Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/fe2c9f71-7a98-470b-ad24-5261a418b3a7.roa
File: fe2c9f71-7a98-470b-ad24-5261a418b3a7.roa (raw, json)
Hash identifier: WGSX4KlTs4l4KLOy9erd649XFQ2fFhrlNGNyFp6NYNQ=
Subject key identifier: FE:4B:1E:CD:B6:84:B5:4E:05:43:DE:55:B4:09:FA:F2:DE:6F:8E:85
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 201E52BA9F69635A27EB3723B08A32E192B78298
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/fe2c9f71-7a98-470b-ad24-5261a418b3a7.roa
Signing time: Wed 29 May 2024 00:00:00 +0000
ROA not before: Wed 29 May 2024 00:00:00 +0000
ROA not after: Wed 03 Jul 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
20:1e:52:ba:9f:69:63:5a:27:eb:37:23:b0:8a:32:e1:92:b7:82:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: May 29 00:00:00 2024 GMT
Not After : Jul 3 23:59:59 2024 GMT
Subject: serialNumber=18173776dd8fee78f817b568921fdc4bd309155026073f43246c2a348eb5a122, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:d9:09:20:1e:97:90:89:de:91:e0:1e:27:38:
ed:5b:bc:86:ce:bf:38:ea:be:b4:40:73:2d:23:82:
57:a2:5c:cd:14:2b:89:01:b4:4b:56:89:80:b2:35:
0e:27:a4:30:30:51:3f:90:88:02:fe:5b:4b:d7:50:
1c:1d:7d:d9:81:f2:d1:b1:6e:fd:31:73:2d:a1:b9:
bf:a7:ac:24:e6:6f:f0:06:2e:b2:00:a8:54:42:a8:
ce:ac:14:d4:4e:bb:22:96:b2:e7:75:b7:6a:e9:ca:
a2:34:11:2d:0c:5a:7c:36:15:95:da:fe:8f:97:25:
bf:be:30:de:19:68:ac:ef:cb:9e:1a:c5:8e:48:b0:
c0:c4:59:ea:31:44:6e:f8:ec:7d:f4:d7:c3:2a:82:
f9:11:3b:be:f9:dd:0a:f3:54:a0:1b:09:5e:c1:5f:
c5:48:33:20:89:1d:4f:9e:93:f4:ed:34:eb:41:61:
8d:19:77:16:73:da:8b:5b:2d:0c:20:ae:d9:39:8e:
27:6d:2f:2d:d2:a7:f6:e6:86:86:f9:5e:e1:31:a4:
f7:47:6e:30:00:66:3c:fd:20:40:b2:18:83:f9:f8:
5d:ac:7b:43:0c:93:f8:36:66:a1:4e:2b:6c:fd:8b:
e9:ff:7d:65:a6:7f:05:82:09:ac:b0:92:92:1a:1a:
c1:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:4B:1E:CD:B6:84:B5:4E:05:43:DE:55:B4:09:FA:F2:DE:6F:8E:85
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/fe2c9f71-7a98-470b-ad24-5261a418b3a7.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
72:15:0e:c7:31:d4:b8:cc:56:c5:6c:bd:f7:81:28:b0:d0:4a:
85:ca:88:5e:72:e8:f8:54:15:f0:2a:6c:d2:fc:d4:29:64:59:
07:03:42:2f:1b:cc:02:fd:5e:f0:19:61:b5:78:d1:54:61:54:
0b:74:75:91:9e:c4:90:90:fa:c8:ca:93:bb:68:3a:f1:da:82:
9d:42:71:3b:b5:6a:39:8f:92:71:fa:f7:aa:ec:a9:53:9f:8a:
a3:e0:77:e9:1c:b4:a7:1e:e6:c6:8d:e8:6a:6f:b1:9d:fc:a8:
db:86:0f:48:6e:74:56:bd:1a:7e:87:ba:af:2c:1f:fa:76:1b:
6a:35:32:00:71:8e:b1:e2:20:99:1d:57:bd:ca:22:de:b5:8f:
e0:1e:ce:ec:b5:37:94:27:7d:04:2e:fe:d1:d8:5a:cd:af:93:
17:73:d4:d7:b6:d1:25:a5:dc:d0:6d:57:c4:40:f5:05:14:e9:
ca:7c:6b:85:34:3b:ea:e5:ef:6a:25:e9:9f:50:f5:75:37:1c:
bf:4d:31:06:ec:49:e6:2b:ee:a7:b1:89:3a:4f:45:b2:b4:04:
21:80:3a:9d:5e:27:8f:e9:18:c6:09:cf:12:b3:a5:ff:d4:42:
f9:74:40:25:f6:8b:cd:21:b2:3f:03:d0:bc:78:ca:63:b7:35:
5a:d8:73:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 18:05:39 2025 by rpki-client