Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/c03e4139-3ed6-493d-bcda-e8ca8c73cc0a.roa
File: c03e4139-3ed6-493d-bcda-e8ca8c73cc0a.roa (raw, json)
Hash identifier: HqT2l7U32afle+rmq9vNMbZ0Dk/Jdxkb3W3U/ntcsG4=
Subject key identifier: FB:BA:78:FF:B3:2C:6E:A6:DA:08:92:E1:79:E8:13:5A:81:70:04:5C
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 643BCCF5485789480706B7BA487A5D41E7F75DCC
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/c03e4139-3ed6-493d-bcda-e8ca8c73cc0a.roa
Signing time: Sat 23 Nov 2024 00:00:00 +0000
ROA not before: Sat 23 Nov 2024 00:00:00 +0000
ROA not after: Sat 28 Dec 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
64:3b:cc:f5:48:57:89:48:07:06:b7:ba:48:7a:5d:41:e7:f7:5d:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Nov 23 00:00:00 2024 GMT
Not After : Dec 28 23:59:59 2024 GMT
Subject: serialNumber=f71ec691c898483651930b41925e2ee91dfb077459364af06c832fb17398dcb3, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:4a:13:62:c7:4a:88:cd:a6:da:6b:f8:a0:59:
c0:20:07:98:b5:f8:81:23:64:e8:5d:c1:53:1c:bf:
87:4b:d4:a6:32:ad:1c:45:2a:25:de:e9:de:45:69:
c0:a0:08:ac:48:e9:a3:8d:09:4d:2c:79:1c:1b:d8:
55:fc:75:20:83:b6:bd:db:70:62:11:d1:b3:82:dc:
e4:71:53:7f:b4:18:d0:09:1d:57:dd:d1:7f:e3:d0:
5f:c1:e8:d4:c1:0f:46:e4:02:65:6b:db:99:77:e2:
67:28:e3:43:55:ec:e8:61:15:25:85:02:f8:a8:0c:
52:5e:8e:85:67:b3:7d:2c:0d:25:37:9d:79:74:a7:
41:ed:a3:98:5d:9e:66:a7:55:28:35:41:79:33:da:
52:38:46:f1:8d:d3:5f:42:b3:87:8a:02:db:b9:9e:
e2:81:02:7d:3d:8a:a1:94:af:75:ec:34:e7:9a:9c:
4c:44:ef:76:87:58:29:1b:94:5f:5b:58:86:11:a8:
7e:c8:59:c6:b3:84:8e:79:bc:f9:d3:77:14:01:12:
d0:19:f5:1a:37:01:89:27:82:df:74:e3:4d:2e:20:
5b:84:08:99:27:b8:de:c0:38:9d:46:68:08:cb:6b:
7a:4b:78:17:e4:fa:24:8d:3c:c4:3a:35:cc:b5:91:
4e:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:BA:78:FF:B3:2C:6E:A6:DA:08:92:E1:79:E8:13:5A:81:70:04:5C
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/c03e4139-3ed6-493d-bcda-e8ca8c73cc0a.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
b0:db:13:65:d6:b0:ba:b4:90:00:1d:ff:d3:6e:00:95:f9:23:
31:28:4c:b7:cf:f2:1c:7f:8c:51:3c:b6:6b:51:33:a7:b2:f7:
3b:7b:a3:38:d5:1b:4a:45:07:ff:c1:b0:26:ce:6c:ac:39:85:
fb:89:2c:b1:41:b2:f8:0d:a1:d9:ff:eb:1f:5f:c4:b3:c0:9c:
7f:c8:bd:5f:d6:d2:c4:65:e1:5a:85:91:2e:e6:14:cb:d0:57:
61:6c:ff:83:6a:04:9b:2a:0c:a5:0b:61:ba:c9:4d:4e:4e:1e:
33:ed:77:05:69:75:4d:8c:0c:ea:4b:af:41:d0:78:a1:9f:d2:
36:d3:77:eb:c4:6f:7f:a0:ed:ae:d2:9a:75:09:0d:a3:35:2c:
25:f7:30:0f:be:56:ea:6a:32:ae:f1:15:60:0a:f0:fe:26:8d:
6c:1e:7e:58:fa:72:05:5e:a3:49:e5:9f:2b:1b:d2:45:f0:4e:
ea:c0:7a:24:69:15:1c:dd:da:00:06:e4:2c:7a:13:c2:23:1f:
77:6f:44:76:11:b2:4a:77:49:7e:72:ae:f3:7c:f1:01:76:03:
a9:0c:1d:5b:a9:49:14:b7:ec:f6:15:4d:e3:05:a5:fd:cc:69:
2e:67:6a:85:9c:db:e9:49:95:b5:13:b9:08:e5:95:5a:95:74:
d0:63:25:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 18:31:17 2025 by rpki-client