Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/26776ae5-11f2-4510-8fac-e82687fb8cb7.roa
File: 26776ae5-11f2-4510-8fac-e82687fb8cb7.roa (raw, json)
Hash identifier: 7sC4qR4pUJoI1W/5LLYpWcJ2bz97+VlZi/uvTlC/nq0=
Subject key identifier: A9:76:FD:9B:78:E4:16:1D:60:C1:09:E0:B4:22:A8:F2:19:0B:77:A7
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 3B0E5A743A74AF54C2B56C93A571251CD454A2D3
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/26776ae5-11f2-4510-8fac-e82687fb8cb7.roa
Signing time: Sat 08 Mar 2025 06:23:20 +0000
ROA not before: Sat 08 Mar 2025 06:23:20 +0000
ROA not after: Sat 12 Apr 2025 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3b:0e:5a:74:3a:74:af:54:c2:b5:6c:93:a5:71:25:1c:d4:54:a2:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Mar 8 06:23:20 2025 GMT
Not After : Apr 12 23:59:59 2025 GMT
Subject: serialNumber=66d2b8a0ef8c367feb4f4a18282635814d3c62fd42fda17a835c788ad31d0747, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:83:96:f1:77:7f:62:40:e5:53:51:f2:e2:50:
1a:10:e1:9b:b8:37:ba:ad:0a:02:a9:9f:7a:63:55:
cc:be:a5:41:96:cc:e2:1b:24:3d:17:ad:6a:92:49:
ad:d5:cd:f4:0a:4e:33:ac:a1:89:0a:49:e8:53:70:
b3:e8:50:c7:cd:1f:4f:1c:a9:44:8d:c0:d7:86:2c:
48:a7:f9:a8:9b:b4:64:fd:f6:2d:f9:50:3e:8a:81:
23:cd:f3:41:3b:0e:4f:44:3a:16:4c:07:10:33:86:
8c:1a:d6:4d:68:ca:05:51:af:ea:c0:43:d9:81:71:
09:2e:f9:32:59:b7:32:b0:a2:55:da:b1:cc:9c:f8:
9b:6e:98:84:34:06:6f:be:36:af:90:d3:a7:3b:71:
07:57:5b:3c:ff:12:fa:3a:c2:72:d6:03:02:ba:37:
38:66:a3:ee:7d:c2:e3:51:34:fe:5b:0c:6b:c5:de:
39:81:5c:04:34:c2:c0:44:b6:a6:83:36:ba:c2:53:
4e:90:c7:a3:8c:1e:9d:64:38:1d:ad:56:77:bc:67:
41:bb:64:63:0e:d5:0c:c9:88:0c:34:fa:33:8e:34:
37:e1:cd:aa:c6:db:ef:40:42:54:f6:62:c6:6f:4f:
75:a3:78:7f:65:b0:96:a2:14:98:b0:31:04:7d:fc:
65:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:76:FD:9B:78:E4:16:1D:60:C1:09:E0:B4:22:A8:F2:19:0B:77:A7
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/26776ae5-11f2-4510-8fac-e82687fb8cb7.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
5e:21:b9:04:c4:7e:81:da:a7:22:ed:55:dd:46:00:68:eb:38:
87:1a:f9:e6:54:62:4e:cb:29:2a:db:12:ba:14:ae:80:e9:a5:
28:70:b4:e7:55:b7:a0:5e:2c:45:3d:00:a0:cb:f1:b8:5a:e2:
03:75:9b:6e:c5:1d:81:8a:67:a3:ec:95:92:29:49:73:4a:ed:
78:ac:0c:57:ba:03:83:e6:cd:ae:85:74:84:bd:d4:74:4b:20:
19:f6:1b:ff:cd:53:9c:71:d2:40:c4:03:6c:36:ce:e0:3e:7e:
46:1c:02:4d:63:65:b2:42:9e:46:ea:5d:da:da:8c:50:e7:09:
b3:d2:a8:35:97:ba:a6:92:11:3a:69:9b:6b:7d:98:61:0f:95:
e8:6a:b4:9c:3c:e1:0e:24:eb:f8:0e:54:69:b4:a0:02:f9:ea:
ed:90:7d:4b:6e:d3:34:1c:1e:c0:a5:21:a6:ef:a4:96:af:d4:
66:dc:3b:0e:14:ea:4a:25:de:49:38:94:09:bf:4c:6a:56:ca:
75:c9:9d:63:0e:c4:f5:4c:b5:8f:6a:f3:b7:20:7f:1f:a4:f6:
9c:ec:1b:5f:60:12:82:99:fb:5c:f0:d9:8e:e2:a3:59:31:c6:
a3:2e:a7:c7:36:5c:d8:6f:69:5e:cc:a0:3e:04:d3:7f:91:bf:
85:9b:0a:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 07:32:01 2025 by rpki-client