Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/74517011-8820-40c0-9156-fda0a74f37c3.roa
File: 74517011-8820-40c0-9156-fda0a74f37c3.roa (raw, json)
Hash identifier: cXFjskFB/ToCUWhV5nXEeI1dFCvNwT5G2x4Werd3icc=
Subject key identifier: 16:31:62:86:00:B4:4F:BD:BB:53:E5:CC:8A:12:E3:5A:F0:67:FB:F0
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 415CEC8B4C06C773538A21F1722B0E8721C31D7E
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/74517011-8820-40c0-9156-fda0a74f37c3.roa
Signing time: Wed 04 Dec 2024 00:00:00 +0000
ROA not before: Wed 04 Dec 2024 00:00:00 +0000
ROA not after: Wed 08 Jan 2025 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
41:5c:ec:8b:4c:06:c7:73:53:8a:21:f1:72:2b:0e:87:21:c3:1d:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Dec 4 00:00:00 2024 GMT
Not After : Jan 8 23:59:59 2025 GMT
Subject: serialNumber=a52ada285251d68c8216583ab36b62b96e815920b79faadb1497cfe84f9bc852, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:bc:30:4a:5f:c1:4e:b6:6c:5e:24:50:be:0a:
6d:35:65:76:b9:f7:b6:3a:55:8d:de:d8:0b:c4:6f:
23:4d:ad:ac:c2:ab:41:4e:3b:9b:49:bd:f5:d3:0e:
7d:d1:51:f8:c9:80:2d:a3:b9:a1:e2:94:7e:2d:69:
d6:dc:7d:2a:27:6e:00:f4:52:16:f1:f4:18:4c:1d:
98:47:d4:7a:cc:5b:12:46:f3:dc:d5:5e:69:e9:44:
1f:e0:54:c8:51:d1:b8:f6:40:56:49:5e:66:49:de:
d1:ba:03:b7:ff:0f:3d:61:eb:14:91:6c:2f:4a:34:
02:71:2a:ef:49:7f:e5:f9:10:39:9d:5a:27:2e:01:
4a:15:94:8c:7e:2d:a8:d3:98:a7:20:2c:0c:99:08:
a1:7f:8f:21:ca:a1:ef:a2:b0:73:97:1b:b2:b9:7c:
83:55:5e:53:70:e6:2c:a7:0a:54:1c:ce:25:09:7c:
59:2e:91:0a:25:3d:7f:41:b4:4d:49:0d:fb:1c:0e:
c1:42:e7:51:00:f1:6f:3b:68:be:76:8b:df:ff:06:
20:b3:90:62:9f:25:b8:27:d5:62:01:a7:b9:6e:ef:
e1:99:9d:0b:69:65:f0:09:be:82:30:3d:fd:2d:e3:
20:60:4d:94:b4:04:b7:f9:53:2f:bf:c5:37:74:d4:
99:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:31:62:86:00:B4:4F:BD:BB:53:E5:CC:8A:12:E3:5A:F0:67:FB:F0
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/74517011-8820-40c0-9156-fda0a74f37c3.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
ad:d7:88:1b:d7:06:9b:0c:a9:b0:22:71:3e:d7:7a:6e:52:72:
26:61:96:a3:4d:2e:93:b2:74:45:cf:f2:c3:78:33:fe:3f:73:
c3:e7:70:b4:5a:ff:af:40:ea:b8:d9:b7:f4:c4:1d:cd:eb:bf:
fb:7c:83:d5:6d:7e:e0:bf:ef:9a:c9:a3:f9:59:b9:85:fe:e9:
0c:f5:b0:72:bb:6b:25:10:1a:23:db:39:6b:a2:b7:59:9a:e2:
2e:45:06:49:b1:bc:2c:e6:b2:0c:bc:b3:33:ca:0b:75:90:96:
98:be:4d:53:1a:29:58:61:19:c6:63:a0:f1:37:f1:19:cb:c4:
ec:60:5f:bc:f9:01:27:7d:90:fa:68:f8:7a:48:cb:52:67:80:
8b:eb:bc:66:a4:84:c0:8d:a1:96:e5:f2:d2:e1:88:3f:f7:83:
21:f1:a8:81:46:4e:1f:ca:fa:01:5a:c7:f2:0d:03:23:c2:05:
50:17:00:55:0c:6e:a9:bc:07:ca:33:f8:cd:d3:ae:2f:6b:69:
22:b9:3e:20:2b:19:41:a4:6c:71:ea:a4:b4:44:1e:40:39:92:
b3:1f:45:0d:c6:b0:e2:72:6c:50:d7:08:33:45:10:a8:e6:da:
cb:72:55:a8:c1:4b:59:40:c7:5d:41:33:e2:f8:55:5c:27:8c:
b6:ce:54:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 16:48:03 2025 by rpki-client