Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/18bf3e69-3c2b-4cd9-9ddb-cf6674898ea7.roa
File: 18bf3e69-3c2b-4cd9-9ddb-cf6674898ea7.roa (raw, json)
Hash identifier: v83LtPNF1D31JVFVOLMRwzHfmEl0Pi6kyMaDxj0ro6A=
Subject key identifier: 75:DC:18:1F:56:A0:42:62:F5:A0:53:C1:8B:B9:36:9F:67:74:65:40
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 3CF8A7E132B550664B0C458D194DCF26F0A67E87
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/18bf3e69-3c2b-4cd9-9ddb-cf6674898ea7.roa
Signing time: Wed 24 Jul 2024 00:00:00 +0000
ROA not before: Wed 24 Jul 2024 00:00:00 +0000
ROA not after: Wed 28 Aug 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3c:f8:a7:e1:32:b5:50:66:4b:0c:45:8d:19:4d:cf:26:f0:a6:7e:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Jul 24 00:00:00 2024 GMT
Not After : Aug 28 23:59:59 2024 GMT
Subject: serialNumber=7bc5c15408c24500217257e483341f423ea3061e8b1fcd703cb156020553c609, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:98:4b:d7:83:7b:1f:27:68:e7:2e:b0:b8:f9:
ad:26:4e:c4:11:73:da:3b:3f:f1:cf:f3:e3:48:f1:
93:52:88:43:da:47:98:fc:b8:00:d2:a7:eb:66:9c:
0d:e8:e4:06:42:99:31:df:c1:07:f3:94:ad:79:ad:
b2:fa:39:af:b1:46:9e:42:00:5e:55:09:e3:62:d7:
56:59:47:e8:95:b2:24:d9:6d:58:7b:57:55:b9:fb:
0b:1c:ff:e2:a6:a7:87:94:4f:bc:8a:52:1f:d4:3c:
ee:14:2d:95:c5:83:e4:78:9a:47:2f:a9:6b:ee:21:
b3:91:13:63:b1:60:3e:e3:16:e2:43:0f:00:a0:62:
d9:92:8e:b3:b2:f4:39:15:21:0a:7c:c8:51:ac:42:
f4:46:70:e9:17:ec:24:43:24:4f:1e:f2:72:d3:ad:
cc:c5:48:00:bf:bc:ec:2f:60:e4:9c:71:50:56:5c:
8a:41:31:2a:e4:3a:7f:64:71:86:b6:96:6b:cb:8d:
15:ee:ba:7f:fa:d6:87:1a:d2:b1:5e:41:ab:2d:f0:
24:56:c2:e4:d0:d9:98:78:90:c2:99:29:6f:7a:f8:
9b:b4:8a:ff:0d:9b:a4:11:00:05:89:22:d7:bf:ee:
8b:26:fa:68:38:8d:05:4e:1b:c1:5d:48:e9:df:29:
2e:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:DC:18:1F:56:A0:42:62:F5:A0:53:C1:8B:B9:36:9F:67:74:65:40
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/18bf3e69-3c2b-4cd9-9ddb-cf6674898ea7.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
73:4f:3a:28:59:b6:2b:2d:f3:44:9e:bc:3e:cb:25:b3:07:37:
1c:c9:b5:4f:c0:32:a5:a4:ba:0d:83:99:d6:5b:ac:e9:5f:33:
29:a1:e5:84:0f:3c:88:57:c7:d7:3c:83:13:eb:ee:61:89:c1:
13:0b:77:7f:cb:40:ca:79:92:9f:4a:e1:15:1d:cc:f7:26:1c:
d6:75:43:da:5b:7f:95:df:97:61:61:c5:24:52:ef:68:93:3d:
3d:84:9f:b9:fc:b4:aa:c5:b2:62:3a:0c:04:2d:27:ad:7c:6c:
53:6c:6b:0a:f1:2a:e1:f5:51:6d:c6:ed:dd:64:72:f9:67:82:
f6:c6:21:27:5e:36:e1:ff:00:78:a3:df:4c:24:5d:15:22:24:
41:3a:5d:99:06:c8:51:df:d9:69:b5:5e:97:46:db:e5:8e:89:
50:76:89:02:36:f4:81:3b:71:d7:d0:6a:e6:e8:42:9f:7b:cc:
48:fe:f3:92:87:b5:a0:c4:1a:00:59:66:bc:27:fc:e7:b5:ee:
c4:dc:b7:3f:06:b3:ce:82:ca:77:75:e2:a8:42:dc:69:2b:8d:
52:77:af:c5:39:64:00:aa:84:e7:58:c3:1e:9c:9b:c6:c2:43:
01:8a:44:7d:10:e8:40:92:ac:7d:69:b9:05:bf:ea:59:4c:54:
3a:b8:50:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 08:17:22 2025 by rpki-client