Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/0d2dbfae-409b-4285-89cd-67bfdab1fe15.roa
File: 0d2dbfae-409b-4285-89cd-67bfdab1fe15.roa (raw, json)
Hash identifier: Uxd639bRBvCkiF9UdG2eL/JGdzckJF2v4BWmmvcVrw0=
Subject key identifier: 0D:FD:F8:51:C7:36:36:3D:92:C9:F2:BE:91:68:B7:DF:4E:44:9C:E4
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 5C5A06590E63538D3577F2B9AE19964B6C709C6C
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/0d2dbfae-409b-4285-89cd-67bfdab1fe15.roa
Signing time: Sat 15 Jul 2023 00:00:00 +0000
ROA not before: Sat 15 Jul 2023 00:00:00 +0000
ROA not after: Sat 19 Aug 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5c:5a:06:59:0e:63:53:8d:35:77:f2:b9:ae:19:96:4b:6c:70:9c:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Jul 15 00:00:00 2023 GMT
Not After : Aug 19 23:59:59 2023 GMT
Subject: CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:7f:13:42:22:bf:b6:f9:af:12:f3:e1:5e:d7:
d5:ab:dc:14:6b:07:0c:55:bd:73:a1:e4:45:b0:b2:
24:9b:36:b5:dc:a6:d6:4d:38:29:fa:e8:2f:9e:43:
45:f2:60:5a:a6:2d:ae:57:a0:fd:da:c8:74:4e:9b:
c2:ad:75:02:a8:69:33:e7:e9:fb:bd:ef:8b:ce:54:
6a:9f:7a:c1:7b:66:8d:f6:53:ba:75:e3:6c:fc:b7:
4d:e5:48:1c:96:34:7c:a9:fa:ec:e0:6d:00:8f:50:
67:ee:ed:29:98:bd:eb:c3:6c:ca:b5:2c:c0:37:f6:
bf:5a:d0:f5:d0:70:04:e4:8a:89:a9:c7:58:11:18:
bd:c1:7b:2c:4b:f3:94:b9:2e:6e:d1:f2:e8:51:56:
d6:87:c0:a5:cd:51:60:38:6a:b2:0c:da:48:54:1e:
e9:cb:db:23:6a:49:b0:b0:74:78:f2:4a:80:ab:89:
cb:ae:9f:15:35:32:51:c3:59:c1:50:82:d7:66:bb:
4e:81:4e:64:00:23:63:13:20:eb:a7:b5:f4:0f:29:
5c:ee:54:84:fe:fa:64:71:a7:f5:60:9d:48:4a:fb:
17:d6:3b:0b:f2:ea:99:46:53:6c:7a:f4:e7:e7:2e:
9c:05:87:98:47:85:32:67:ef:2c:7c:9b:4e:98:33:
7e:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:FD:F8:51:C7:36:36:3D:92:C9:F2:BE:91:68:B7:DF:4E:44:9C:E4
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/0d2dbfae-409b-4285-89cd-67bfdab1fe15.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
60:fc:09:81:af:79:66:f5:6d:a4:37:6d:5b:5e:49:78:e5:76:
16:6a:98:04:db:84:92:3c:ab:14:7c:5e:03:de:8e:ae:d5:e4:
6b:85:11:a3:10:a4:9a:e5:7d:d9:41:19:cb:2c:1b:0f:4d:8e:
8a:eb:7c:ac:cc:bc:02:19:52:e2:af:c8:60:7e:f1:4b:96:8f:
5f:da:c2:12:3d:ed:b3:c0:07:65:98:3d:d0:00:83:27:94:0d:
cf:35:02:ce:09:74:5e:41:92:28:46:15:89:c2:ac:a5:5d:2c:
2c:54:60:83:e9:81:86:d5:87:15:75:14:26:01:07:b0:db:c9:
72:39:1b:1e:aa:66:98:e4:43:ba:9a:81:a4:79:f5:92:f2:db:
ce:30:fd:c4:9e:8b:d5:4f:e8:7d:17:51:d8:43:e0:e5:fa:08:
11:66:dc:52:db:61:4e:e2:83:7a:ee:18:dd:2b:5b:2e:86:c1:
da:b5:6c:56:aa:f9:55:76:88:1e:36:52:7e:0c:b0:b1:27:70:
cc:d4:a1:24:79:57:f5:34:ea:77:1c:ce:0a:68:03:93:b9:b5:
6a:43:31:17:bf:5a:d9:82:05:7d:ba:c9:21:25:3c:d9:24:42:
f2:41:85:58:bd:46:b9:ad:85:31:69:10:14:06:08:07:fc:6a:
a3:ad:b3:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Feb 18 07:02:54 2025 by rpki-client