Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/0e105ac3-af6f-4c3c-bed4-67fb667826d6.roa
File: 0e105ac3-af6f-4c3c-bed4-67fb667826d6.roa (raw, json)
Hash identifier: 0i+qAM2ZrLUq1bzCM9PqijgI2/ZW9x1Jv0B3JlhiV+Y=
Subject key identifier: 06:57:54:5D:CC:A8:BB:C5:D7:9E:08:B0:68:12:BC:BA:20:C2:CB:9D
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 08E7A225A342F4F323470BEB1F7077F2774110C4
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/0e105ac3-af6f-4c3c-bed4-67fb667826d6.roa
Signing time: Mon 09 Dec 2024 00:00:00 +0000
ROA not before: Mon 09 Dec 2024 00:00:00 +0000
ROA not after: Mon 13 Jan 2025 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
08:e7:a2:25:a3:42:f4:f3:23:47:0b:eb:1f:70:77:f2:77:41:10:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Dec 9 00:00:00 2024 GMT
Not After : Jan 13 23:59:59 2025 GMT
Subject: serialNumber=b54e2cb78d0cdd563a14c9cec14c46bc5089ec53873d2f5c1e01c3e1277962fb, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:2c:fa:c6:1d:f3:03:67:90:9b:26:b0:5b:a9:
b3:8f:b4:cd:cf:56:f1:b6:ea:b1:71:3e:a7:4b:61:
0d:3a:0b:ad:bc:20:b3:d1:0c:7c:03:42:2a:3c:1d:
08:13:67:9c:6f:a7:73:04:d9:0f:50:3e:0e:ee:a2:
8e:c1:fb:92:22:29:9a:17:37:9d:3f:b3:6d:44:31:
88:a3:5b:e5:2d:7f:7c:63:ac:c9:f1:89:0f:05:06:
02:9e:9d:ec:e1:a3:d6:e1:f3:4f:49:aa:b8:67:29:
c9:b4:01:bb:aa:2c:45:33:7d:7f:88:6e:4d:46:8b:
fb:8a:31:dc:a4:bc:82:50:cc:96:ae:36:e8:b9:2b:
d1:29:45:f8:37:31:72:fe:5b:92:4d:a1:18:33:00:
ba:2c:33:96:48:70:35:cb:c6:81:f2:88:58:d0:d6:
78:eb:45:17:c1:e5:e7:2c:bd:0e:fd:b3:27:20:81:
b5:1b:fa:e7:9f:1e:24:e0:d7:f3:a7:7e:8e:be:a1:
71:13:d3:8b:97:9b:81:44:b3:01:20:57:f2:a9:7c:
fb:36:0b:31:80:17:12:41:9a:9a:98:4e:e5:05:bb:
4d:ba:4b:eb:04:bd:da:00:13:6c:28:c2:24:b0:0e:
94:de:98:9b:59:2c:93:4b:5a:19:99:88:91:de:67:
5b:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:57:54:5D:CC:A8:BB:C5:D7:9E:08:B0:68:12:BC:BA:20:C2:CB:9D
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/0e105ac3-af6f-4c3c-bed4-67fb667826d6.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
27:43:20:22:7f:09:99:af:4e:e6:2d:3f:f1:8f:98:6a:b0:ee:
eb:7f:c3:11:83:85:99:27:9e:8e:4c:0f:7b:5b:c0:43:99:58:
d3:43:a9:9c:ab:5b:a2:9f:8d:f4:10:1a:a6:03:f7:57:c0:c9:
fc:5b:13:01:16:a5:d3:96:3b:13:33:d7:2f:9a:fe:e6:97:5f:
06:1f:a6:cc:ad:8e:d2:dd:05:59:07:ad:86:8d:db:ae:94:5a:
10:08:dd:ab:e5:03:cd:c9:26:4f:ae:a4:d4:ac:09:43:33:50:
7d:f6:de:57:b1:72:82:60:e3:60:1c:9c:35:7a:93:d4:ad:ad:
af:34:3d:bd:5d:c7:e8:e2:34:7e:64:06:df:2f:07:16:c7:d5:
dc:7b:7c:6e:07:d5:e1:9e:bb:67:94:2e:cc:a1:f1:e3:ab:91:
7f:ee:5f:84:1d:91:70:58:b1:b8:a4:61:46:2f:56:d1:0a:f4:
35:80:26:42:fb:8f:cf:ad:36:ea:d6:98:6c:81:1b:c7:f9:ac:
08:4c:75:bb:e8:49:be:ac:78:18:bd:5b:32:49:dc:16:11:e7:
56:f4:31:46:b7:34:65:2a:36:ca:1c:00:ed:b4:87:ef:a0:c8:
4f:f7:82:ed:6d:ff:55:99:3f:0d:b8:b3:64:5d:4b:ef:ff:de:
c2:6f:23:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 16 13:13:54 2025 by rpki-client