Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/95e3effa-d939-48e1-9aff-139a174a7340.roa
File: 95e3effa-d939-48e1-9aff-139a174a7340.roa (raw, json)
Hash identifier: xMKY+IaOBPhDk/8BHizWj53pSOkIornhVX3jJmO9VeU=
Subject key identifier: 1E:E8:BC:DE:BC:47:C0:47:F7:F5:F0:A3:44:F5:35:F3:C1:D4:43:34
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 6FE28ECB3AAE245CF7A545B95061C24EF7502D69
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/95e3effa-d939-48e1-9aff-139a174a7340.roa
Signing time: Fri 10 Jan 2025 00:00:00 +0000
ROA not before: Fri 10 Jan 2025 00:00:00 +0000
ROA not after: Fri 14 Feb 2025 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6f:e2:8e:cb:3a:ae:24:5c:f7:a5:45:b9:50:61:c2:4e:f7:50:2d:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Jan 10 00:00:00 2025 GMT
Not After : Feb 14 23:59:59 2025 GMT
Subject: serialNumber=2e0b149854b39b5144cf5cfd85c1c0145552c24eb109dde792c3e761d99111c8, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:b9:61:db:39:31:99:bd:6e:a1:21:3f:a8:2c:
34:ab:60:52:0a:2f:b4:16:b8:2d:34:46:c2:23:db:
ee:df:ec:e9:e9:70:0d:f7:0f:ae:a3:6c:e2:e8:f6:
96:ef:26:b0:8a:17:1b:1d:29:54:09:8f:db:47:7a:
ce:08:28:d4:a0:91:e1:3d:38:3f:3a:4d:2d:a9:26:
24:5b:a3:b8:27:cf:43:4a:46:22:49:d6:2d:4c:ae:
c4:d8:c2:9c:d3:68:ac:9a:79:0d:ef:52:b2:f6:a7:
2b:7e:19:dd:e5:24:29:12:d3:2b:5c:80:eb:06:38:
c3:03:a4:78:3c:a7:34:00:e1:3d:b0:09:f3:3e:8d:
92:63:60:16:81:f5:1d:aa:b6:85:81:37:78:c6:21:
4f:c7:1a:ed:48:e2:60:b1:37:93:85:40:ef:5a:d8:
a8:3f:96:1d:1a:7b:d0:b7:24:f5:27:fb:d3:da:d1:
eb:4c:37:56:db:07:06:68:9d:25:1b:11:6f:11:37:
0a:65:13:81:21:92:3b:ad:d7:15:de:9b:c2:50:69:
b6:1a:b1:0a:54:02:38:5a:51:61:11:2d:29:0e:07:
bc:1c:f0:51:67:53:e6:e6:13:47:15:c7:fb:a3:04:
50:88:2a:23:e1:8d:3e:c2:20:e8:72:09:25:c8:85:
b6:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:E8:BC:DE:BC:47:C0:47:F7:F5:F0:A3:44:F5:35:F3:C1:D4:43:34
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/95e3effa-d939-48e1-9aff-139a174a7340.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
13:d5:9e:45:ad:e4:b3:9e:e8:5f:91:f0:63:a6:40:9f:7d:bd:
e7:0a:e9:ae:12:fd:12:ef:47:f6:d6:ab:fa:0f:89:54:37:0b:
bf:59:3f:a1:9a:29:5b:97:56:47:10:62:7b:a1:c5:50:82:01:
03:f6:07:c0:5b:3d:b5:12:a9:a1:39:5c:ef:cc:cf:fb:0c:8e:
c7:55:fa:dc:98:e6:af:be:07:d5:f7:e2:eb:6a:58:bc:04:e7:
ed:e4:fd:c8:24:9d:19:ed:ea:2e:18:56:d4:5e:52:86:4a:13:
a4:20:3c:c6:bb:9d:f1:f7:33:09:8a:9c:26:52:98:a5:98:01:
b8:97:a0:e6:05:bd:16:f0:64:a8:78:95:98:b3:2e:66:ac:ac:
9c:5d:fa:0e:ab:91:26:e1:29:4e:b3:1f:be:12:50:c8:6c:11:
21:bf:d0:2e:15:ca:7e:5f:52:3e:28:eb:d4:31:b9:a9:80:9e:
ee:83:ad:18:c3:83:0a:2a:eb:0b:9b:59:1e:c0:d6:55:26:60:
84:db:c0:34:d2:ea:93:f4:75:ed:bd:1f:a5:eb:82:b2:ec:a9:
33:de:56:49:07:ec:e9:1a:af:93:96:e9:4c:5f:f0:a5:a0:dc:
f7:82:c1:06:03:95:b4:78:f2:bc:fc:62:19:34:ae:49:6c:f2:
47:ab:17:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 19:25:18 2025 by rpki-client