Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/ef05d0cf-e790-4754-aa88-1e70938f8ba2.roa
File: ef05d0cf-e790-4754-aa88-1e70938f8ba2.roa (raw, json)
Hash identifier: MPetj4WXJOYxAKUleLKfQV0i23CJHuGKuCFe/zKb65A=
Subject key identifier: 1B:7E:BF:0D:24:AE:EC:34:32:3A:3C:CB:8F:08:B1:0F:2D:9F:1D:4D
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 01ADB59B0F463F9E12B4F893CB334031090FDED9
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/ef05d0cf-e790-4754-aa88-1e70938f8ba2.roa
Signing time: Sun 07 Apr 2024 00:00:00 +0000
ROA not before: Sun 07 Apr 2024 00:00:00 +0000
ROA not after: Sun 12 May 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:ad:b5:9b:0f:46:3f:9e:12:b4:f8:93:cb:33:40:31:09:0f:de:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Apr 7 00:00:00 2024 GMT
Not After : May 12 23:59:59 2024 GMT
Subject: serialNumber=13441bc2b43d3bdb120dade71b424fb7f2d9a76a0af97a8ff55a40803d3f627a, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:e0:f3:e8:43:a0:3a:43:ef:66:ad:c8:20:fc:
7d:40:86:f9:49:48:db:05:39:bc:2a:f1:82:8c:08:
21:5a:62:6d:bb:95:12:9d:5b:5e:81:49:45:a0:a2:
96:b0:db:51:f4:bb:63:04:d2:b4:97:b6:9f:67:c7:
63:32:6e:64:31:4a:f0:0d:a0:72:8c:c3:17:d9:77:
f4:cb:03:44:60:89:64:40:bf:02:a0:98:13:b6:17:
2b:dc:dc:1c:c9:42:b8:7a:7e:36:18:01:70:09:ef:
d3:e7:ba:5a:04:b4:f3:21:34:d2:70:97:89:ea:0c:
a5:53:e6:ef:1e:30:a4:cd:83:04:16:9b:18:84:16:
f3:cb:b2:18:f5:60:53:63:bb:c3:b3:58:4b:f9:be:
75:01:6e:81:11:0a:e6:95:3f:23:f9:a9:a6:37:18:
81:59:00:13:da:63:d5:57:dd:86:04:d8:cf:86:a7:
dd:76:ad:aa:fa:0f:3a:be:2d:57:1c:c0:cb:30:54:
61:ff:56:54:75:a5:27:9f:17:15:2c:e7:36:00:65:
7e:c6:a5:17:a6:e5:7f:eb:1b:3a:5c:89:1b:b2:27:
1a:80:c0:1e:86:df:ff:4d:81:65:92:df:27:26:61:
ac:94:9b:52:f1:96:4c:90:38:53:e9:bd:d2:28:89:
7e:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:7E:BF:0D:24:AE:EC:34:32:3A:3C:CB:8F:08:B1:0F:2D:9F:1D:4D
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/ef05d0cf-e790-4754-aa88-1e70938f8ba2.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
6b:63:f8:5a:b7:00:13:59:39:00:5d:b2:d7:92:d4:82:90:d3:
2d:a7:fa:9c:ef:23:92:94:2f:04:18:c8:e5:75:70:ce:4a:96:
2c:ac:23:27:4f:d0:fb:e5:6e:16:4d:33:c5:85:92:13:6b:d3:
35:f8:a0:d6:42:69:f7:0a:f4:d5:19:28:d5:b8:1c:af:89:78:
e8:e0:dd:41:9c:a5:0d:d7:47:de:a4:7f:46:9b:94:0a:66:32:
79:ee:49:8d:25:90:85:b0:1c:fe:46:0d:2d:46:e7:09:59:d7:
05:53:ec:91:83:35:13:42:bc:2a:17:c3:6f:5a:9e:7e:86:8c:
26:fc:ab:47:cf:22:8e:3c:77:7c:39:2c:90:9a:79:86:99:4d:
0e:43:cb:5c:71:96:5f:0d:fd:9c:b8:42:c7:5f:f5:76:a2:12:
3a:f9:20:28:64:75:49:7a:9b:58:16:15:b4:74:c3:dd:e9:65:
2f:3e:ca:21:c3:b3:98:6d:37:5b:8d:74:01:85:37:60:de:f0:
68:5a:5e:fc:f3:56:c5:28:63:65:28:17:66:96:b6:a0:dc:d6:
12:a6:9f:25:13:8b:b1:c6:8a:2f:ce:2b:36:c5:e2:4f:01:13:
5a:f0:6c:e3:e9:a4:28:ca:0f:68:00:20:80:c3:77:31:27:8b:
0b:22:f1:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 9 18:49:33 2025 by rpki-client