Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/b9935180-1c0f-4b48-b0f1-cef3055360f4.roa
File: b9935180-1c0f-4b48-b0f1-cef3055360f4.roa (raw, json)
Hash identifier: LHgc/p0jlDTD0VFQrj0RwyFdMVpcZrZmF8mwVU2evdQ=
Subject key identifier: AE:F5:E8:A5:3F:73:1E:09:21:D2:CF:C0:40:71:B0:C3:AE:38:FA:8B
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 5D0DCFE50040BEE1F704C6FE8F27478233D0F668
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/b9935180-1c0f-4b48-b0f1-cef3055360f4.roa
Signing time: Mon 29 Jul 2024 00:00:00 +0000
ROA not before: Mon 29 Jul 2024 00:00:00 +0000
ROA not after: Mon 02 Sep 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5d:0d:cf:e5:00:40:be:e1:f7:04:c6:fe:8f:27:47:82:33:d0:f6:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Jul 29 00:00:00 2024 GMT
Not After : Sep 2 23:59:59 2024 GMT
Subject: serialNumber=ec71426bf97f85570c1c46084b2108b9dc7e09dbd27e7df549cc0735caed9c75, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:3f:68:4a:b9:96:d6:5f:29:d4:f8:c5:34:f8:
69:46:27:7c:31:37:df:3c:92:33:79:b8:24:c9:b2:
a3:59:51:80:7e:36:aa:7a:18:d2:83:78:fa:4d:b1:
89:e7:64:28:a6:cf:8f:1c:50:cc:47:a5:52:fb:2f:
9a:66:14:47:c4:95:e8:59:5f:c6:0d:3e:ab:e8:78:
40:2a:28:48:b2:bb:18:ef:b6:ef:8d:9c:41:ee:a8:
52:37:82:3d:55:ac:8f:26:f7:59:93:47:2b:53:4c:
a2:69:cd:5b:53:8b:09:31:9c:c1:83:9f:75:de:c6:
7f:c3:6a:76:3a:93:3f:6d:02:80:94:bd:4e:9d:15:
47:36:2e:11:d2:79:60:3d:8d:00:5d:9e:2d:0a:af:
26:3a:ca:6c:76:e8:71:69:ac:fd:ac:a8:6d:56:aa:
7e:2c:ee:66:f2:fb:8a:db:7c:4a:15:fd:00:7c:b5:
18:40:b3:ea:fd:76:33:4c:94:95:fc:50:95:2e:14:
8e:3e:aa:0a:cd:48:68:95:1e:d2:9f:7d:3d:67:6f:
62:38:21:c8:32:57:81:b7:4a:9a:a8:67:5e:23:78:
63:e5:3a:41:ca:23:f9:cb:68:45:36:af:28:35:1e:
21:0e:05:61:b9:7e:6f:37:d0:d1:6c:8b:d2:c8:66:
0e:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:F5:E8:A5:3F:73:1E:09:21:D2:CF:C0:40:71:B0:C3:AE:38:FA:8B
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/b9935180-1c0f-4b48-b0f1-cef3055360f4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
1d:f7:b1:c8:36:23:ba:dd:70:85:62:fa:13:f7:83:66:28:7e:
73:24:13:d1:2d:ba:48:8e:d1:61:8f:bc:52:7b:20:1d:0d:4e:
96:41:8e:33:9b:d5:65:4c:8c:04:a0:d9:74:a7:6b:34:2f:16:
0f:2c:52:90:87:6a:a3:c4:8a:90:53:b2:a0:36:96:b0:4f:1c:
7e:88:3a:bd:d0:7b:f1:7c:70:f7:37:16:a1:87:fa:39:05:67:
ef:2d:4e:b3:aa:5d:d2:01:93:77:57:04:57:c6:e3:98:9d:c0:
a0:bc:c5:13:de:e2:f4:1e:cb:66:28:2d:c7:6d:e7:3e:b9:26:
dd:45:0a:dd:c4:80:96:f3:03:e4:f8:ee:eb:62:2f:48:f9:cc:
23:ce:e9:34:7f:f4:ca:23:d5:e0:ad:5e:7b:91:de:c4:b6:6b:
45:be:e7:d6:a6:72:a5:1c:18:17:db:3b:54:d0:32:b5:44:a9:
9e:a6:d1:e4:8c:54:f1:e1:f0:90:14:20:ae:8b:16:28:93:8c:
1c:45:66:e2:03:c6:b3:01:db:44:03:b2:27:1f:fd:e2:8d:d9:
88:b1:ec:2f:d0:8c:a6:fc:8c:36:4b:74:5d:53:d1:d4:09:83:
e9:8c:c1:62:36:c7:35:19:e4:ca:9f:e5:c1:d8:20:44:ce:e4:
2a:16:4a:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 16:09:41 2025 by rpki-client