Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/54f0644e-8bfd-40c7-b987-57b57460b527.roa
File: 54f0644e-8bfd-40c7-b987-57b57460b527.roa (raw, json)
Hash identifier: OBXyeBNTdRExG6W9KGBUtv32I6tJqfABjY+Jl1gCV7c=
Subject key identifier: 0D:1C:BD:61:82:DA:0F:5A:04:E1:B8:7A:84:13:C2:48:97:47:8D:BE
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 119FC1EE7E152332F963699854E0D37193679202
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/54f0644e-8bfd-40c7-b987-57b57460b527.roa
Signing time: Fri 31 May 2024 00:00:00 +0000
ROA not before: Fri 31 May 2024 00:00:00 +0000
ROA not after: Fri 05 Jul 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
11:9f:c1:ee:7e:15:23:32:f9:63:69:98:54:e0:d3:71:93:67:92:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: May 31 00:00:00 2024 GMT
Not After : Jul 5 23:59:59 2024 GMT
Subject: serialNumber=c391e14cc3075b52ad9bcb1a1ddee3fedf16bbc02ab5c09cd440cca1d4678550, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:3a:e5:2b:9b:c8:48:95:4b:5a:1c:61:18:89:
13:94:0f:90:e8:3b:42:0b:65:6b:2f:4c:05:1e:c8:
3c:d1:71:17:f9:56:fc:61:b9:75:e2:73:f8:41:27:
70:60:26:08:87:6e:ef:49:d3:16:a4:8d:7d:a8:14:
1b:51:79:5e:0d:b3:e6:2b:69:b5:6e:da:44:39:00:
55:52:b9:63:86:1f:93:cb:c6:2b:1f:15:f3:b5:40:
db:3e:a2:0b:8d:a7:63:1a:db:64:15:d8:a3:9b:ce:
ad:6b:f6:f1:9d:9b:7a:8a:8e:49:b7:00:b9:c9:6a:
a2:55:4f:24:af:1d:a5:32:ce:5a:86:db:4a:e9:75:
fa:8e:42:95:a0:4b:29:a5:cc:b2:e3:49:1a:67:f0:
90:6b:2e:89:f1:74:cf:74:50:f2:82:7e:c6:e9:c4:
6a:0d:a7:25:66:37:7e:c1:95:67:6e:93:e9:1b:6e:
e9:d4:df:05:3e:d5:66:e9:be:cf:a3:1b:cc:c3:e9:
8e:70:fa:7b:5a:02:02:37:7b:16:b3:94:29:5a:ed:
5c:6c:d2:08:88:59:a5:0e:dd:8d:d6:d7:3f:96:4e:
7d:4c:a6:52:5a:e2:ac:af:51:bc:50:78:98:ce:36:
de:f2:01:a4:60:5a:5e:4f:d8:22:60:49:9d:00:b7:
7e:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:1C:BD:61:82:DA:0F:5A:04:E1:B8:7A:84:13:C2:48:97:47:8D:BE
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/54f0644e-8bfd-40c7-b987-57b57460b527.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
0b:3b:c7:7a:41:be:c0:4a:b7:a8:b0:99:c0:eb:40:05:5a:c1:
cd:48:cd:af:57:2a:9e:43:9d:c0:53:e9:84:7c:11:d1:fd:8d:
c4:4d:30:83:78:4c:7d:87:5e:b4:fd:38:c8:64:59:45:4d:8b:
a9:48:ff:f8:26:2f:a7:82:1f:30:8b:0e:26:24:4b:02:fd:bf:
b4:e8:a3:0a:0e:c9:12:56:33:31:ea:73:c2:65:3f:f6:13:30:
c4:20:1e:47:bc:6e:2b:09:43:a9:8d:51:59:df:19:59:09:1a:
7c:4d:0a:b7:78:94:ed:2e:7b:65:51:e6:ff:65:7f:d5:41:7b:
47:06:dd:9a:e8:dc:50:1d:6e:24:f6:63:69:c3:99:ce:38:7c:
af:67:37:7c:da:3a:61:74:75:b2:92:08:9b:99:f2:13:f1:59:
6c:3b:10:6f:0b:b3:4f:bf:48:54:b9:84:49:c4:07:72:74:33:
3d:13:4e:79:9a:9c:85:d4:f5:91:c2:8f:f0:ee:62:3f:dd:f6:
46:f1:f4:42:1f:54:43:4a:66:70:e5:2e:5b:c7:e5:ec:41:95:
f6:f1:92:8a:f9:4b:15:45:70:e4:d5:95:9c:51:e7:66:32:69:
a2:67:91:cd:41:c0:71:d8:68:b2:b7:67:75:2e:72:b2:9e:91:
3c:2c:f1:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 19:24:05 2025 by rpki-client