Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/41f7c25a-b912-4a96-81fa-30ff752398df.roa
File: 41f7c25a-b912-4a96-81fa-30ff752398df.roa (raw, json)
Hash identifier: DO3kn+v3s2lmTtXCVQimajpEuq4uO11d5GXWxEA5JxY=
Subject key identifier: 2F:5F:EC:B5:17:AE:ED:06:F3:AE:12:FB:F5:63:BC:97:EF:EF:EA:A4
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 7512CCDA853B7DF1B72A3D48C980D8B1596E1092
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/41f7c25a-b912-4a96-81fa-30ff752398df.roa
Signing time: Sat 01 Jun 2024 00:00:00 +0000
ROA not before: Sat 01 Jun 2024 00:00:00 +0000
ROA not after: Sat 06 Jul 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
75:12:cc:da:85:3b:7d:f1:b7:2a:3d:48:c9:80:d8:b1:59:6e:10:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Jun 1 00:00:00 2024 GMT
Not After : Jul 6 23:59:59 2024 GMT
Subject: serialNumber=4011690f8e5a647b2d6fae18cc2ae947d4ae978ddcabdbdb08f5ba7a1e606206, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:a6:a8:c9:f4:ac:aa:63:cc:7e:c1:11:f7:52:
2b:f0:e4:fe:74:92:4e:c2:05:ae:94:e8:be:b6:a7:
31:dd:4e:d6:09:13:08:2b:b3:82:bf:fc:bd:df:72:
39:0c:61:5a:8d:e0:e9:5c:45:e3:32:22:3a:33:b8:
67:e1:d5:ba:6a:78:04:49:47:6a:84:c5:de:16:9c:
89:0f:0a:b4:43:dc:48:ec:36:e1:9f:42:23:47:ff:
79:ff:f8:63:c3:db:95:4f:a0:e1:e1:c9:7d:33:3c:
bb:b7:b1:f0:f0:54:40:4b:fd:f9:78:51:e1:20:46:
01:41:34:a6:62:56:42:c3:e5:67:f5:c1:a4:07:42:
9b:99:38:9f:00:1e:f8:06:3d:8b:6b:07:8b:36:5d:
8e:a1:54:43:fe:5d:84:34:21:45:5f:af:b4:87:85:
f1:86:d4:57:d8:be:94:93:e7:10:7e:c6:bb:fb:5b:
b0:74:d8:e2:a0:f7:7c:79:e8:c0:bd:d4:ce:4a:f7:
e5:db:d4:25:08:13:36:1f:f6:98:57:0b:26:b8:02:
69:85:a7:d0:b6:e9:a9:20:93:77:46:16:bd:c1:c5:
6b:48:fd:8b:dd:71:ef:11:b4:59:93:11:d5:62:cf:
d2:d1:2b:a3:35:ca:c1:f2:cf:23:24:56:11:74:78:
f6:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:5F:EC:B5:17:AE:ED:06:F3:AE:12:FB:F5:63:BC:97:EF:EF:EA:A4
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/41f7c25a-b912-4a96-81fa-30ff752398df.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
58:64:37:91:6a:63:79:99:21:65:fd:c9:26:2c:19:6d:72:59:
d2:60:61:e5:64:ef:ca:3e:7d:ec:58:51:1d:fc:f7:a2:03:0f:
b6:bb:dc:27:04:aa:4b:a5:15:97:01:1f:dc:8e:93:6e:16:1d:
5f:c6:ce:20:35:22:dd:44:86:8f:7a:86:03:5b:24:91:84:2f:
2d:4e:ad:5e:6f:68:cf:80:f0:03:5a:27:d6:db:f4:64:1c:75:
e9:ce:56:b9:1f:90:97:b4:21:15:64:a8:18:0f:01:f3:41:0c:
17:1f:ae:7c:c8:c7:60:43:2a:6f:ec:78:62:33:07:8b:ee:ff:
33:98:ee:ab:46:f4:26:18:00:d2:5c:c2:09:17:3f:74:f0:b0:
da:d2:3d:93:29:b5:3c:0a:05:4e:03:e5:bc:40:67:58:d3:a7:
7b:08:a4:8a:aa:32:a3:82:3c:7d:4c:51:e6:d2:8e:d1:9d:25:
40:22:3e:15:bf:62:f4:e4:59:e0:6d:33:09:f4:a3:1c:b6:4c:
8f:b6:10:7a:1e:9a:09:9f:b0:c2:64:1b:22:12:f7:fb:1f:9c:
dd:66:8a:9c:76:14:9d:a2:27:c4:ef:ac:0e:41:c1:60:e4:58:
af:ce:fc:5f:7a:de:eb:ba:f9:8a:1f:d1:b4:e0:34:20:c1:2e:
37:54:eb:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 19:09:27 2025 by rpki-client