Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/d217ed7a-0d08-48fc-b3e6-2f5f0cc64be8.roa
File: d217ed7a-0d08-48fc-b3e6-2f5f0cc64be8.roa (raw, json)
Hash identifier: EYfvz5Yrdb42TqshuxuZ86Uhn7kdPtLx/q+c+JXnfUA=
Subject key identifier: 75:1A:3C:C0:8A:03:EF:97:EA:0E:FA:2C:6E:16:D9:99:00:61:95:9D
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 584992AB842FFA5ACB7263BDE3DC3091148ECDB5
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/d217ed7a-0d08-48fc-b3e6-2f5f0cc64be8.roa
Signing time: Tue 11 Jul 2023 00:00:00 +0000
ROA not before: Tue 11 Jul 2023 00:00:00 +0000
ROA not after: Tue 15 Aug 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
58:49:92:ab:84:2f:fa:5a:cb:72:63:bd:e3:dc:30:91:14:8e:cd:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Jul 11 00:00:00 2023 GMT
Not After : Aug 15 23:59:59 2023 GMT
Subject: CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:35:b3:98:07:0e:1f:42:ba:36:8d:2d:5a:9f:
45:1c:b3:b5:39:39:cc:9a:82:5b:3a:7b:85:ea:05:
c3:05:97:cb:da:e7:4f:e2:de:e9:90:c4:3d:d2:5f:
2d:58:4e:af:d3:ac:92:33:c8:e1:14:c1:8d:b3:8a:
bc:ed:82:fa:a8:e7:e1:90:64:9d:a0:60:a5:ab:6e:
a4:aa:d4:8d:1c:a2:74:5d:09:5e:33:3d:9d:92:48:
55:31:58:cf:1e:96:b4:ec:f6:b2:13:ca:7a:59:f1:
ca:d4:29:60:a0:42:05:b4:c6:70:6c:04:c1:bd:a1:
96:02:25:e0:44:47:97:e9:c2:46:63:22:47:4a:a6:
fd:34:11:ab:d3:f0:10:65:c8:04:99:5a:84:7d:a9:
4d:6c:51:c5:47:bb:3b:4b:ed:09:8b:44:92:ec:a8:
43:41:38:f0:0c:dd:b2:8c:84:06:0b:fe:d7:a0:af:
04:dc:ea:d2:06:f4:4d:b6:ee:80:8d:7a:99:71:c5:
b2:57:d2:78:8a:0a:82:1d:96:9d:e4:d7:2f:d9:38:
c5:36:f1:4b:fa:89:f4:8c:ea:e2:d1:23:f6:0e:e6:
b5:a3:cd:13:e7:c6:f6:3e:5a:36:ab:e1:34:f2:35:
c7:6e:60:42:4e:9e:1a:8f:2b:de:ba:7f:12:20:5c:
16:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:1A:3C:C0:8A:03:EF:97:EA:0E:FA:2C:6E:16:D9:99:00:61:95:9D
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/d217ed7a-0d08-48fc-b3e6-2f5f0cc64be8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
6d:63:5f:4d:3f:82:2b:73:2b:37:84:c1:5d:8d:67:fe:61:40:
74:b2:49:25:54:e1:2f:93:61:aa:77:f3:2e:31:b7:0a:30:65:
2d:13:ec:25:d7:ac:da:3c:ea:4d:d6:de:af:d5:8d:f1:66:53:
13:2c:a2:fd:8d:5b:ff:32:2b:a3:de:bc:b9:2d:f9:eb:0e:b5:
7f:bf:16:37:30:eb:f6:b7:58:f6:a3:32:c9:89:2b:01:4c:5b:
ce:dc:62:df:15:ad:b6:d7:07:c3:01:2d:a5:7d:9d:b9:61:38:
ff:db:78:ca:7a:ce:16:f4:7d:3b:dc:91:48:cc:6d:75:4b:0a:
06:ca:2d:ac:b2:1d:b2:99:a0:fd:24:36:c5:3d:b9:38:3d:3b:
3c:4f:94:2c:b9:9f:65:df:b3:24:0f:7f:c5:8c:59:31:ff:48:
24:36:12:ac:6b:29:b5:c3:90:e7:35:b8:09:4f:88:ba:d8:1c:
34:c5:02:97:89:68:6b:2d:53:38:10:ba:bd:2e:a4:d8:9a:34:
1a:92:c0:9b:bc:fa:0c:60:18:79:57:bd:2b:88:77:d7:49:81:
4c:c1:1e:d3:e4:db:f2:d6:58:ad:e1:0d:0f:02:21:d2:4d:65:
62:31:87:8f:1a:14:5c:3d:b3:8d:66:b5:23:bb:04:e8:74:2c:
29:6f:8c:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Feb 18 06:50:36 2025 by rpki-client