Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/5f8c11e7-5454-480b-99b7-4355dff0d1ee.roa
File: 5f8c11e7-5454-480b-99b7-4355dff0d1ee.roa (raw, json)
Hash identifier: co0p/wBXoJt/bPi+j+iQrwICacptizN9BVjFXquQvmw=
Subject key identifier: D6:49:3B:62:4B:6A:A4:2E:D1:49:2A:1F:58:D2:77:8C:93:A7:2B:9B
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 17A6363993E8AB3107B3CFEB1989B26E06E0BA5C
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/5f8c11e7-5454-480b-99b7-4355dff0d1ee.roa
Signing time: Sun 28 Jan 2024 00:00:00 +0000
ROA not before: Sun 28 Jan 2024 00:00:00 +0000
ROA not after: Sun 03 Mar 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
17:a6:36:39:93:e8:ab:31:07:b3:cf:eb:19:89:b2:6e:06:e0:ba:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Jan 28 00:00:00 2024 GMT
Not After : Mar 3 23:59:59 2024 GMT
Subject: serialNumber=78aa4b311007cb4381829e29f0687d4d789acb4153ebde11fe242ffcf1269943, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:7b:3b:ad:cb:dc:9b:2e:10:cb:d2:cd:4c:12:
a1:24:67:ae:e8:05:64:ca:4c:d9:9c:eb:59:e9:7e:
35:47:0a:0f:71:d6:19:66:5c:35:87:80:ef:92:a1:
28:2c:59:46:27:37:b1:8d:b8:d3:1d:fd:a7:4c:23:
fd:53:75:2a:62:d8:bc:45:7c:90:55:e4:24:63:6d:
12:2f:41:36:ff:43:a3:cc:e4:1b:65:5b:5e:fd:8a:
2a:15:fd:16:fb:4b:f9:3a:7d:ca:14:9f:be:55:e1:
36:4f:63:25:41:79:8d:27:2c:1a:92:64:71:a1:6f:
d9:26:05:b3:62:a8:20:e5:2f:0a:37:23:7f:d6:33:
12:e0:96:f3:6c:cb:db:90:5a:81:d5:be:f6:92:d2:
7c:b7:2d:ac:9f:3c:43:ad:84:83:e0:f5:ab:52:e8:
81:9f:e1:9a:58:7b:b4:4e:7a:61:0a:f5:26:bc:4c:
c1:8e:0b:c6:27:1d:ae:8f:57:56:a2:ce:2e:b9:d1:
d9:e8:c0:63:a8:48:f9:7a:b6:c1:7b:ea:8b:b3:5a:
4b:86:7a:34:12:ec:20:3f:0c:f2:39:6b:75:28:c4:
12:6c:1a:ed:d2:48:90:65:fc:45:34:b8:c9:52:92:
de:87:7f:5f:80:95:ba:8b:14:7e:15:4f:b8:a6:49:
c5:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:49:3B:62:4B:6A:A4:2E:D1:49:2A:1F:58:D2:77:8C:93:A7:2B:9B
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/5f8c11e7-5454-480b-99b7-4355dff0d1ee.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
0e:0a:fb:f9:05:45:b6:80:84:aa:06:f8:8b:47:05:ac:09:a3:
c2:17:15:d1:b6:d5:3f:d2:c2:78:fb:d2:60:3b:ba:91:a7:ea:
ba:ee:20:2a:c0:06:b3:28:99:bb:55:59:c2:a1:c7:97:8b:65:
36:d1:e4:cf:7a:42:af:88:f1:85:1f:03:6e:64:9e:27:18:1d:
be:9d:22:82:2b:44:34:83:17:f0:3d:e4:32:ec:8e:4e:f3:37:
65:6c:ed:78:b6:a4:18:34:b3:f1:f5:e5:65:a9:ba:1d:5f:d5:
b1:a2:ba:31:93:7f:7a:ef:9b:36:48:0f:d1:23:4a:d4:b1:6f:
fc:c0:c1:8c:b7:8d:67:63:61:e2:93:35:2c:46:28:88:df:37:
f7:eb:d2:85:a3:f3:39:7f:e5:de:90:52:9a:42:24:85:37:9e:
60:fb:fc:dc:f8:d2:d4:29:35:fa:2e:26:9e:a6:14:d5:f5:08:
9d:39:1d:2d:d1:56:66:b3:e8:0b:c8:6c:32:c5:7b:03:3e:d7:
56:ef:5d:5d:18:9d:cc:b6:a5:82:24:05:97:3e:5f:5a:bb:58:
6d:5d:9c:4a:d5:e7:c6:31:fc:ff:e5:49:ef:29:2e:e6:fa:da:
e3:64:9a:5d:53:0b:30:90:18:52:59:93:8a:d2:20:e1:34:61:
1a:6a:cc:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 16:12:46 2025 by rpki-client