Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/a53e5ccc-ea26-4267-be43-778f0ca6c469.roa
File: a53e5ccc-ea26-4267-be43-778f0ca6c469.roa (raw, json)
Hash identifier: 0VosU8ZKj5C0PKY7hwvguqRCNL3GmzV49vIxsQtyj3w=
Subject key identifier: E7:FE:18:93:EA:45:C4:BC:8E:58:81:D5:CC:F0:7F:0D:9C:A2:1B:6E
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 1C7597CF3D5B4D749D3851DECE459D77ECB6F723
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/a53e5ccc-ea26-4267-be43-778f0ca6c469.roa
Signing time: Sun 01 Sep 2024 00:00:00 +0000
ROA not before: Sun 01 Sep 2024 00:00:00 +0000
ROA not after: Sun 06 Oct 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1c:75:97:cf:3d:5b:4d:74:9d:38:51:de:ce:45:9d:77:ec:b6:f7:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Sep 1 00:00:00 2024 GMT
Not After : Oct 6 23:59:59 2024 GMT
Subject: serialNumber=72f8eb6bc94d44b5e03b608efb49274b03f8a76a2fe386d5a024eb6dcc724dd1, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:7a:da:32:ca:44:d2:1b:17:89:a0:d2:13:dc:
d5:d2:eb:2a:48:88:3e:85:3e:cd:04:9f:50:34:c5:
37:4c:5e:ec:4a:b9:47:bb:12:1a:20:3e:dd:94:9a:
97:d2:2e:26:04:46:65:8e:92:00:52:9e:32:83:d5:
9f:6a:4a:e3:c5:cf:a8:1b:95:b0:bc:e8:17:8c:d9:
d2:d2:4b:c2:1a:c2:b8:26:0e:ed:8c:9e:cb:22:70:
63:3b:1f:da:78:dc:40:8b:50:1c:44:1e:db:0a:c2:
19:48:78:46:24:86:cb:47:fb:6a:d8:b1:cb:ba:91:
26:09:ff:c5:95:4d:c6:49:9b:57:0e:af:7a:c4:ae:
02:b6:bb:30:0d:fc:bb:92:16:67:31:e7:fd:a5:9f:
65:49:56:65:fd:d2:bc:eb:30:fd:84:a5:b0:f8:28:
07:cf:ef:fb:9b:7d:32:fc:5f:70:1c:c0:4f:c1:c1:
e0:dc:84:55:49:aa:63:36:65:92:c8:51:87:48:64:
67:80:1c:dc:32:63:3a:06:c5:28:18:3d:0b:b2:1b:
3b:6a:21:90:3e:99:5d:25:44:1a:18:07:16:2e:cd:
5a:38:a4:9f:44:d3:f7:67:ae:bf:00:24:95:97:76:
6d:9d:b6:fa:63:26:d8:ed:ce:de:8e:f5:28:35:00:
a7:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:FE:18:93:EA:45:C4:BC:8E:58:81:D5:CC:F0:7F:0D:9C:A2:1B:6E
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/a53e5ccc-ea26-4267-be43-778f0ca6c469.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
40:f7:91:54:18:59:13:37:3a:d0:e0:20:ae:18:ab:4f:b4:35:
9e:03:7d:b7:9d:1c:6f:88:8a:0a:c8:b9:78:e7:66:0e:ff:e9:
1a:bc:f3:6d:58:e9:14:8b:a3:56:0f:af:ae:f7:f2:41:8b:32:
49:60:0c:25:69:1b:00:58:20:ad:38:c9:3e:1f:47:43:35:73:
fb:b9:a6:45:9e:55:5c:09:84:db:17:de:44:32:f5:ab:8d:4e:
a5:1f:e3:14:8e:37:10:fd:a5:87:8c:4f:86:f9:b0:04:92:46:
bc:90:4b:6a:5e:fb:4b:fc:2e:55:51:ee:9b:54:96:0a:03:1d:
e7:cd:4f:91:9f:7a:ac:8f:1d:38:c2:12:24:6c:6e:a6:ae:06:
11:37:45:26:5d:5b:2f:4b:ee:7a:c2:31:98:42:aa:ad:bd:88:
90:31:2a:30:6d:7c:f4:5f:36:bb:79:46:93:f2:f8:f5:fd:dc:
80:fe:8b:49:e7:53:26:71:75:f2:ae:f1:34:27:ad:9f:2e:31:
4a:18:87:6c:c9:33:bc:04:aa:04:fe:40:d0:c7:6e:4c:3b:f2:
fe:7a:5b:be:cf:b9:2e:ad:35:cb:82:cc:ba:c7:b0:8b:d7:68:
55:83:83:6a:02:77:2a:df:bb:44:93:cb:3d:0e:fd:3f:39:a8:
5e:d4:90:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 18:02:05 2025 by rpki-client