Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/ec3e9d43-8056-447c-9bf1-8c10183ab4a0.roa
File: ec3e9d43-8056-447c-9bf1-8c10183ab4a0.roa (raw, json)
Hash identifier: RRyiJFN4fts5NshqxUOKG4A1mztbM2Y7frxPD4idTaU=
Subject key identifier: 48:C6:6B:5F:2A:12:53:32:91:84:A2:AD:AF:F0:2E:63:49:CA:D1:79
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 768BA42EFE26ADC5AD5FD8086A6DE5D18414B940
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/ec3e9d43-8056-447c-9bf1-8c10183ab4a0.roa
Signing time: Wed 26 Jun 2024 00:00:00 +0000
ROA not before: Wed 26 Jun 2024 00:00:00 +0000
ROA not after: Wed 31 Jul 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
76:8b:a4:2e:fe:26:ad:c5:ad:5f:d8:08:6a:6d:e5:d1:84:14:b9:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Jun 26 00:00:00 2024 GMT
Not After : Jul 31 23:59:59 2024 GMT
Subject: serialNumber=0ae6ab86e560a90b0669e0acfca3d1efb64d401bd1e55e2329ed51e354c63edb, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:a3:95:69:c2:2b:ce:4e:22:4a:27:d7:a0:45:
86:81:fa:a7:96:66:9c:98:b6:4a:68:95:c6:f0:02:
88:b7:54:d6:c7:6f:83:40:57:10:5f:3f:87:61:4b:
30:c8:82:80:d6:f5:8b:dd:38:ff:8d:8a:c8:55:f9:
d3:f4:09:f1:2e:3e:87:86:53:b5:ee:6c:23:13:7d:
02:46:63:fe:27:07:17:51:ad:78:5a:a0:19:7d:22:
f0:f0:98:29:a3:29:38:3d:77:02:ed:57:e4:3f:83:
93:d7:56:9f:eb:b0:e0:a1:d4:00:07:72:3b:cc:d2:
44:ed:5d:04:0e:78:49:8c:30:c1:3b:3b:d1:50:ff:
31:b6:c9:8b:15:69:01:72:2a:91:33:e1:3a:51:71:
7b:0f:75:d3:fa:42:10:d0:6f:ad:68:aa:7a:ec:d2:
96:f3:63:ed:96:96:21:41:13:92:61:66:f0:80:92:
fc:91:c8:4f:bf:9e:6c:f2:77:e0:74:cb:1f:fe:33:
ad:6d:70:5a:d1:a8:e3:6c:43:fc:d2:b5:03:fb:56:
80:68:64:1e:a1:5b:69:f1:58:69:38:b0:03:03:9d:
b9:69:40:36:56:a3:18:dd:36:40:91:14:6d:42:66:
e8:6f:6e:cc:2d:8b:33:8d:df:6e:b0:f5:84:8e:ae:
05:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:C6:6B:5F:2A:12:53:32:91:84:A2:AD:AF:F0:2E:63:49:CA:D1:79
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/ec3e9d43-8056-447c-9bf1-8c10183ab4a0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
81:a3:f7:93:c3:44:cb:72:67:1e:44:f8:f0:10:88:d1:8c:e3:
cf:e9:9f:cd:af:73:45:6d:96:12:2e:d6:ef:48:9e:59:03:9d:
6c:c8:f9:70:ec:0d:0d:18:32:11:81:75:02:33:94:ba:98:aa:
4a:52:6a:e7:8e:75:68:f2:3d:31:52:5c:77:af:53:98:86:b9:
7d:53:92:7e:ed:47:6d:97:90:f2:c2:06:a7:07:23:0c:31:4f:
c0:c6:5f:f2:5c:bf:3c:07:e7:ab:f1:bc:a2:49:2c:91:e6:b0:
46:4a:2a:39:04:a2:1d:37:6d:06:e2:27:a9:01:c8:ce:33:9b:
cc:15:20:7f:40:db:91:4a:89:13:62:ec:cd:b9:96:da:37:d0:
bf:f4:69:83:dc:bc:70:f0:21:2e:e4:f7:e8:06:4c:8d:4c:61:
e9:28:a4:6f:ba:08:73:35:2c:d1:9a:79:ee:65:ec:0d:fe:0e:
7f:6a:72:e1:fa:8d:cd:d1:ee:29:3a:9e:a1:86:1b:5d:13:b4:
36:ff:79:09:26:6a:09:b8:89:6d:02:bb:03:94:2b:36:4e:9c:
4f:9c:87:e0:ed:7b:d0:0a:20:a5:7c:12:4b:df:72:a1:e2:81:
cf:42:a0:a8:59:c3:fd:5b:a7:c0:5a:07:10:b2:02:09:92:d3:
9b:60:12:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 09:53:00 2025 by rpki-client