Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/2724b60e-1627-4e48-8ebc-a2c4d98eb092.roa
File: 2724b60e-1627-4e48-8ebc-a2c4d98eb092.roa (raw, json)
Hash identifier: aYOHdKw3GU/vRW/2KR2GlfSglLFzAcGGVXIARTMf7Hc=
Subject key identifier: DB:B7:0D:1A:EC:E4:DC:8B:2D:B7:C2:1A:8F:C5:9A:85:2E:8A:01:CE
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 6D38CD30554A4B114453A0C97F0324EDF40CD19E
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/2724b60e-1627-4e48-8ebc-a2c4d98eb092.roa
Signing time: Thu 11 Jul 2024 00:00:00 +0000
ROA not before: Thu 11 Jul 2024 00:00:00 +0000
ROA not after: Thu 15 Aug 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6d:38:cd:30:55:4a:4b:11:44:53:a0:c9:7f:03:24:ed:f4:0c:d1:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Jul 11 00:00:00 2024 GMT
Not After : Aug 15 23:59:59 2024 GMT
Subject: serialNumber=55fff916c1f7d001bd00318d28f67052791e62a042da6f0e2a00ec90b449100e, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:fc:43:fb:33:60:79:fe:8c:bd:f9:c1:af:b7:
61:f0:57:2c:ea:5f:4b:14:db:ab:51:60:08:20:d8:
a3:e8:24:c9:be:69:4c:17:95:ed:f7:b0:63:a2:24:
81:54:29:6c:f5:78:7e:2c:46:1b:c3:ac:ae:72:e6:
86:f1:e7:eb:50:85:c5:51:65:cd:e9:3a:1c:ef:60:
57:5b:54:f8:ba:62:6d:27:5d:97:d2:2d:97:7a:bb:
8f:14:d8:42:28:22:5b:98:79:59:95:e5:e7:e9:33:
4c:e9:fb:6d:80:ff:e4:76:11:5b:80:f0:58:0c:26:
22:5a:0b:24:c2:88:99:e6:76:75:13:7e:75:77:d7:
b4:65:67:a0:63:75:e9:36:aa:ac:9b:f9:da:b4:b2:
04:a6:38:e5:1c:f0:1d:d8:9f:e1:e5:c4:c8:a7:b4:
d0:e4:80:ea:b5:e5:72:c1:6f:8e:42:db:ea:36:0c:
90:97:b1:15:5e:db:f1:9a:ce:cb:a0:28:98:8a:8b:
ea:db:3f:4c:eb:52:da:82:d7:67:49:83:45:1c:ba:
47:15:9a:50:01:87:0a:3b:88:57:53:8e:1d:c5:90:
4f:bc:f5:84:84:9c:0a:34:c0:88:e4:ce:76:62:14:
e5:df:f2:ab:96:4b:82:22:1e:3b:f8:63:f4:28:cb:
42:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:B7:0D:1A:EC:E4:DC:8B:2D:B7:C2:1A:8F:C5:9A:85:2E:8A:01:CE
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/2724b60e-1627-4e48-8ebc-a2c4d98eb092.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
87:e6:00:53:aa:dc:ca:64:5b:27:14:a2:fb:48:04:f0:83:b8:
56:a5:3e:39:13:82:31:2d:62:b1:d6:61:a3:8b:34:06:74:ae:
dc:40:5d:0d:20:13:42:cd:4e:f4:10:bd:65:49:96:67:2a:58:
78:55:9b:0d:9e:14:f5:54:75:0a:87:7c:55:57:27:d7:8f:19:
4d:b6:85:eb:89:20:aa:09:fa:b2:2f:12:4a:b1:3b:2a:3b:55:
d5:3b:55:cd:c3:ff:6d:71:58:53:e7:5a:a8:46:a8:9c:c5:af:
89:36:92:40:81:36:1d:b6:68:52:62:d5:9c:c1:ed:3a:9e:55:
61:b8:6a:75:8c:cf:da:48:ea:b2:f0:8b:51:4c:7d:2b:7d:40:
f2:6e:41:0e:0a:33:9d:c0:75:34:f3:d8:a8:fa:fe:5f:50:47:
f7:17:11:13:df:79:d3:e7:20:f2:ef:3e:27:d3:0c:da:73:12:
3f:f4:14:b4:1a:89:3b:49:59:ca:de:1d:a5:09:65:fb:26:a1:
8c:b1:05:e5:92:95:92:14:b6:94:58:a9:c3:50:24:b8:fc:07:
f0:af:20:ce:61:0a:79:66:67:7f:07:42:ff:e1:3f:91:44:b6:
23:bc:e2:07:a6:97:be:35:4d:05:96:ba:ca:99:f4:ed:c3:79:
83:6e:93:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 6 19:57:31 2025 by rpki-client