Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/3144ceeb-312b-47b8-83ba-b7a5b40be0e7.roa
File: 3144ceeb-312b-47b8-83ba-b7a5b40be0e7.roa (raw, json)
Hash identifier: AyTiEUxwdR5BItFFf43dolSxV/+non8b0Wrf8hi5vkM=
Subject key identifier: F3:51:34:E2:AC:C4:19:12:16:6E:0D:B2:56:49:B2:67:A0:71:47:EC
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 5AD265D9FDE2E1B6FEA800BEB6BF58C058F07FF3
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/3144ceeb-312b-47b8-83ba-b7a5b40be0e7.roa
Signing time: Tue 09 Apr 2024 00:00:00 +0000
ROA not before: Tue 09 Apr 2024 00:00:00 +0000
ROA not after: Tue 14 May 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5a:d2:65:d9:fd:e2:e1:b6:fe:a8:00:be:b6:bf:58:c0:58:f0:7f:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Apr 9 00:00:00 2024 GMT
Not After : May 14 23:59:59 2024 GMT
Subject: serialNumber=0eafcff604fa7e2be43e56298d1c8faa2f73abc84223cc21d56e4b8bede77ba2, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:8d:b3:d1:e5:a1:bf:d7:2d:ed:5c:f4:01:65:
ff:a0:15:06:5f:57:ce:fc:56:de:a2:3e:ed:92:84:
e2:b4:6b:5f:7a:36:08:3b:e1:73:58:49:bf:fd:80:
ce:1e:39:9e:1f:84:01:9f:46:3a:3d:bf:12:81:4e:
88:e3:9d:8c:89:61:1f:87:8e:1c:20:ed:fd:a1:23:
2d:cb:ff:d6:7f:bd:30:bc:1c:30:27:52:f7:be:e6:
dd:5b:b8:80:b6:3e:60:31:d1:51:2c:eb:1d:85:90:
ae:14:b2:9e:a3:18:4c:fa:f2:4a:60:81:8d:b2:d9:
53:a7:8a:27:99:11:d7:32:37:b1:d6:6b:34:23:a1:
78:e1:c6:b9:f9:75:26:8b:57:6d:fa:71:30:fd:0a:
9b:5f:33:d8:9d:94:c5:95:d2:1d:8c:07:dd:29:a9:
ed:8f:b6:44:c0:b6:13:f3:c8:8f:0a:ee:68:01:63:
57:90:f1:4b:5b:3f:cd:45:ce:a7:74:d8:50:2f:bf:
5e:37:83:ac:4e:2d:62:83:84:af:d7:82:5b:04:5d:
5f:21:73:0c:5e:62:a0:37:d8:d0:aa:9e:76:ec:53:
d5:d0:7b:44:16:ae:27:14:5c:23:2d:3f:05:83:fe:
39:2a:8f:f1:65:36:78:bd:6a:b8:13:f4:e2:18:b6:
6f:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:51:34:E2:AC:C4:19:12:16:6E:0D:B2:56:49:B2:67:A0:71:47:EC
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/3144ceeb-312b-47b8-83ba-b7a5b40be0e7.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
0e:08:f1:dc:36:40:68:f5:22:2c:71:22:6c:1a:0a:84:88:45:
77:d4:50:88:12:99:1e:87:86:74:1c:54:6a:e7:22:b8:db:3d:
ed:c0:d8:9c:ea:af:2e:49:4b:72:e0:ad:42:72:9a:d4:8e:b6:
b0:0d:f6:c6:87:aa:6a:bd:02:ca:ef:bb:a1:e0:7a:da:e4:4d:
7f:f3:41:22:90:a6:9c:ea:c2:23:ba:75:cd:91:1a:68:02:c1:
41:63:eb:fb:6a:32:63:e9:1f:fb:72:11:e1:22:d5:82:85:78:
1d:43:b3:06:53:88:61:d1:27:1d:d5:d6:38:e6:04:a0:f4:49:
2b:ce:f7:92:37:50:51:06:b7:9e:8a:fb:4a:4b:9e:3f:50:6b:
7e:a8:3a:37:36:ad:d6:fc:f6:03:db:fd:aa:aa:76:91:de:71:
ea:b3:d2:e3:3f:05:0f:be:ad:a6:bd:ae:db:34:22:61:7a:9f:
b8:25:fd:02:f0:f0:3d:e9:96:37:44:f2:65:d3:00:13:14:90:
2e:d4:3d:78:eb:5a:35:ce:54:3d:76:e2:b3:63:40:e3:95:ba:
41:68:6b:e6:12:27:47:e8:f8:18:89:83:02:a9:3d:76:b3:3c:
e5:71:8c:22:00:d7:4c:8a:f6:12:c8:22:a2:eb:16:97:ad:b7:
30:1a:ea:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 16 11:55:02 2025 by rpki-client