Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/79e1e684-c5c5-48d0-83a9-70d0128252d1.roa
File: 79e1e684-c5c5-48d0-83a9-70d0128252d1.roa (raw, json)
Hash identifier: iVQSZXDDJS1SHeRTuG/xMOjckCM4tHJecBE2IPlDiCk=
Subject key identifier: 3A:72:86:5D:8D:F9:42:DD:A8:D7:66:E1:90:7A:A8:11:5B:47:3F:B5
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 14F442DECFA5C1A0306DBDE789C61140C1AFE03A
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/79e1e684-c5c5-48d0-83a9-70d0128252d1.roa
Signing time: Thu 14 Mar 2024 00:00:00 +0000
ROA not before: Thu 14 Mar 2024 00:00:00 +0000
ROA not after: Thu 18 Apr 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
14:f4:42:de:cf:a5:c1:a0:30:6d:bd:e7:89:c6:11:40:c1:af:e0:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Mar 14 00:00:00 2024 GMT
Not After : Apr 18 23:59:59 2024 GMT
Subject: serialNumber=40588e55cd8cc985837a937c0cb9c7f111baec9e4f7a5222bfeafcd5eee2beae, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:e6:50:c8:41:37:e3:cf:eb:17:a4:e4:ad:90:
22:7c:b6:49:ee:a9:e0:16:5a:55:04:ed:55:b7:51:
04:91:51:c5:93:69:8c:8a:30:1e:7b:23:d7:de:84:
b9:c3:6c:0c:ae:27:21:af:0b:6e:0f:19:38:dc:f4:
51:c0:7d:c5:1e:29:4b:f5:8d:cb:ac:eb:81:b1:c7:
19:15:c3:76:f0:ad:3c:76:96:52:44:80:c5:c2:a3:
d3:82:49:e1:d1:b4:5b:87:4b:b0:12:ef:06:0d:74:
34:94:55:9f:df:86:5c:a4:0e:aa:0b:61:24:07:5d:
d6:92:13:0c:58:86:90:09:bf:00:47:3e:0a:1e:5c:
35:82:72:b4:38:23:b2:c6:42:2b:49:22:be:ed:ff:
b4:b9:d9:c8:37:82:e8:fb:64:ff:43:6c:33:44:ac:
f2:88:b4:59:9a:32:97:ec:fa:e0:1c:19:80:64:20:
cc:aa:f4:41:cd:cc:8a:ca:79:19:3b:46:f9:80:0b:
3b:b9:7c:72:9f:c4:37:37:37:62:3f:40:10:58:3a:
f1:89:7b:fa:66:a6:19:53:0f:ef:4c:d5:0b:a1:3f:
65:c7:fd:dd:7d:33:99:c8:44:b6:73:40:cc:97:d7:
95:00:26:13:06:8f:32:d9:4d:8d:05:4d:ea:6f:c3:
b0:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:72:86:5D:8D:F9:42:DD:A8:D7:66:E1:90:7A:A8:11:5B:47:3F:B5
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/79e1e684-c5c5-48d0-83a9-70d0128252d1.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
7c:e1:77:dc:d9:f4:94:c3:f2:70:03:d7:a7:e7:37:d7:93:12:
9b:ee:c6:ab:f3:bf:87:4e:2d:aa:21:d9:11:93:c9:ff:91:ee:
ce:0e:df:28:fa:50:07:8d:0a:c4:96:69:41:c9:de:17:51:d7:
a4:14:3d:23:44:07:59:1e:09:cf:7e:56:ec:a1:81:5b:cf:a6:
5a:34:8a:d2:ef:0e:99:70:05:b4:58:fc:86:2b:b4:91:59:17:
ac:11:27:03:82:44:4e:42:85:18:a8:4e:0f:30:18:92:46:f9:
cf:e0:a6:62:6e:52:1e:f3:54:5b:36:fb:3c:b6:31:07:53:e4:
ab:32:66:d3:6a:ef:3b:42:1d:76:35:a7:a3:a2:d5:dc:b4:87:
97:c6:9d:a9:6f:31:92:05:96:95:fd:56:46:39:42:69:66:13:
df:b2:b3:e7:49:f7:67:4a:91:21:7b:a0:09:c9:27:74:ce:d8:
1b:1a:d8:69:d9:dc:8b:7e:6b:e7:bb:e2:73:47:06:1d:34:0a:
82:17:f8:d4:87:d6:03:ee:62:34:3d:e4:42:b0:29:50:c9:a9:
c3:99:89:b4:4e:9c:99:6f:94:26:58:8b:94:f4:5a:ee:65:20:
20:6b:81:f5:b1:ad:fc:15:ed:d9:5e:32:e8:cb:04:1f:38:d0:
bb:08:09:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 19:17:06 2025 by rpki-client