Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/74190130-d5cb-457e-b596-5ad123f75d37.roa
File: 74190130-d5cb-457e-b596-5ad123f75d37.roa (raw, json)
Hash identifier: eiIDCPUUQkNTCzjoibOtBw6D3KSLYG4hVYfxZnV8RAk=
Subject key identifier: DE:2A:1A:63:63:9F:EE:7D:92:17:B7:73:4B:52:43:87:F2:E3:68:3F
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 54AC67D0BD0586E34556B5A983FB70DDA74635
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/74190130-d5cb-457e-b596-5ad123f75d37.roa
Signing time: Sat 29 Jul 2023 00:00:00 +0000
ROA not before: Sat 29 Jul 2023 00:00:00 +0000
ROA not after: Sat 02 Sep 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
54:ac:67:d0:bd:05:86:e3:45:56:b5:a9:83:fb:70:dd:a7:46:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Jul 29 00:00:00 2023 GMT
Not After : Sep 2 23:59:59 2023 GMT
Subject: serialNumber=2842dd40165e0661aaf728045e83968d0b4e271629c5809c8d03fe9ce80c75f2, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:51:81:af:d6:08:1d:ec:ae:39:fa:c3:80:fe:
c2:6a:26:f3:d0:a5:9d:03:48:58:28:bc:65:cd:0e:
6d:25:60:b1:74:07:83:a5:c6:bb:65:e8:75:a4:c7:
31:bf:be:63:68:25:d7:06:5e:f8:c5:e2:2e:54:ca:
d2:06:61:3e:95:b5:17:52:40:81:25:be:45:3c:5a:
04:41:06:0f:e8:f5:55:aa:29:d6:42:70:5f:d7:d1:
52:5f:17:80:b7:06:23:8b:05:62:81:80:af:ce:4a:
62:68:9d:f4:0d:5c:ca:bc:a8:ba:4e:57:6d:23:ae:
74:cf:81:6e:a7:1e:6b:7a:f4:be:96:61:8f:5d:12:
ec:95:7b:14:93:d6:6f:00:8e:2a:a0:45:1e:ec:b2:
04:dc:5c:9c:cb:1c:af:79:eb:24:0e:3a:d2:89:f7:
ee:15:13:b3:2d:89:ff:9b:66:15:07:60:3f:c4:79:
9d:c9:0d:51:75:18:91:e7:f5:fb:98:45:5e:a4:5d:
85:5e:56:25:82:51:7c:12:c3:b8:f8:3e:98:f9:5e:
dd:54:1f:91:36:27:02:0f:1f:e7:39:e8:5b:d2:cb:
1c:6a:1a:4c:e8:f8:0f:62:f2:48:5c:18:81:bd:1e:
06:11:ff:be:e6:b0:59:a0:97:3c:c3:44:9f:91:c2:
c7:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:2A:1A:63:63:9F:EE:7D:92:17:B7:73:4B:52:43:87:F2:E3:68:3F
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/74190130-d5cb-457e-b596-5ad123f75d37.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
4a:b9:ac:e4:f0:c6:d7:97:fb:c9:48:94:82:19:94:29:c1:4e:
a4:a4:0a:2a:74:3e:d8:93:af:55:59:de:5a:b4:b0:a8:28:5e:
d8:af:b6:3c:13:9e:c2:57:71:31:1b:c2:8f:28:69:35:95:39:
56:1f:5a:b2:4a:4b:a9:da:27:3f:7b:c2:20:90:c7:73:2e:a2:
d8:5f:7c:0f:c1:1c:24:e4:f0:c3:2e:cf:ff:d5:54:dc:00:a6:
2f:65:cd:1c:fa:9e:6b:ad:30:c1:9e:fe:64:61:10:44:1c:55:
01:f0:6c:1c:f3:90:d3:82:23:bb:2a:ed:b0:50:8e:22:e8:bd:
38:f4:3f:1d:d1:86:eb:a4:2d:7f:17:33:f0:44:19:b1:5d:55:
09:ee:07:64:e8:6a:3a:54:79:4b:7c:87:1f:7e:32:13:ef:54:
98:6f:5e:a2:0a:5c:8d:89:15:1d:d5:25:3d:dc:4c:25:ec:94:
62:ad:dd:5f:38:31:15:f9:dd:cc:89:50:a6:b8:c3:be:b0:15:
c9:72:23:4d:08:bd:9a:25:88:00:33:d6:07:5f:19:50:cd:39:
b8:c2:cd:02:20:27:3d:1f:93:b9:8b:2c:f2:c3:05:76:17:7c:
48:e3:d2:07:2c:d4:7f:f6:a3:18:44:1e:8c:59:9d:d3:90:1b:
ae:47:2f:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 16:31:25 2025 by rpki-client