Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/7c99d09e-13ea-4719-a6f8-fa8d165dec8b.roa
File: 7c99d09e-13ea-4719-a6f8-fa8d165dec8b.roa (raw, json)
Hash identifier: ZXowV7sLqNwBVf+AnZvgi89z4lCyUjmPpfBHsckR8AA=
Subject key identifier: 4E:6E:DB:65:95:40:0F:80:38:09:E7:BA:1C:E3:DB:B4:53:7B:89:84
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 6F08C41CB61FD86BDCC48534FD4565AFF0FACDAA
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/7c99d09e-13ea-4719-a6f8-fa8d165dec8b.roa
Signing time: Thu 25 Jul 2024 00:00:00 +0000
ROA not before: Thu 25 Jul 2024 00:00:00 +0000
ROA not after: Thu 29 Aug 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6f:08:c4:1c:b6:1f:d8:6b:dc:c4:85:34:fd:45:65:af:f0:fa:cd:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Jul 25 00:00:00 2024 GMT
Not After : Aug 29 23:59:59 2024 GMT
Subject: serialNumber=219270b91809c20e10942d205a6f1fdee738356950667b9fae33de73b1be19ec, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:a6:f0:de:9b:51:ac:60:62:74:a8:c5:a8:9f:
1f:26:d7:03:8b:09:41:0e:05:89:06:06:0b:f4:71:
29:06:c2:b0:fc:2e:f3:ad:ff:5e:8e:10:61:30:18:
c9:e3:6f:53:42:a6:54:f9:cf:09:60:8c:45:aa:f0:
23:89:df:84:34:e2:30:98:a8:63:ff:8f:42:aa:5e:
48:38:73:2f:d1:9a:61:8d:7d:64:98:aa:1b:18:89:
c3:b1:a8:7a:a7:bf:70:b8:c0:78:20:cc:54:54:33:
da:1f:db:5e:93:f2:d8:e2:72:b5:29:b6:23:77:4e:
9b:2b:15:53:56:27:23:d6:eb:f5:d6:d5:dd:3a:b1:
f0:3a:ae:81:5c:c2:a2:56:c4:8c:54:be:e6:1c:75:
4a:bd:bc:d2:5e:f6:4c:72:fd:75:45:db:ce:33:1f:
71:4d:a6:c5:f5:62:ba:a4:61:44:61:42:14:9a:bb:
32:75:de:43:22:a2:d0:c5:99:75:2c:6b:4e:4c:dd:
f0:31:b1:e1:1b:6e:9b:63:61:39:83:7e:29:b1:01:
ae:aa:78:3e:a8:00:96:a7:27:43:90:a2:95:7f:74:
6e:fb:c7:6c:fb:08:f6:71:c3:ee:15:5d:29:06:d1:
da:9e:71:df:e2:a4:64:f0:cd:b6:b9:20:cc:7f:f0:
a0:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:6E:DB:65:95:40:0F:80:38:09:E7:BA:1C:E3:DB:B4:53:7B:89:84
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/7c99d09e-13ea-4719-a6f8-fa8d165dec8b.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
81:41:44:07:38:d9:ef:30:83:b3:9b:87:82:2a:1c:0a:1d:50:
60:48:12:7e:2b:a1:8e:3c:fb:90:97:06:87:ae:40:b0:45:1e:
c1:05:de:4e:7d:31:ad:f8:d3:15:f1:e3:af:d3:4a:89:d9:3b:
8f:00:6e:48:6e:63:79:76:8e:3a:5f:a6:9c:95:fa:b3:5c:c7:
f2:1b:16:8b:75:12:a6:42:f9:a7:6b:c5:97:0f:20:8a:41:cc:
11:47:48:5b:6e:e7:cb:23:f7:ed:49:48:41:6c:80:8c:40:84:
9f:a7:d0:2f:a8:02:34:01:97:37:25:af:1b:70:d6:08:fa:a4:
01:cf:a6:91:bb:4e:8d:38:33:b0:a4:13:94:65:eb:66:84:4a:
81:37:fe:1c:99:af:84:a2:53:39:bb:dd:1b:07:12:44:ac:b5:
0d:35:fd:fb:02:6e:98:44:ce:d5:bd:ff:a7:41:8f:23:d7:26:
1c:66:a5:d8:e0:4b:51:d0:94:79:63:ec:81:85:9b:5f:85:6b:
20:71:4a:ee:ed:35:82:4a:b0:18:08:1c:e9:52:2e:17:c5:a2:
27:4f:bf:03:4c:06:07:b7:87:f0:22:7b:a3:ca:e2:66:85:02:
b4:82:27:79:e1:e5:01:73:28:f8:dc:c8:f2:18:52:08:fa:83:
67:7a:b0:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 17:40:45 2025 by rpki-client