Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/14ab73e0-d1cd-4233-bed8-49e17285360d.roa
File: 14ab73e0-d1cd-4233-bed8-49e17285360d.roa (raw, json)
Hash identifier: mHrL8h5YGyHDtIax3Y5rivNWS5MWn053on5BGCdFkNk=
Subject key identifier: 92:54:E8:D7:63:09:04:BE:27:56:B6:13:98:3B:D1:F5:1E:E1:33:9B
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 7A7CF8A6734C786DD143980F0263F26CB2033BCA
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/14ab73e0-d1cd-4233-bed8-49e17285360d.roa
Signing time: Sat 28 Sep 2024 00:00:00 +0000
ROA not before: Sat 28 Sep 2024 00:00:00 +0000
ROA not after: Sat 02 Nov 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7a:7c:f8:a6:73:4c:78:6d:d1:43:98:0f:02:63:f2:6c:b2:03:3b:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Sep 28 00:00:00 2024 GMT
Not After : Nov 2 23:59:59 2024 GMT
Subject: serialNumber=650c3c5e7b2839cb5a2ef565165ec93ada8f9c8096b8aa7a05731aa365a55026, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:e4:29:dc:c3:65:6a:d4:f1:ca:97:be:8d:bf:
7d:86:74:42:31:33:97:f4:3d:0b:b2:2b:c7:a2:50:
cd:75:4c:25:74:e6:74:a8:a7:7f:37:3b:57:c1:81:
e4:b1:f1:3b:a8:85:25:2b:1c:b5:b5:2f:5e:4a:fd:
09:44:ae:a9:4a:ce:62:02:bb:70:81:57:4c:ec:33:
9e:17:e0:dd:d2:c3:d6:d8:ed:c5:b7:c6:db:ad:fa:
ca:5f:65:1a:1e:53:1b:c2:3f:ed:de:6d:36:6b:2c:
21:ad:f0:47:3f:30:e4:60:6d:2d:23:c7:81:3a:6a:
51:05:0b:19:48:17:4d:29:89:72:60:de:7d:fa:b7:
29:77:da:a2:71:40:49:d1:d9:11:2d:a3:e7:08:d8:
d5:ba:b6:57:23:52:72:9a:7f:d0:0a:65:94:2a:74:
55:b1:ad:0a:e4:e6:b3:c4:0a:ef:cb:49:ee:8f:0e:
86:3b:d3:0b:f2:1e:8c:7b:13:e7:94:e3:24:25:6a:
eb:a1:c0:40:e1:3b:91:0c:62:ab:ff:a0:a4:e7:39:
b3:74:b1:f1:26:51:50:cc:67:55:3a:40:b6:29:13:
22:df:a3:b8:7d:a4:6e:22:77:1c:d3:9a:f3:fb:ce:
5d:c6:8f:41:c1:ff:12:3c:9a:d3:9b:4b:e9:eb:e2:
45:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:54:E8:D7:63:09:04:BE:27:56:B6:13:98:3B:D1:F5:1E:E1:33:9B
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/14ab73e0-d1cd-4233-bed8-49e17285360d.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
62:5b:76:3f:0c:66:e7:8c:42:9f:6e:c7:44:35:c3:7e:99:18:
00:bc:7b:ab:2b:57:8e:ed:44:28:1c:24:f6:88:a6:e0:15:30:
30:dd:97:4d:eb:ce:99:06:bd:fa:14:fb:d1:49:da:56:8f:f8:
47:ec:69:7f:43:ed:97:2c:ce:d5:85:c3:27:71:7f:f3:f5:9d:
2e:65:77:88:d2:f4:7b:18:95:fe:64:a4:49:9d:68:a3:b7:51:
86:b2:49:50:44:00:c5:b2:7f:96:7c:ca:d4:c5:30:01:cb:2e:
a4:71:7e:9e:b5:fc:a2:18:70:94:d3:94:01:c7:55:13:e3:de:
a5:51:46:74:02:05:0c:0c:2f:e7:1d:c4:d2:71:aa:47:21:a4:
69:2a:b1:76:0a:69:1d:2d:ba:d5:e7:e0:32:9a:55:ab:c7:09:
6d:01:6d:06:1e:01:dd:48:1d:81:6a:2f:2e:1e:f0:04:ab:d7:
3d:2e:6f:6e:98:6e:45:97:99:59:8a:a0:d4:91:cb:cc:9d:a4:
62:3a:76:9c:56:af:c5:4a:c4:60:2e:93:e7:ba:4d:24:11:1e:
0f:ec:09:b1:07:5b:ff:d4:50:d1:b6:b4:06:36:d5:21:47:73:
dc:1f:08:c1:cd:61:eb:da:61:41:8c:54:99:c4:1b:26:5a:00:
52:a3:94:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 05:50:50 2025 by rpki-client