Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/a7baee03-2ae5-491a-94a0-4b12dbc9593f.roa
File: a7baee03-2ae5-491a-94a0-4b12dbc9593f.roa (raw, json)
Hash identifier: kp0jVMvYQCkGC9EVAATIUPYP/9cTkDbutbcplOUbqcg=
Subject key identifier: 69:0D:F5:E2:57:5F:E5:0C:3B:B8:8D:5F:E3:F7:4D:87:17:B1:B8:77
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 252D80CB1D15D50F49057CF2F849E9F67108AEE0
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/a7baee03-2ae5-491a-94a0-4b12dbc9593f.roa
Signing time: Thu 31 Oct 2024 00:00:00 +0000
ROA not before: Thu 31 Oct 2024 00:00:00 +0000
ROA not after: Thu 05 Dec 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
25:2d:80:cb:1d:15:d5:0f:49:05:7c:f2:f8:49:e9:f6:71:08:ae:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Oct 31 00:00:00 2024 GMT
Not After : Dec 5 23:59:59 2024 GMT
Subject: serialNumber=5e57d12d5d4e5481e05cf25c5e34c3b010f03d34ca28fb13bc5839c4f66d59c9, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:5f:3a:39:6f:83:4b:ea:06:c0:05:2d:01:a1:
84:4c:15:2c:df:f5:0f:6b:92:fb:47:66:11:54:93:
b1:4b:ad:b8:06:61:84:25:13:0e:bd:4f:73:f1:95:
82:c3:f2:bc:ae:a1:41:10:c1:0a:85:01:ab:5a:9e:
25:ef:13:79:76:54:23:5e:83:3d:7f:75:7a:30:78:
c6:a8:c5:46:43:60:e9:ff:5a:34:e1:16:74:42:47:
e0:80:71:90:aa:f3:9e:c9:73:f7:8d:ce:64:c9:ed:
30:26:d7:d2:f6:5b:3c:84:cf:d1:54:f2:4f:8a:3b:
a6:fa:6c:7d:c6:1a:40:da:5c:a3:19:06:8c:b7:88:
07:8f:19:5c:28:5d:90:7d:e1:ab:bb:3b:9b:bd:2c:
28:8c:f6:f9:1c:5b:6d:04:8a:17:68:b0:cf:dc:ee:
3f:f8:9f:3e:ff:44:f2:0b:a9:5d:38:14:7f:80:5f:
2a:a5:9a:b1:aa:89:ec:d4:b1:4d:8c:72:32:f8:75:
f4:1f:b0:a1:bb:67:47:d7:96:0c:b4:cf:f6:1c:39:
4c:9d:88:02:81:9c:0e:3d:73:92:cb:de:74:ce:72:
94:37:79:d1:28:ab:01:7b:60:e5:70:8a:f1:27:04:
d2:1a:19:fc:9e:cc:43:e8:eb:8a:1e:3e:e2:ee:d5:
9d:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:0D:F5:E2:57:5F:E5:0C:3B:B8:8D:5F:E3:F7:4D:87:17:B1:B8:77
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/a7baee03-2ae5-491a-94a0-4b12dbc9593f.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
46:cf:c7:a2:06:12:80:7b:27:dc:a5:da:8f:bf:e9:97:72:8f:
b5:37:23:ce:85:a4:39:c6:f5:b6:c8:15:31:40:69:a1:2b:60:
54:18:76:64:12:b5:6c:7e:28:8b:65:04:53:97:92:b7:65:07:
6b:29:77:b0:95:9b:15:01:67:8c:9e:39:62:d0:09:95:1c:e3:
5b:d7:e0:0f:de:e5:4c:16:f7:c4:4b:20:ac:39:9e:65:8c:b1:
03:fa:be:a1:c5:30:6c:87:a1:ba:4d:16:a8:f3:e3:96:ae:ab:
7a:e6:fd:ae:4a:6d:dc:cb:95:3c:ff:38:2a:83:81:48:2f:db:
fd:9e:14:ad:54:8a:bb:d6:21:ba:a1:b5:66:a8:20:dd:71:ef:
86:21:a8:1a:86:a3:7a:91:24:8a:f4:e0:a6:07:b9:12:a3:29:
7a:a2:8b:56:49:5e:d8:ab:1e:79:d6:91:b9:8d:5b:8d:f5:a8:
df:b5:0a:a7:50:e3:fd:e2:c4:b7:8a:8e:e2:54:62:57:14:39:
41:9c:25:90:7f:6d:31:73:4d:43:31:4a:9a:d9:64:33:08:17:
19:7e:07:43:df:1d:12:6f:9f:99:69:41:96:c3:65:3e:31:be:
60:80:f7:7d:0c:02:03:3e:84:5c:cd:c2:f2:44:a2:4f:57:d1:
8c:0c:fa:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 15:59:02 2025 by rpki-client