Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/d1280c61-66bb-4009-888f-59332a4f97d6.roa
File: d1280c61-66bb-4009-888f-59332a4f97d6.roa (raw, json)
Hash identifier: omN/I64kRCPSOUEKVpNIl3U5KHt03jjA4N3YlvKOfvk=
Subject key identifier: 25:FE:D4:2A:FE:F5:0D:95:B7:34:F6:56:8A:CB:85:D9:2C:8E:F1:86
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 2B7CEF603BE2F8091169B3994D64C50004A27FA6
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/d1280c61-66bb-4009-888f-59332a4f97d6.roa
Signing time: Thu 07 Nov 2024 00:00:00 +0000
ROA not before: Thu 07 Nov 2024 00:00:00 +0000
ROA not after: Thu 12 Dec 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2b:7c:ef:60:3b:e2:f8:09:11:69:b3:99:4d:64:c5:00:04:a2:7f:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Nov 7 00:00:00 2024 GMT
Not After : Dec 12 23:59:59 2024 GMT
Subject: serialNumber=f2cf3c39734e6ec498b85e0a26f3436b3069907c6047f7ca45f85f4d85b1ba4f, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:ab:15:50:f5:10:b5:9c:57:0e:57:0c:6b:9c:
0c:85:27:f1:bf:e0:84:06:92:40:25:32:f0:ec:c1:
49:3a:e7:9d:3a:b9:a1:a5:1d:07:6b:5b:07:f1:66:
78:45:55:00:d0:56:30:8d:0b:3b:cb:85:3f:02:1d:
1b:1c:ab:9a:28:22:50:56:ab:93:50:80:10:70:32:
fb:41:02:f1:af:6e:f0:3b:8b:2e:db:e1:0e:3a:67:
a4:36:f6:8f:bf:fc:0c:2a:03:fe:7e:a2:9e:2e:40:
79:72:34:20:d7:14:ed:38:a8:4c:ae:bc:20:b5:92:
d2:80:f1:15:d5:b4:82:ee:5d:82:24:91:fe:d9:09:
33:f2:08:3f:bf:80:b8:92:5f:8c:1a:90:a9:05:49:
cd:9d:f9:54:b1:04:5c:f8:ac:16:f1:17:4c:e3:72:
44:31:a8:d8:39:09:50:12:e7:35:02:c9:43:11:95:
c6:79:29:7a:50:53:2e:94:58:3b:63:0f:53:84:9d:
09:33:ec:44:be:b0:6d:f7:7f:8c:8f:4c:27:be:78:
d0:10:53:71:e3:73:e4:59:61:5d:d7:3d:0a:98:ad:
6f:dc:33:ee:d1:a5:25:32:37:58:4a:5b:de:97:b3:
14:e8:02:5a:20:54:d3:b8:48:10:f2:29:49:c3:16:
79:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:FE:D4:2A:FE:F5:0D:95:B7:34:F6:56:8A:CB:85:D9:2C:8E:F1:86
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/d1280c61-66bb-4009-888f-59332a4f97d6.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
93:f2:eb:5d:a9:f9:34:6f:c8:60:c7:9e:9d:ca:8e:98:85:bc:
00:eb:ee:e9:3d:e5:c6:a7:0d:36:8d:6e:2e:3f:77:e3:6d:6c:
09:c6:59:cb:fa:20:df:bc:2b:14:01:03:d7:68:99:a0:eb:1c:
eb:10:c4:5c:7e:48:62:c2:16:1b:fc:fd:70:8b:ed:69:a5:f4:
82:1e:c6:93:2b:6f:2d:b4:58:fb:d7:35:90:d2:b5:0b:88:e7:
3c:f0:96:22:f4:04:aa:ed:04:1d:5d:eb:a3:5d:1d:fe:e6:67:
0d:d0:29:6f:0a:ac:87:5c:83:51:ba:40:fd:d7:3b:66:48:a8:
2d:d2:9a:aa:50:76:3e:61:0e:a6:9b:0f:f4:9b:11:31:6f:59:
c7:1c:62:6d:de:cf:99:6a:44:2a:df:2f:c6:3c:63:6d:23:b0:
d7:4f:27:f4:2e:01:e5:b5:5a:d7:20:05:d6:9e:9b:0b:55:33:
01:f5:35:89:e3:bd:0b:a5:23:c5:ca:23:98:e5:2c:b4:c3:2e:
a6:b3:41:fa:bd:f0:39:11:86:57:c9:94:1a:a1:9f:79:e3:ca:
1d:3c:21:e2:15:f0:6f:ad:58:84:68:67:81:6c:65:95:e7:5a:
65:30:04:6f:d3:e9:95:ec:eb:bb:5a:82:c7:34:25:f3:75:a4:
96:58:d3:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 16:47:27 2025 by rpki-client