Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/edffc632-6ea7-43d0-8b28-6d44dd29054c.roa
File: edffc632-6ea7-43d0-8b28-6d44dd29054c.roa (raw, json)
Hash identifier: 1gYXkOLmLwTRfcgVKibQeSrRFRozC48R1cEiM5vOKB4=
Subject key identifier: CD:45:FD:71:61:8D:98:8A:9B:78:86:43:1A:EB:5A:37:38:A8:2E:D6
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 4DCA8E150303E0EEF0794A6EE0C01ECD70010361
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/edffc632-6ea7-43d0-8b28-6d44dd29054c.roa
Signing time: Mon 03 Jun 2024 00:00:00 +0000
ROA not before: Mon 03 Jun 2024 00:00:00 +0000
ROA not after: Mon 08 Jul 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4d:ca:8e:15:03:03:e0:ee:f0:79:4a:6e:e0:c0:1e:cd:70:01:03:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Jun 3 00:00:00 2024 GMT
Not After : Jul 8 23:59:59 2024 GMT
Subject: serialNumber=6fd4eb4814d3bfab9bc2ed7ded0d74b68bdd69a8828e31802a2e407d05bd4640, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:4a:ed:d6:f4:17:ae:e0:08:69:33:5e:1a:57:
ad:6d:94:16:04:0b:43:27:43:56:8c:28:9e:df:ad:
49:78:c0:04:36:e1:f5:f9:41:13:96:75:81:73:9e:
9d:a0:71:63:90:8a:96:a9:db:22:c2:17:e7:2a:47:
32:df:f0:df:20:7b:b1:50:b4:10:59:5d:44:1b:6e:
e9:ed:e0:a1:9f:9d:1e:f9:7a:c1:6c:99:5c:13:70:
2b:00:6b:8e:50:dd:b8:bb:75:9e:e6:33:49:5b:32:
b4:c8:a0:43:07:bd:da:c1:9c:9b:cc:6b:89:2f:0e:
86:3b:3e:1f:14:b8:bd:d8:ac:9e:c1:ea:f3:87:50:
72:39:de:1b:e8:42:76:c0:b9:29:5d:1c:be:4e:d7:
08:7d:91:07:40:69:1a:b0:11:a2:7f:0b:fb:de:35:
a8:ac:21:97:f5:05:98:57:e5:7f:62:04:34:d6:95:
af:16:ac:a5:26:47:ab:a6:85:de:98:91:6a:38:1a:
fc:40:e2:d9:c7:b7:f9:19:e8:cc:a7:1c:9e:6d:bb:
e4:0b:b4:34:8f:9c:04:59:d6:a8:9a:ae:ac:0e:94:
e8:0e:65:b9:c5:ff:94:d7:d3:8b:3a:63:ee:37:b0:
a6:39:5a:f3:86:98:a4:1e:be:a6:0e:42:17:f1:f2:
8e:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:45:FD:71:61:8D:98:8A:9B:78:86:43:1A:EB:5A:37:38:A8:2E:D6
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/edffc632-6ea7-43d0-8b28-6d44dd29054c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
2e:4c:c5:f8:c6:64:a3:22:7b:a0:8e:3b:0e:52:e7:c9:ca:04:
82:e4:f1:5f:28:1b:b0:35:89:23:46:ea:b0:49:ee:13:76:06:
65:1d:e6:54:cb:52:cc:e4:68:71:e9:b0:8a:8c:d9:d5:00:c8:
37:4b:1b:67:c7:28:f7:67:b3:34:34:f9:2b:27:66:52:33:47:
71:53:14:d0:79:2e:0e:cb:21:aa:ee:aa:6a:fd:7d:f7:b6:e3:
cb:f7:fb:3a:d7:56:1f:9f:ca:94:30:1a:94:f1:6d:c2:bf:84:
cc:3f:c9:52:34:ba:f2:09:7e:15:bf:92:2b:e7:11:c7:e6:8a:
39:fa:9a:a4:eb:88:4a:a2:9b:23:d2:0b:cc:cd:7e:c8:99:2a:
67:26:44:4f:b7:51:26:c1:d8:1f:f2:6c:fd:96:dd:31:d3:3f:
79:13:d9:93:70:66:5a:a5:4d:ca:60:2f:a5:94:d5:40:01:f4:
84:f1:81:0c:6e:b0:05:2f:5e:2a:0f:19:6b:b7:f8:ef:9c:c3:
a8:dd:1c:2f:3c:ca:6a:6b:36:9c:11:a8:d5:6b:06:77:8d:9b:
e9:3e:a5:82:e0:72:13:fe:d6:4e:e3:bd:3f:46:84:0a:75:66:
86:f0:ab:07:09:7f:66:ba:65:1c:68:65:aa:af:4e:f5:6c:92:
78:87:77:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 16:02:06 2025 by rpki-client