Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/205ed513-2012-4152-add6-3037ecd724d3.roa
File: 205ed513-2012-4152-add6-3037ecd724d3.roa (raw, json)
Hash identifier: rBAlFefxbQ16LFBtDO4r/Xyw7hdjvR7wrddp/p+JmFM=
Subject key identifier: B3:3A:F7:35:83:E8:F7:5F:E9:73:F9:FA:D8:45:0E:77:58:E5:02:35
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 3646A036A449E475A7A852E18990A0A39E1AFBD9
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/205ed513-2012-4152-add6-3037ecd724d3.roa
Signing time: Thu 27 Jul 2023 00:00:00 +0000
ROA not before: Thu 27 Jul 2023 00:00:00 +0000
ROA not after: Thu 31 Aug 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
36:46:a0:36:a4:49:e4:75:a7:a8:52:e1:89:90:a0:a3:9e:1a:fb:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Jul 27 00:00:00 2023 GMT
Not After : Aug 31 23:59:59 2023 GMT
Subject: serialNumber=fb47f238ce2ba86f756c96008d17c5fc8feb9bd7b2aeec8fc2e73ce7d8fae9ad, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:1c:76:24:02:72:a1:77:3e:a0:7f:8f:fc:ec:
96:2a:9c:9e:d5:9e:5d:f2:c6:c0:0f:c4:62:a1:13:
05:2c:f9:fc:b9:92:e1:e7:8a:f8:15:47:13:1f:25:
94:5e:73:c9:f3:ee:ec:07:d3:40:fb:f2:5f:2f:ec:
0a:ad:3e:ac:f3:1f:d7:8d:17:7b:5b:d1:9e:38:ac:
c8:d1:3a:83:e8:6a:50:c1:9b:93:f7:79:04:a3:7e:
87:f8:bc:3e:0f:ac:d4:72:e3:4e:4a:1e:85:9b:b1:
98:b6:d7:06:61:8b:c7:0e:8e:f1:36:dc:13:14:96:
bf:2a:e2:27:17:cb:56:75:da:b5:0e:a5:26:01:f1:
7c:b5:72:d3:4a:0d:4c:67:19:38:e7:28:db:5f:00:
3a:16:14:37:7e:7c:65:4e:af:0e:93:b0:b5:59:22:
02:05:09:88:33:f1:00:ec:c5:2a:ca:5f:ee:f3:90:
9f:c4:d5:1e:8d:4f:6c:e9:7d:79:a0:db:b2:91:d6:
13:ba:c6:93:ef:12:01:07:5c:1a:b5:dd:9d:bf:93:
6b:0f:29:f2:bd:86:87:2a:7d:c4:d5:16:1f:c2:de:
51:b3:c5:58:b0:9e:0c:d7:3e:b7:c9:09:00:fb:ba:
30:b5:63:d9:70:2d:01:ee:cb:01:5d:ec:d9:96:db:
eb:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:3A:F7:35:83:E8:F7:5F:E9:73:F9:FA:D8:45:0E:77:58:E5:02:35
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/205ed513-2012-4152-add6-3037ecd724d3.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
9d:c7:b9:c7:2c:bf:c1:7e:84:8c:38:5b:97:10:c3:ae:e4:3e:
05:b3:a4:82:9e:32:0a:4a:a1:a3:44:c6:9e:39:c0:a1:83:24:
af:6f:df:1d:e1:88:23:5e:8d:8a:c0:d8:36:d2:0a:c4:5d:36:
e5:2f:d6:e9:c7:70:6d:cd:56:21:4e:71:0d:de:8f:2b:b0:f6:
28:70:63:08:68:09:5b:ad:cb:9f:f9:a5:d7:40:57:7f:a1:d5:
20:5d:13:00:22:54:6e:13:80:49:fb:69:0a:5c:f6:53:c8:12:
71:03:e5:93:d7:23:98:b0:66:a5:69:ec:ad:60:a5:b7:3a:17:
a4:4b:b5:81:73:f0:3d:9b:17:08:d3:cc:fc:02:4b:20:18:5d:
bd:25:30:6f:06:fa:b8:59:03:8a:aa:2b:32:aa:dc:54:3c:e8:
fd:78:a2:bb:ab:53:3e:66:41:3f:1c:17:c7:93:fc:b2:b0:a5:
2d:63:ac:cb:a2:50:4b:24:7c:4b:51:2d:74:52:fd:a8:50:41:
4c:9c:a0:cb:d6:c1:ee:7c:47:ad:19:ae:79:fa:51:8b:81:f1:
4c:fe:aa:67:aa:8b:71:e2:12:e2:68:27:92:0d:1f:1e:99:a6:
cc:2f:b7:94:8b:93:23:75:5e:c7:96:3b:44:8f:c8:91:91:0d:
1a:79:8c:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 19:20:44 2025 by rpki-client