Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/f7b98654-a9b3-41e0-ab02-31ce696d16a6.roa
File: f7b98654-a9b3-41e0-ab02-31ce696d16a6.roa (raw, json)
Hash identifier: mKJSxdN+2uOBclDEwoqe+pfHYPH25vmLc+xARzlirt8=
Subject key identifier: 6F:6B:4C:40:3F:55:02:82:65:3B:06:DD:8E:90:48:9C:F4:E8:A2:8B
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 0FA8E54EADC18354BB6DF3828BC5C8DF9536BCB7
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/f7b98654-a9b3-41e0-ab02-31ce696d16a6.roa
Signing time: Fri 22 Nov 2024 00:00:00 +0000
ROA not before: Fri 22 Nov 2024 00:00:00 +0000
ROA not after: Fri 27 Dec 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0f:a8:e5:4e:ad:c1:83:54:bb:6d:f3:82:8b:c5:c8:df:95:36:bc:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Nov 22 00:00:00 2024 GMT
Not After : Dec 27 23:59:59 2024 GMT
Subject: CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:43:23:05:ea:75:9e:08:6a:f2:e5:b7:60:85:
c3:78:4a:d2:fb:37:4c:22:63:6d:e3:2e:5c:86:64:
4a:47:df:1d:d8:97:26:ad:c8:65:17:2a:e0:54:04:
39:72:8d:c7:34:e6:0e:fb:df:8c:22:1e:ff:96:03:
d4:6d:c1:1a:84:80:dd:98:17:ea:73:16:67:17:80:
61:89:e1:cd:2c:b6:e2:37:b5:26:8b:f2:1e:cb:1b:
87:4c:5b:2c:cc:54:8c:07:7f:4b:1c:48:b2:38:fc:
5b:dd:9f:ff:e3:23:0a:e9:4e:24:5b:53:d3:87:d7:
dc:fd:b8:01:09:0f:18:52:94:3c:03:cc:b5:80:9a:
36:72:1c:59:13:8d:2a:03:4d:3a:2f:79:8b:83:91:
74:e0:5f:2c:df:bd:17:c5:8b:85:bd:75:63:49:79:
1d:8c:e0:dd:df:02:35:44:fd:c8:00:5e:9b:52:86:
11:bc:7d:28:e1:a7:61:e2:be:a7:3b:b6:84:f0:59:
71:fb:84:26:61:94:2c:0e:77:b7:0e:6f:3d:c4:9d:
6f:4b:93:b9:61:79:91:39:b6:ba:1b:d5:14:44:ec:
99:ab:f1:b3:6d:6c:ef:fe:bb:10:7c:74:6d:56:97:
c2:93:41:26:c0:f2:68:8d:8f:9b:30:07:f1:e9:93:
26:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:6B:4C:40:3F:55:02:82:65:3B:06:DD:8E:90:48:9C:F4:E8:A2:8B
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/f7b98654-a9b3-41e0-ab02-31ce696d16a6.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
57:00:e4:68:c3:24:57:a0:d5:80:2b:3c:81:e5:1a:61:f7:e5:
e6:f8:73:0d:a5:a4:2e:74:9c:c6:b0:a0:c2:55:68:82:4f:82:
1e:c5:e7:f3:a6:6c:2b:fc:75:0d:6d:78:7d:56:64:34:8f:f4:
93:1f:e3:b4:88:df:11:70:cc:8e:f1:cc:24:b5:47:aa:f9:14:
09:97:6e:dc:c2:d6:07:42:e8:84:b6:9a:c6:db:31:85:9a:58:
91:5e:5a:ee:35:58:fb:ea:da:f8:78:9d:4b:71:1b:ed:fc:f1:
46:e5:a1:25:c2:60:3b:61:96:86:b9:7b:9f:bc:11:35:29:0f:
5e:22:f6:8b:59:56:d1:8a:04:b4:45:3b:76:81:55:a3:62:5d:
0d:e3:3c:60:e7:5f:0e:0c:14:71:82:5d:04:c5:89:ba:07:7f:
cb:72:dc:69:c2:dc:26:85:a6:ea:fb:b8:9a:9d:dc:47:fb:f4:
92:f0:94:5b:10:58:f3:93:17:bc:60:99:d1:53:13:26:b8:61:
4b:bc:b5:f2:c9:a8:35:2f:36:5a:59:f4:c1:bf:eb:92:c8:0f:
2d:b3:ee:1d:4d:1b:c9:48:52:64:61:fd:84:38:8f:c6:cc:47:
44:1a:32:af:14:0b:6e:0f:25:6b:ba:37:e4:63:b6:e4:04:2c:
3b:d0:50:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Feb 18 06:56:26 2025 by rpki-client