Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/20b6efcf-dc42-4bba-a6b2-dbc08df9b27e.roa
File: 20b6efcf-dc42-4bba-a6b2-dbc08df9b27e.roa (raw, json)
Hash identifier: OhT9iPy/oLBA8BqQbv5cHu+9beLIY/jiFObiFDOWmXc=
Subject key identifier: 9B:74:CE:A0:41:12:32:15:2B:93:01:EB:AB:56:1A:AE:CA:34:9B:1D
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 0581927BC85AC3EBEA273E0897DE4CF26DA7BD9D
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/20b6efcf-dc42-4bba-a6b2-dbc08df9b27e.roa
Signing time: Fri 19 Jan 2024 00:00:00 +0000
ROA not before: Fri 19 Jan 2024 00:00:00 +0000
ROA not after: Fri 23 Feb 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
05:81:92:7b:c8:5a:c3:eb:ea:27:3e:08:97:de:4c:f2:6d:a7:bd:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Jan 19 00:00:00 2024 GMT
Not After : Feb 23 23:59:59 2024 GMT
Subject: serialNumber=9d84a3631748f89bc76b4fdeed102de7dc103640c4c50bc880dd6fa485348ffb, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:a5:e5:72:ad:b7:d1:7a:34:b6:b3:bd:3e:4a:
c1:57:24:f1:24:3d:6f:eb:f1:32:9b:e4:e0:a7:a5:
ba:0c:1b:4c:14:aa:51:45:af:98:f4:4b:45:d3:ce:
7b:66:ef:ff:1c:2d:96:63:bc:91:37:f4:cd:e1:9d:
58:99:6b:f9:69:e0:09:20:33:6b:e0:ac:19:6f:2e:
38:9d:32:2e:1a:ce:6d:98:ff:f2:b7:80:36:a6:83:
3b:e7:67:80:fb:85:49:56:60:d0:26:23:95:4e:1b:
cf:90:4f:e3:ab:0e:c4:ae:c1:d9:1a:f6:d2:f9:a0:
76:77:84:d1:17:18:00:d9:e3:cc:e5:4f:24:86:ee:
9d:38:94:d1:39:43:f3:5a:ca:52:e2:bc:bc:a2:da:
1f:7f:22:de:97:f5:e6:34:0e:62:ef:5a:0c:0f:3e:
98:a7:76:71:af:3e:bc:68:15:94:c0:45:75:ad:d3:
70:a5:1a:89:27:f6:7c:f9:3a:96:d5:38:19:d4:c9:
14:85:61:08:cb:3d:25:46:0c:e4:46:46:3c:ce:b0:
18:c6:1c:57:75:00:c8:32:5a:ed:55:3d:b2:cd:b3:
dc:4f:eb:c0:8c:9b:0b:10:08:da:c7:72:53:36:5d:
e6:cf:3e:4b:68:75:12:a6:f4:ea:cb:03:7d:a0:19:
96:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:74:CE:A0:41:12:32:15:2B:93:01:EB:AB:56:1A:AE:CA:34:9B:1D
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/20b6efcf-dc42-4bba-a6b2-dbc08df9b27e.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
7d:60:ea:d8:21:84:62:da:c1:2c:8d:6a:36:f1:5e:29:82:13:
ef:e9:09:9a:6a:ed:4a:2e:b8:b5:c8:76:eb:a9:c6:1a:f3:b3:
cf:40:5d:94:66:98:1e:0c:86:c5:86:05:fa:fa:ac:6f:73:45:
35:68:f8:71:4a:79:9e:4a:b3:c3:9b:5e:8c:a9:5a:1c:48:3c:
ea:7b:88:44:c6:99:d1:73:05:a6:a7:11:6e:6c:c1:81:13:30:
da:ee:89:ec:10:de:9d:cd:a9:ca:28:34:aa:96:21:3d:43:1d:
10:2b:60:cc:c4:47:a1:95:9c:27:fb:e4:c3:8c:2a:a1:70:51:
68:44:d4:de:79:20:0f:5a:c6:36:df:bb:4c:f8:1d:9c:f1:8c:
05:03:e5:1b:ba:bc:74:b6:ee:07:3b:0b:e4:31:1a:43:b8:66:
a4:bb:38:b7:60:5e:f5:20:f8:0d:1d:36:07:58:90:78:f9:d8:
e5:e8:b4:2c:ae:b7:63:84:56:f1:a4:e5:af:8f:3b:fe:a3:ac:
b9:0e:a7:09:8a:4c:20:f0:b1:9c:63:c9:3f:e8:74:72:0f:c0:
b2:b9:68:70:6c:13:b5:49:32:f6:f0:6c:95:47:1e:fd:ad:f1:
29:a4:40:3c:14:69:b1:89:cf:ca:59:fb:92:c8:20:38:16:c5:
86:34:3a:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 15:50:27 2025 by rpki-client