Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/5ff31306-d246-487c-8e6e-70a163763001.roa
File: 5ff31306-d246-487c-8e6e-70a163763001.roa (raw, json)
Hash identifier: YinXwyufNpkduLNQ4uUk7Szrvq8kfHaoWjak00MRFpM=
Subject key identifier: D5:48:97:6A:03:BF:00:CD:3F:50:30:BC:12:29:00:D1:DC:E1:D3:12
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 0C152FC200CABF88B120FA2F1E676EAFB897E9CC
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/5ff31306-d246-487c-8e6e-70a163763001.roa
Signing time: Sun 02 Jun 2024 00:00:00 +0000
ROA not before: Sun 02 Jun 2024 00:00:00 +0000
ROA not after: Sun 07 Jul 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0c:15:2f:c2:00:ca:bf:88:b1:20:fa:2f:1e:67:6e:af:b8:97:e9:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Jun 2 00:00:00 2024 GMT
Not After : Jul 7 23:59:59 2024 GMT
Subject: serialNumber=cca07992abcbc7c6d837e57c780a2a95774672cafa642960f5f5e67640b31733, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:95:10:ea:cc:f1:14:57:9d:a9:3c:08:83:2a:
eb:ad:69:d4:11:98:76:8f:d0:cc:42:af:fa:82:f5:
fc:3d:81:51:a0:f7:28:10:38:8b:81:09:2b:52:02:
71:6c:b9:fe:de:05:a5:7b:48:49:76:97:06:4b:c5:
fb:91:09:93:19:5d:d9:a9:b8:9d:ab:1b:e6:3b:ef:
3c:2b:27:5c:28:d1:6f:dc:1c:af:51:a0:cd:27:ec:
30:70:94:83:a9:77:d7:4d:81:f7:0e:18:3d:a5:8d:
54:48:61:af:cd:77:bb:a4:85:b7:50:33:4e:ab:39:
68:fd:4e:06:b7:c2:53:3f:d0:d4:74:bf:0e:86:1d:
4f:29:54:f7:a9:57:cd:54:3f:88:f5:f2:a8:73:a9:
b9:eb:b4:fb:70:2c:41:bc:8e:1d:66:65:d2:05:02:
58:25:58:dc:8a:95:be:e8:4d:15:c1:db:a1:d0:8d:
32:bb:7a:c1:95:30:fd:2c:e6:92:5d:b7:bc:f4:47:
0f:fc:14:8e:84:86:63:a7:2a:63:67:df:e1:f9:7c:
16:89:23:c8:4a:27:b9:ea:ce:db:87:45:86:9a:08:
71:d5:77:ae:f9:45:ae:8c:4d:6c:f6:3e:42:f0:ea:
6f:16:1a:3e:bd:52:ae:86:ae:18:c3:2c:6c:62:87:
a4:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:48:97:6A:03:BF:00:CD:3F:50:30:BC:12:29:00:D1:DC:E1:D3:12
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/5ff31306-d246-487c-8e6e-70a163763001.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
74:d4:49:1c:0c:1b:ce:bb:e1:68:2e:5e:a2:5a:35:4a:92:41:
0a:60:2a:c2:6b:1d:1e:48:b5:9c:ed:49:7a:66:c4:29:a7:d5:
a1:ba:87:05:2c:17:c3:60:c8:0b:88:fb:63:c8:7f:b6:ec:85:
1f:7b:68:8b:54:7a:24:24:a3:06:8c:12:2c:7f:32:59:14:9b:
18:f6:d7:81:89:bb:bd:b3:06:8a:25:ee:fd:12:0e:49:4f:01:
b5:25:80:d6:98:96:a8:d2:39:ed:01:64:e5:ac:30:2d:07:90:
32:b9:ec:42:44:9c:9b:2e:55:d7:33:de:09:99:ec:2e:28:9d:
79:5f:49:47:e6:5a:2c:49:94:e3:01:4e:aa:52:8a:21:bb:af:
b1:06:e9:1b:65:ab:0d:ea:34:66:bc:1e:5b:f8:46:05:a9:8d:
f7:7e:45:94:9d:8d:1d:8c:60:17:14:96:b7:07:f4:4a:ff:d2:
a6:1b:36:18:eb:87:82:63:54:c3:45:23:83:7a:14:6f:f7:b7:
98:b9:d1:d8:ee:4b:98:99:1b:2c:59:2c:bc:82:66:0e:d7:1b:
e8:87:13:c2:e1:c8:d1:67:fa:4b:9f:68:e7:68:46:0b:30:81:
6b:61:c3:25:d0:5c:5a:2c:2b:65:e8:91:7b:d6:bd:01:8c:86:
8a:0d:da:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 16:37:37 2025 by rpki-client