 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4f:b8:18:31:5b:99:3c:41:75:b9:d9:28:47:d6:10:ca:d1:d9:0d:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Nov 24 00:00:00 2023 GMT
Not After : Dec 29 23:59:59 2023 GMT
Subject: serialNumber=d37c63ab3ab063b76981a5020f7d3e06c59e0fcec148652b33fd27e622febec5, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:f8:fa:ae:c7:d7:b4:a3:70:70:7b:c2:eb:a4:
25:60:90:8a:33:32:a3:81:5b:ec:7b:2b:19:06:41:
44:9b:30:d3:b7:0c:5c:f0:f9:b3:31:16:62:69:bf:
e0:46:46:6b:a1:15:c8:b5:00:29:27:c1:6c:e5:70:
1a:e5:c6:18:8d:c6:82:8f:d6:b1:9b:0c:14:b1:d4:
7e:ea:2b:bc:df:c9:15:97:f4:d9:04:06:30:09:6a:
ec:99:2e:d2:d9:7c:ce:07:f3:52:c7:3c:26:28:e5:
7c:dd:3c:9e:60:1c:08:7b:31:5c:52:36:81:68:a3:
86:1f:ac:07:d6:12:15:f1:62:00:16:5d:90:4d:fd:
47:2b:b1:0e:5c:b1:d8:1c:bf:53:6a:79:5e:18:40:
64:1b:07:50:a8:9f:78:53:c4:79:73:44:d2:c9:3e:
71:8a:a8:68:0c:87:74:ec:f5:b2:5f:05:98:f5:43:
ec:4d:90:2f:36:9c:ee:67:49:2c:1f:de:4d:15:d1:
5b:ae:7d:4b:2b:fb:f4:f6:45:7f:a4:2e:b7:44:d7:
57:a3:54:df:4f:bd:11:ff:8c:11:e3:87:d0:50:20:
e2:67:63:3d:15:39:b0:2d:af:e9:13:64:0c:4d:b8:
b4:0e:bc:90:db:9b:eb:82:4c:98:34:df:ab:aa:c7:
3d:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:58:4D:12:43:BC:99:5A:9B:0E:21:24:D2:93:DC:B1:D1:D3:B4:D4
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/2ed1a877-ad82-401e-adea-c211082567bc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
56:24:43:a1:ba:26:f6:4b:02:f6:e3:4b:8e:56:5c:b1:57:70:
ba:fb:68:df:87:35:6e:be:40:84:8d:92:af:71:a0:54:be:21:
2b:3c:10:8b:94:71:b7:f3:24:51:8e:c0:4f:07:63:ac:37:15:
da:92:2f:1b:f0:9a:59:29:8f:6f:a9:d1:a3:58:db:96:6e:a3:
26:5c:f5:7b:be:23:2d:2c:4a:b3:84:a9:b7:5f:ea:48:1b:a0:
4b:57:b5:8b:7d:b9:a7:f4:9d:63:33:af:1a:93:86:25:17:b6:
58:89:f9:30:06:84:0c:58:c1:21:37:09:f3:ed:2d:f6:70:d5:
63:64:16:53:46:f4:89:fc:8c:b7:bb:bc:aa:22:0a:e5:f6:47:
9b:05:22:3d:fa:43:a1:e5:3c:79:f1:90:3c:2e:5d:2f:e3:b7:
68:82:28:e4:53:d4:60:33:81:90:cf:32:7a:5c:4d:fc:d7:5e:
73:0e:04:a0:d7:cd:dc:47:3b:e0:b1:9a:95:e9:fa:9c:b3:27:
92:c4:ab:0e:87:65:a6:8c:b5:79:76:f2:17:d0:be:2a:da:f5:
17:56:95:e5:f2:53:88:8a:92:a7:3b:04:2e:c0:18:de:97:85:
0a:f1:2f:64:21:09:cc:db:9a:9a:56:97:01:fb:26:ce:04:02:
6f:2d:95:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 00:22:57 2025 by rpki-client