Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/3cc02145-7181-47be-9051-ba351bef5a1c.roa
File: 3cc02145-7181-47be-9051-ba351bef5a1c.roa (raw, json)
Hash identifier: r03OziJISMadfjVjDIAUDiBrjKKFHg+uA4TWhZutEnw=
Subject key identifier: 4B:15:E8:A8:ED:0B:7D:B4:B5:01:F4:DA:47:EC:15:96:03:68:15:67
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 7E866DD137E44DC8BDEF77CD432380223F623987
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/3cc02145-7181-47be-9051-ba351bef5a1c.roa
Signing time: Sat 23 Nov 2024 00:00:00 +0000
ROA not before: Sat 23 Nov 2024 00:00:00 +0000
ROA not after: Sat 28 Dec 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7e:86:6d:d1:37:e4:4d:c8:bd:ef:77:cd:43:23:80:22:3f:62:39:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Nov 23 00:00:00 2024 GMT
Not After : Dec 28 23:59:59 2024 GMT
Subject: serialNumber=82062176126ec0beef136221b1665e2fd434a4eefdc8053c3366e2947d45c5d8, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:df:f6:b6:7c:84:d4:0c:31:45:2b:f3:d5:44:
7e:e2:b2:99:7b:09:3a:fa:b7:33:4e:62:96:ac:ca:
0b:1a:67:76:e8:99:38:1c:ba:72:fd:e4:f5:60:40:
54:09:a5:0c:fe:2a:ca:12:3c:b6:85:3d:10:65:70:
22:88:70:70:38:84:23:ba:7e:05:89:1a:36:e5:41:
fb:21:4f:e6:fb:97:4e:6d:01:da:7c:70:5c:a7:64:
35:38:3b:66:73:fc:a0:1e:8d:48:d3:76:f8:5d:72:
f5:22:2e:61:88:57:fc:7c:df:8b:59:38:22:53:46:
0a:d6:cd:32:7b:fd:ec:08:e0:53:5e:ea:ef:30:bd:
33:30:a6:6f:91:12:39:f3:a5:56:4c:f8:b7:99:4d:
3e:a6:9e:17:17:bd:4c:ea:85:f0:a4:45:f6:a6:2b:
fc:3a:8f:e0:08:84:9c:5d:91:f1:45:f0:29:ee:75:
4c:24:c5:21:e9:00:23:0e:58:37:dd:b0:d8:a3:50:
67:11:df:ed:e7:a9:4c:e4:eb:6a:6f:17:03:4f:ff:
d0:d8:d6:b9:5c:5f:db:b0:54:65:58:32:5f:48:85:
30:a8:82:40:22:b8:75:50:40:fa:a5:6f:9a:ff:dc:
d9:ae:31:03:4a:fa:0b:f4:af:6c:58:b8:08:2f:c0:
ec:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:15:E8:A8:ED:0B:7D:B4:B5:01:F4:DA:47:EC:15:96:03:68:15:67
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/3cc02145-7181-47be-9051-ba351bef5a1c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
4b:b9:6f:07:f6:a7:20:f7:99:ce:8b:05:48:ef:4f:fb:ef:0b:
5c:07:b7:a5:e5:35:ac:82:80:35:b9:db:cf:c0:3b:12:96:96:
38:95:68:d5:7e:17:81:7a:35:c8:3a:d1:0b:94:3d:ba:ea:be:
5d:76:89:51:aa:5e:7d:76:bb:6c:7a:1b:87:7f:6b:97:ae:76:
fe:a4:09:64:49:2a:34:61:07:12:f2:7f:ab:07:93:15:e9:12:
19:7e:cb:c5:f5:72:86:bd:3b:5a:cc:64:c7:60:78:c5:70:1a:
a9:0c:04:09:fe:24:cc:ff:66:e2:1e:82:67:d5:22:8b:9c:25:
d5:77:37:dc:17:a4:d5:b3:75:7d:73:99:a4:80:ea:cb:fc:d5:
07:3b:a3:f2:a5:3c:f7:bd:9f:f7:13:19:95:1b:7c:c7:bc:62:
59:dc:84:2c:24:c6:00:d4:9a:33:9f:aa:e0:e9:a7:1a:74:92:
1f:44:fe:a4:ef:3c:0e:b2:87:2b:e0:89:f0:93:ca:5b:6d:47:
60:56:a9:6c:8a:77:31:14:77:3a:42:01:25:76:36:1a:12:3c:
af:41:0a:f1:3a:9c:11:76:11:fd:df:07:01:c6:1b:f2:f6:b3:
3f:5e:59:9a:eb:9a:1c:59:46:19:e5:c4:a0:d0:4c:e6:60:10:
4d:db:da:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 16:31:12 2025 by rpki-client