Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/80ddebf5-db4a-48f0-b8b2-f21d96afc540.roa
File: 80ddebf5-db4a-48f0-b8b2-f21d96afc540.roa (raw, json)
Hash identifier: D5hjaVxFBbSZ3KjJAKiSAuHoXK28JHuI/YPoMaz54j8=
Subject key identifier: DD:37:E6:0A:6B:33:4A:28:32:BC:B5:15:34:8C:90:E5:43:91:5E:88
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 5DB4FBE9CC715BE0C64B97DEA840FFDC00B37125
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/80ddebf5-db4a-48f0-b8b2-f21d96afc540.roa
Signing time: Sat 04 May 2024 00:00:00 +0000
ROA not before: Sat 04 May 2024 00:00:00 +0000
ROA not after: Sat 08 Jun 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5d:b4:fb:e9:cc:71:5b:e0:c6:4b:97:de:a8:40:ff:dc:00:b3:71:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: May 4 00:00:00 2024 GMT
Not After : Jun 8 23:59:59 2024 GMT
Subject: serialNumber=d6a611efe8ebaecc08ce5226f302650281843c82c0695854759a2fb141eebff8, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:83:48:a9:fd:7b:41:47:ff:9f:89:06:3d:5c:
10:2c:c6:4c:6b:dd:f0:ff:e4:9c:51:b8:da:93:3a:
5f:37:23:52:ca:15:6e:51:44:39:38:55:c1:17:2b:
d1:b7:2e:91:d2:fc:07:71:e1:50:5b:ec:77:a6:6e:
53:1f:34:19:fd:d5:41:b9:90:43:9b:cc:64:e7:bd:
9b:da:27:32:a0:38:08:57:c4:79:31:01:98:32:30:
12:82:f5:b1:ec:d4:9c:de:0f:24:72:85:d1:15:6e:
43:b1:6d:d9:f2:50:1f:eb:ad:7b:21:d4:13:5b:ea:
58:75:55:99:03:3f:fc:ae:1a:f7:c1:de:d1:7e:7f:
b6:16:78:b7:b1:49:6d:57:3f:aa:74:35:30:6f:a0:
64:6e:f9:e7:d6:78:52:1a:12:64:da:d6:14:3b:18:
88:92:3b:de:34:3a:d1:32:f8:c3:99:1b:61:47:42:
ba:b2:46:78:e8:09:10:be:7e:7e:53:d1:8d:a3:bf:
d7:d4:a6:c2:46:b9:67:58:46:dc:8a:ce:5b:eb:f1:
d1:ae:64:95:38:44:90:c4:50:9c:f0:a3:2a:1f:ba:
8b:38:a0:a1:e2:6a:c9:f7:6f:8f:2e:39:e0:3a:65:
c2:27:d6:ab:00:46:93:65:67:7c:e8:4f:2f:46:6c:
cf:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:37:E6:0A:6B:33:4A:28:32:BC:B5:15:34:8C:90:E5:43:91:5E:88
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/80ddebf5-db4a-48f0-b8b2-f21d96afc540.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
54:64:af:22:73:83:5a:a2:58:9b:50:6c:1a:83:4b:11:8f:6d:
63:ff:98:82:cb:02:84:57:44:e8:92:6f:f5:48:7f:e4:9e:73:
ae:21:49:a0:7c:07:91:54:7e:96:26:ec:eb:b6:69:36:a6:3d:
ed:df:f0:20:0b:9d:ee:0a:7c:14:7d:09:16:ec:f6:50:e4:5e:
f1:43:ea:fd:b7:86:ed:54:b0:bf:5b:59:2c:3a:9b:4d:5d:7b:
a3:04:40:41:2a:9d:38:17:f6:79:9e:1c:e0:67:50:ab:a3:51:
5a:f4:ea:91:d1:0c:d1:87:82:71:f8:64:f1:20:c6:1f:dc:3a:
4c:90:2e:a7:89:74:1f:02:7c:be:52:fc:7b:84:0b:c7:b4:e3:
29:f0:27:16:56:63:fa:5e:36:5a:e7:6a:a6:f6:87:48:44:73:
6c:17:56:a8:dd:59:11:5c:2d:a8:d1:f6:2d:4b:81:af:9f:72:
3e:5d:0e:fa:39:36:2c:ad:90:3e:7d:7e:46:f1:1c:ca:4f:9d:
ee:a2:36:47:12:92:c3:27:f8:e7:67:96:24:b0:e1:d7:47:a8:
71:7e:e0:60:34:dc:01:c7:e9:91:d3:ab:7e:47:20:e2:f1:f4:
b5:ae:db:a8:7f:9e:57:b5:e6:2a:03:72:39:98:b0:0d:94:94:
ee:2d:3f:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 6 07:43:02 2025 by rpki-client