Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/eef1f61d-827b-4246-922d-9140de942e95.roa
File: eef1f61d-827b-4246-922d-9140de942e95.roa (raw, json)
Hash identifier: cye/gae2OKif+gFQLElBTY8oHev4hClCcNVdiAFwSZI=
Subject key identifier: 13:BB:5E:A9:BC:6A:2A:52:1D:95:1E:85:E1:4D:79:F2:9A:F8:41:D2
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 59EDFF0C4240DEF2BB22632C96C648DA4699E718
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/eef1f61d-827b-4246-922d-9140de942e95.roa
Signing time: Mon 04 Sep 2023 00:00:00 +0000
ROA not before: Mon 04 Sep 2023 00:00:00 +0000
ROA not after: Mon 09 Oct 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
59:ed:ff:0c:42:40:de:f2:bb:22:63:2c:96:c6:48:da:46:99:e7:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Sep 4 00:00:00 2023 GMT
Not After : Oct 9 23:59:59 2023 GMT
Subject: CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:ec:1f:04:9b:68:69:1f:5e:f4:c0:32:65:19:
59:ce:69:30:43:04:04:56:06:cf:41:33:6b:34:ee:
26:99:84:84:44:6e:b0:66:69:3f:2e:76:58:26:7c:
02:74:ad:05:81:4e:f2:a9:78:2c:3f:76:f8:a5:63:
42:44:2f:20:8e:6c:db:63:82:44:c1:ab:97:54:09:
66:b0:08:8a:9e:85:6e:f3:46:80:17:92:72:10:0a:
c9:1e:5f:9c:a3:45:74:d5:76:e9:e2:a6:15:b4:42:
72:4f:de:93:9b:72:a8:35:5f:7c:f2:6d:a8:89:00:
01:1b:95:2f:d5:ed:95:55:be:8a:ce:6b:f7:f3:30:
0d:b0:d0:15:c4:04:e4:6b:11:b4:25:da:b9:0e:bb:
eb:21:ac:70:bc:01:93:e1:b4:77:49:85:51:54:75:
ef:ad:0d:87:cc:08:3f:1a:7b:ac:e2:92:b5:e8:6a:
10:d7:6d:02:f3:1a:f4:be:f7:52:8d:27:4a:b3:90:
d7:fe:6d:96:c8:be:2a:ec:ce:48:3c:49:99:4c:ef:
c0:3c:6f:8a:09:8f:60:1e:04:09:a2:fc:9b:8d:fc:
df:8c:44:1a:97:45:35:81:98:30:6d:dc:fe:b5:46:
9b:91:8d:f9:6d:ba:37:ec:32:68:17:86:7b:80:12:
60:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:BB:5E:A9:BC:6A:2A:52:1D:95:1E:85:E1:4D:79:F2:9A:F8:41:D2
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/eef1f61d-827b-4246-922d-9140de942e95.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
7c:a6:0e:32:b2:30:bf:12:45:ba:64:f4:6c:b5:d1:75:63:b9:
59:2d:d8:82:53:46:74:80:3d:60:81:a4:21:85:11:e9:b3:c3:
dc:3e:3b:39:67:87:eb:26:d7:da:43:d7:de:f8:7f:f0:04:b6:
af:48:a9:71:b3:fd:d4:d9:c1:37:b1:82:2c:e0:f6:5e:9f:d9:
85:80:00:29:96:a1:51:e8:05:0a:14:d7:ce:80:96:91:95:6a:
0c:6a:3e:90:ea:ae:02:70:bd:b0:24:70:21:ca:12:f4:f0:00:
d0:53:5e:55:dc:bf:a6:44:36:cf:96:07:57:87:0c:fc:c4:b5:
c4:6f:4a:8f:81:45:24:21:dd:fe:91:73:92:7b:59:d4:eb:83:
44:0f:58:e3:79:7d:b8:3d:ed:69:2d:51:25:01:78:d2:1e:0c:
19:6f:ad:ec:c7:a4:30:6d:f1:06:12:da:b1:08:8f:76:73:ef:
e0:61:da:ee:ba:be:0a:be:ed:ab:cc:1f:15:e7:27:bb:3b:41:
00:c8:82:65:80:87:c0:90:5d:de:ea:80:0e:6e:34:ac:3f:ee:
cb:34:56:17:89:1b:65:da:9a:30:a3:8f:b0:73:fc:2c:a2:18:
63:58:59:57:72:8a:3a:0c:25:55:9c:50:aa:13:6b:79:6b:57:
47:f7:0e:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:12:07 2025 by rpki-client