Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/43ed2122-a5ef-40f9-be68-e645a70fcc9f.roa
File: 43ed2122-a5ef-40f9-be68-e645a70fcc9f.roa (raw, json)
Hash identifier: k7o8vy2lHlt/JKOq9m8+Cse25tVXvKv1X9ychK9H/i8=
Subject key identifier: BB:CC:C1:7E:BE:D7:6B:17:84:8A:F1:21:46:7A:A0:F3:48:BD:62:D9
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 31354552D5F550A3FACEAD8ECFF05F72015E0CD3
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/43ed2122-a5ef-40f9-be68-e645a70fcc9f.roa
Signing time: Sat 02 Sep 2023 00:00:00 +0000
ROA not before: Sat 02 Sep 2023 00:00:00 +0000
ROA not after: Sat 07 Oct 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
31:35:45:52:d5:f5:50:a3:fa:ce:ad:8e:cf:f0:5f:72:01:5e:0c:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Sep 2 00:00:00 2023 GMT
Not After : Oct 7 23:59:59 2023 GMT
Subject: CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:74:d0:10:fc:58:0f:53:a6:f5:fb:a7:2d:7a:
f7:b9:8c:70:c8:ee:23:b6:78:9e:b3:4e:a2:f6:0d:
8b:96:07:29:08:41:70:13:da:42:09:a4:dd:1f:71:
fc:fb:f7:61:73:ce:e5:80:f3:ce:78:80:09:ef:59:
da:96:80:3e:a9:9c:d8:ed:1a:4d:79:d3:fb:1e:44:
8f:4e:15:be:fb:c3:af:5d:b4:06:54:cb:d1:05:86:
da:f6:db:fc:4d:b3:3c:04:9f:25:2e:34:8c:de:d3:
8c:5b:2d:60:c8:e0:86:8d:92:5c:06:5a:1b:85:90:
5a:13:7c:83:1a:2a:24:51:9d:d3:d3:8a:90:10:e4:
b1:d1:f3:0e:a8:83:32:ca:3d:99:b1:a9:4b:22:ad:
6a:ef:dd:0b:4b:49:52:1d:58:e2:2f:6f:59:b4:ae:
16:e7:5e:18:a3:26:42:5c:ba:19:8d:6c:41:ce:b3:
86:e5:0f:55:1a:60:c5:98:0a:6a:86:bd:53:a3:8b:
35:94:fb:fc:6c:bd:5d:59:f7:0b:68:57:05:c1:0e:
66:4c:1c:03:c5:64:4f:86:43:d3:81:28:e8:3f:dd:
bd:10:cb:15:5f:63:86:c7:9f:f3:e6:74:df:a2:3c:
c4:6b:82:54:db:cc:a9:42:81:19:2f:b7:7d:6f:ff:
aa:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:CC:C1:7E:BE:D7:6B:17:84:8A:F1:21:46:7A:A0:F3:48:BD:62:D9
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/43ed2122-a5ef-40f9-be68-e645a70fcc9f.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
75:c8:ef:e0:89:d6:1e:f5:f5:02:36:ca:6f:c0:ec:3c:5a:57:
5b:d5:80:9d:72:30:5f:dd:c6:76:1c:f1:ba:66:18:b3:7f:56:
df:7c:fd:d8:39:b3:47:c9:24:5e:82:17:8e:c3:3a:8b:43:7d:
64:57:47:3f:02:72:17:1e:10:ec:25:4b:0f:7f:01:c3:19:cb:
88:7b:a4:a2:ad:f1:26:64:b5:e9:ee:eb:ea:d2:8f:99:9c:b1:
e0:88:d8:b8:ad:0f:cc:ed:28:e6:86:c2:ea:52:bb:1c:b2:cd:
77:47:24:57:eb:c4:d4:54:85:29:8d:39:b1:8d:c9:6e:88:5a:
18:9a:83:52:e4:ab:f6:06:bf:48:ae:84:97:99:42:ae:12:5f:
1c:c4:1b:d2:7c:be:f8:15:88:1b:89:75:db:4f:46:44:f4:9f:
e0:e7:e9:ea:67:55:02:b1:b1:8e:ff:89:12:2f:39:be:a3:19:
b5:97:26:fa:fa:c3:d7:1b:a1:4d:4f:4a:36:14:42:d0:38:9f:
3f:41:1f:1d:d5:05:0a:a6:4e:34:45:0e:aa:52:9d:c1:4f:92:
45:b3:71:3d:9f:c5:92:40:71:9d:48:0b:f8:e0:43:14:fa:5a:
f0:c5:fb:3c:8e:fa:70:7a:5b:12:ca:f2:59:dc:c0:ec:79:50:
af:59:68:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Feb 18 07:02:52 2025 by rpki-client