Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/2ae4508e-1b90-4ca2-94d6-7f043b21eeec.roa
File: 2ae4508e-1b90-4ca2-94d6-7f043b21eeec.roa (raw, json)
Hash identifier: 3TPZxpXV5QE3HsbQdAoBekTKtmxvvbZcEht74ks/E6g=
Subject key identifier: A5:54:DC:43:5E:78:7F:B5:82:07:04:48:88:0A:59:09:71:D4:D9:52
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 2AFA753CD59A979704A06F8F6EE732BA6BD02555
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/2ae4508e-1b90-4ca2-94d6-7f043b21eeec.roa
Signing time: Thu 25 Apr 2024 00:00:00 +0000
ROA not before: Thu 25 Apr 2024 00:00:00 +0000
ROA not after: Thu 30 May 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2a:fa:75:3c:d5:9a:97:97:04:a0:6f:8f:6e:e7:32:ba:6b:d0:25:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Apr 25 00:00:00 2024 GMT
Not After : May 30 23:59:59 2024 GMT
Subject: serialNumber=e154a3e1b368a97f356c70f1cbeee365f8e72b344b251d1c28102e47ea54fe45, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fa:24:7c:03:f7:ac:7d:35:ac:06:e3:61:f9:89:
8c:b2:cb:45:39:54:d7:e2:76:e0:d1:1f:b9:dc:e5:
91:e7:22:39:eb:6c:2a:cb:aa:f1:07:a0:e7:0f:b7:
11:2e:be:14:39:fc:09:33:86:fb:c5:da:6a:f2:bd:
ce:e7:6e:76:c3:2e:68:46:ae:1e:fa:42:e0:05:65:
f9:c3:d9:d6:c5:e3:55:83:61:34:cb:8e:f2:81:cc:
75:e8:d6:cb:8c:87:01:8a:23:c2:bb:df:ed:79:b3:
06:1b:bb:07:6f:14:bb:8e:5d:bc:3b:f9:c6:2e:1a:
30:01:38:0c:18:98:c0:10:9a:54:50:68:80:d6:07:
9b:b0:e8:bf:0f:00:8b:b3:87:48:3f:12:f9:9e:b3:
49:a7:bf:73:99:7c:b2:2e:c3:fd:31:31:45:0a:8c:
8a:c0:55:13:81:5a:4d:e9:6e:6d:a6:c9:d1:00:29:
6f:48:1c:1f:a8:0f:18:fa:a6:4e:81:d4:c1:1d:bf:
2a:57:2d:a0:c3:2e:8c:c7:b5:70:b4:f3:f5:3b:48:
43:f0:5d:55:a0:f1:c6:e1:6e:bf:92:5b:a5:f4:0f:
3c:b7:3b:39:db:76:10:88:54:7a:80:ee:3d:16:3e:
8a:34:ae:69:56:ea:f6:31:b4:f5:6d:35:48:f4:07:
f2:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:54:DC:43:5E:78:7F:B5:82:07:04:48:88:0A:59:09:71:D4:D9:52
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/2ae4508e-1b90-4ca2-94d6-7f043b21eeec.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
b5:84:ed:e2:fb:48:14:e2:13:c6:93:bd:50:82:84:04:1e:dd:
10:3c:c7:0e:cc:43:64:4e:46:5c:a6:2f:fe:42:75:42:0e:31:
30:31:82:14:d9:26:de:26:77:98:60:cc:b4:a1:e2:4e:b0:ab:
89:42:8f:58:4f:8f:01:bd:58:b0:43:56:fb:91:43:53:2d:40:
95:75:c2:51:b6:53:9f:70:83:a3:51:ab:bd:96:21:a2:54:56:
67:f3:a6:9a:07:e9:84:98:40:3f:82:4e:0e:26:1c:bb:e5:99:
c2:c5:78:42:5d:27:07:4e:b2:16:47:35:f0:00:1c:2c:8c:48:
76:20:6a:1c:2d:35:6b:84:fe:ed:e4:ac:14:e8:50:fc:d5:0c:
75:ee:0f:f9:ad:be:80:e3:9f:53:ca:83:22:7c:ed:88:51:43:
f1:40:e6:b6:ff:b3:99:26:9b:46:45:30:d2:5a:b7:f7:2b:74:
00:c7:87:4c:85:04:87:da:6d:6d:9f:f6:8e:ea:7e:31:77:87:
af:06:62:2b:75:ce:2f:5d:ba:fa:1c:91:5d:c4:0d:d4:97:9f:
59:2e:94:c9:5b:80:57:46:9c:d0:b8:b6:06:dd:2b:89:da:f2:
49:0a:a4:1a:df:55:bd:d9:eb:e8:35:71:31:3a:8f:59:3d:93:
00:20:92:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 19:08:19 2025 by rpki-client