Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/811a04d4-6bc1-4237-8987-b09079a086fd.roa
File: 811a04d4-6bc1-4237-8987-b09079a086fd.roa (raw, json)
Hash identifier: kEMDA3Eo4//wZv33cwMScFQCq5iH369wQBToCqfjcis=
Subject key identifier: 4C:AB:03:9E:F0:21:08:D1:12:3B:E7:70:67:4C:06:B1:50:F3:D5:1F
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 34BAA330ED53E9F8699B323E7DC5FB149972DFA0
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/811a04d4-6bc1-4237-8987-b09079a086fd.roa
Signing time: Sun 13 Aug 2023 00:00:00 +0000
ROA not before: Sun 13 Aug 2023 00:00:00 +0000
ROA not after: Sun 17 Sep 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
34:ba:a3:30:ed:53:e9:f8:69:9b:32:3e:7d:c5:fb:14:99:72:df:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Aug 13 00:00:00 2023 GMT
Not After : Sep 17 23:59:59 2023 GMT
Subject: CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:ec:e4:ba:a2:cc:6f:35:6a:63:09:ab:68:b3:
3c:c1:16:80:99:c2:94:4b:d9:00:d6:fa:d5:58:7f:
ce:56:46:42:b0:6d:43:6d:d5:58:61:7d:65:d0:f5:
be:4f:4e:82:f1:23:e3:f0:a1:29:3d:8c:58:c8:3c:
17:2e:f4:a6:4e:41:19:39:35:b4:ef:18:60:89:31:
46:65:7f:81:51:69:ba:19:79:c6:ed:32:a2:eb:cd:
04:b3:1c:1f:06:7a:cc:2e:44:fa:c2:8b:17:76:58:
79:a2:17:76:f7:67:29:b4:f0:4a:9b:79:39:99:c9:
3d:d5:25:98:a0:c0:83:80:05:ac:94:53:9a:61:d3:
f4:a7:24:1e:f9:5f:fc:ab:36:9f:04:ff:01:4d:1f:
3c:3b:9f:64:7f:42:8b:82:0b:06:3e:94:bb:62:b0:
94:93:9e:b3:f4:39:18:4a:21:68:eb:47:2c:51:23:
88:89:48:f1:69:2e:e6:6c:bb:65:16:9b:fd:21:27:
89:b7:ea:41:b3:04:88:df:a0:ae:61:f0:77:0d:ee:
64:f6:11:0d:fd:e7:55:b4:5b:59:fa:2d:fe:a9:7e:
69:92:fc:d7:a5:a5:57:56:8d:ef:9a:e5:4b:71:48:
67:29:df:b8:1f:34:08:71:64:bc:a3:d5:b5:a2:24:
ac:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:AB:03:9E:F0:21:08:D1:12:3B:E7:70:67:4C:06:B1:50:F3:D5:1F
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/811a04d4-6bc1-4237-8987-b09079a086fd.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
90:b1:11:49:83:70:80:51:e5:7e:0b:82:c9:6b:5b:6c:ac:a9:
b2:92:e6:4a:43:e3:e1:b4:0d:1b:8c:46:ac:93:f0:7d:d0:d5:
d4:31:ee:6a:7c:5f:fa:b5:48:b4:6c:a6:94:26:71:b3:74:6b:
5b:74:d0:8e:bc:0e:f7:8b:1a:f2:3e:2e:a6:31:24:76:a1:9e:
28:20:f6:67:bd:91:ed:88:91:2b:4a:d9:83:68:e4:00:14:f9:
87:3d:2e:b4:11:26:76:12:c2:86:75:14:31:18:91:7c:82:be:
2c:8d:4a:79:37:51:6b:08:a3:c1:0c:c4:cc:a0:69:f9:d7:f4:
58:58:03:11:0f:c7:a2:a5:e7:82:b7:ae:2e:69:7b:4c:e7:6a:
cd:68:4e:77:34:64:9d:ef:4c:2e:2b:7c:3f:07:08:be:8a:83:
24:96:77:78:23:73:3c:50:47:e6:f0:17:4e:62:bb:d4:05:21:
6f:c4:f5:51:3d:78:3e:b1:49:03:57:6e:1e:fe:e3:82:7b:92:
0c:d3:fc:4b:90:96:dc:bd:21:3e:11:44:c1:d9:23:0f:47:5b:
cd:93:9d:35:26:49:5d:84:39:d8:7f:7d:26:b1:85:db:a8:0a:
2e:35:8f:1c:03:cb:0f:99:98:10:a9:f2:6a:21:02:cd:03:c5:
6a:66:e5:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Feb 18 07:01:27 2025 by rpki-client