Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/52ac633e-e198-40c2-8c5a-fa9f434c35ac.roa
File: 52ac633e-e198-40c2-8c5a-fa9f434c35ac.roa (raw, json)
Hash identifier: Je4EOpFpGoWrtYj73QkvyjAl9Vm5rXijE5+/ua/kOVU=
Subject key identifier: 1F:61:D7:7B:BD:8F:BF:07:84:09:12:DC:0B:97:D8:41:0B:AD:72:4C
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 4D4A004AD81B16356DEE7435D71F929FC482C49A
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/52ac633e-e198-40c2-8c5a-fa9f434c35ac.roa
Signing time: Mon 29 Jul 2024 00:00:00 +0000
ROA not before: Mon 29 Jul 2024 00:00:00 +0000
ROA not after: Mon 02 Sep 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4d:4a:00:4a:d8:1b:16:35:6d:ee:74:35:d7:1f:92:9f:c4:82:c4:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Jul 29 00:00:00 2024 GMT
Not After : Sep 2 23:59:59 2024 GMT
Subject: serialNumber=858a9d6464465609abed1db905bbe8227f464355052de9f40e0784c362648639, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:47:c1:42:08:3a:d4:b2:1f:87:a1:d0:f5:d3:
a0:14:7a:af:88:4c:37:35:3c:1d:6a:41:52:2b:ff:
ee:6e:cb:15:39:4f:e4:38:8b:06:6b:e3:17:76:b5:
cc:85:ef:ef:fc:58:c7:d9:9b:6f:27:6f:fc:87:9d:
61:3f:98:34:44:13:59:a7:44:30:96:1b:d8:40:d2:
28:3e:ef:6d:19:bd:39:c6:45:79:92:f8:d7:59:d5:
11:fb:6b:aa:53:2b:de:ce:ba:b3:a2:ca:fc:e7:4b:
a6:11:32:77:87:bc:0f:22:35:64:da:24:15:ff:02:
29:60:3f:f6:0b:37:08:df:ab:48:b2:98:dc:1f:99:
26:94:b7:3e:9a:df:b4:f3:35:03:1a:17:ca:8a:68:
ee:31:5f:d7:7e:61:c7:aa:a2:73:57:59:7b:d9:37:
27:ed:04:d3:49:c9:f7:50:c1:f0:12:01:8b:31:b1:
5f:32:fe:ad:26:b4:58:24:ad:24:a9:43:9f:33:4d:
45:ac:05:3f:33:d3:3e:79:94:cb:54:af:93:c5:ba:
07:9c:c9:a4:ac:41:e9:99:d8:19:85:d4:23:63:a1:
6e:ea:ac:7f:40:2e:a1:ab:1f:92:51:79:a7:6d:e7:
f1:92:0b:2a:b5:9d:10:d5:de:9c:7b:67:de:71:f0:
a9:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:61:D7:7B:BD:8F:BF:07:84:09:12:DC:0B:97:D8:41:0B:AD:72:4C
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/52ac633e-e198-40c2-8c5a-fa9f434c35ac.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
89:d7:c7:80:d0:0d:04:a3:e8:40:ea:4c:d6:5f:c3:52:e8:b6:
d8:3a:fb:3a:1d:e9:cf:d7:85:7d:a1:bc:0b:6c:0d:c8:d1:0c:
64:bf:31:57:b7:40:aa:9c:e0:14:ab:83:dd:5f:85:66:3d:0a:
90:68:25:ab:ef:1f:3f:13:6e:39:64:19:a8:71:1e:e5:48:e6:
73:d2:73:a4:c6:cc:cf:17:fa:9b:90:07:48:f4:28:ca:ae:08:
3e:3e:f8:ce:11:f2:84:c7:a1:32:6e:d9:cb:f0:0a:ae:3b:26:
d6:62:d5:68:d7:8c:15:9e:dd:09:5b:c0:d7:99:b9:83:48:d8:
9a:67:87:86:9a:39:00:45:8a:14:41:fc:3f:c1:c8:c5:77:a5:
78:36:94:b5:bd:c8:ca:8a:5f:b0:ed:54:fb:79:88:9f:23:dd:
b7:a1:96:12:ba:fe:0d:3c:65:27:f8:a1:ee:08:de:c6:99:a3:
04:78:9a:73:88:25:a8:9a:d4:93:43:a4:c2:e0:1a:9e:90:90:
32:09:60:84:d6:93:5b:1a:80:ea:4b:f1:32:be:b9:3d:e7:d7:
24:6f:1e:14:53:1d:1e:ae:56:b7:3b:3f:fc:f5:19:db:8e:8a:
a3:ca:7d:d1:70:f6:cb:62:93:fd:a4:e1:87:11:6c:1f:f7:08:
1a:9c:cb:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 19:15:59 2025 by rpki-client