Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/6c5c6466-7c68-4615-817d-3f2ff00d1a0f.roa
File: 6c5c6466-7c68-4615-817d-3f2ff00d1a0f.roa (raw, json)
Hash identifier: UA7UfjnRd71lcxBT5qmmSDLA8jJgercDtv/S1XD9oxA=
Subject key identifier: AE:9F:D5:19:9F:6E:91:AD:6D:57:CE:6C:0F:84:2B:30:F5:BC:D8:6D
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 5AA2E144B57CBD80A8486C2E25E0F1CA8836EBC2
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/6c5c6466-7c68-4615-817d-3f2ff00d1a0f.roa
Signing time: Sat 15 Jun 2024 00:00:00 +0000
ROA not before: Sat 15 Jun 2024 00:00:00 +0000
ROA not after: Sat 20 Jul 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5a:a2:e1:44:b5:7c:bd:80:a8:48:6c:2e:25:e0:f1:ca:88:36:eb:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Jun 15 00:00:00 2024 GMT
Not After : Jul 20 23:59:59 2024 GMT
Subject: serialNumber=2d25d43050604bd7660ad883b5c018b3f6a29da523a68cff25ca9e2845ab109e, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:78:50:08:91:4c:cb:df:3c:0d:a9:1e:e6:6e:
8b:7b:25:ac:5f:38:67:af:97:4d:9c:52:5f:af:bc:
c8:15:21:1e:d4:b4:d4:17:b8:55:de:d8:0d:1e:27:
69:fe:36:68:de:3a:c5:d3:7e:fc:f9:96:ce:d8:ce:
35:b6:5f:3d:a9:cc:86:59:b9:5a:f2:87:5d:55:87:
77:04:c9:a0:42:d6:bd:21:81:95:fd:d0:7d:3a:cc:
60:08:bd:02:03:f4:44:75:c6:f1:be:ba:ec:45:ef:
5d:b8:95:01:9c:25:9e:af:13:b9:1f:59:29:1f:21:
89:e1:12:e2:80:45:61:4a:a3:6b:33:b2:bd:de:a5:
55:cf:97:02:a5:d6:fc:94:61:c7:d3:95:f5:1d:7c:
57:41:b4:34:71:05:d8:4f:f4:62:ef:8d:be:a2:14:
4b:78:e3:54:ba:d4:58:81:e2:48:1c:93:5e:a1:4a:
33:2b:40:f2:4c:81:fe:63:82:2c:6c:0c:a5:11:ee:
c0:23:7f:1e:4d:f3:8c:1f:f1:b7:9d:81:db:19:c8:
38:f3:21:9b:97:6a:56:14:8f:72:9a:ad:19:90:a0:
26:fb:f9:1a:18:e1:b8:d7:fa:1a:af:51:c6:6a:7c:
df:4e:c0:36:4f:24:dc:c1:99:78:12:0a:b2:b9:18:
e1:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:9F:D5:19:9F:6E:91:AD:6D:57:CE:6C:0F:84:2B:30:F5:BC:D8:6D
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/6c5c6466-7c68-4615-817d-3f2ff00d1a0f.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
4f:16:4b:01:45:40:87:3b:b2:2e:ee:00:3b:b3:43:47:da:1d:
da:8d:2b:8b:14:5d:69:41:8c:06:06:fb:e0:5a:34:43:dd:64:
88:df:a3:98:a4:97:1f:e7:60:04:95:b5:6f:f7:69:1d:58:6e:
74:dd:e3:55:cf:4d:20:07:3f:1e:8a:e6:f3:c8:55:a6:fa:9a:
85:e9:3f:d0:92:1f:e3:e1:1d:cd:fd:e5:de:ef:62:6c:45:ec:
65:cb:f5:82:c9:9d:76:71:87:99:c5:78:13:8b:39:5e:84:ec:
c1:7f:0e:61:de:ad:e2:8f:8f:ff:cb:9e:46:c0:11:a6:ca:be:
4b:66:85:00:8c:ff:b0:d9:93:02:4c:0b:1e:cd:09:07:5f:6c:
12:68:0f:74:39:ff:8b:84:ef:24:ca:0e:36:bf:84:93:7e:94:
10:fa:de:63:63:d6:42:4d:7b:03:c7:46:b7:8e:98:41:25:1c:
6d:da:ec:00:6b:05:82:e0:b3:0f:50:3d:07:a0:09:7d:ad:b1:
be:56:f1:90:8f:ad:d6:98:b5:74:93:08:85:e2:17:5c:9c:1c:
7d:50:d2:3d:ae:98:02:c1:37:3c:e9:ad:6a:af:08:7b:0e:ed:
90:58:e6:ad:b6:6f:fe:ea:c1:01:1a:69:8e:f8:f2:91:37:38:
ad:45:c2:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 19:07:29 2025 by rpki-client