Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/35c2aefe-905c-433b-8dd0-686bb7bc8a5b.roa
File: 35c2aefe-905c-433b-8dd0-686bb7bc8a5b.roa (raw, json)
Hash identifier: czM7D8MuvqBWvlt7WfUCqzVi/RLTyiWXsjAtcWvbbzY=
Subject key identifier: F1:15:30:C2:03:A8:04:8B:3B:9A:A4:4C:5F:AF:FA:AA:76:07:B4:DB
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 5108306396D82D01B618602CE08411D6D02CC7D7
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/35c2aefe-905c-433b-8dd0-686bb7bc8a5b.roa
Signing time: Fri 14 Jul 2023 00:00:00 +0000
ROA not before: Fri 14 Jul 2023 00:00:00 +0000
ROA not after: Fri 18 Aug 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
51:08:30:63:96:d8:2d:01:b6:18:60:2c:e0:84:11:d6:d0:2c:c7:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Jul 14 00:00:00 2023 GMT
Not After : Aug 18 23:59:59 2023 GMT
Subject: serialNumber=f5b67378a226b064233db1412aaabf4951e6ff1c38106a9682146840e7fcd336, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:9d:38:10:d3:fd:83:19:96:94:4e:ef:ea:68:
19:a0:4c:e3:21:b5:84:c4:b2:8d:f9:4a:c2:b3:12:
38:58:a1:a4:93:d9:f2:ce:4c:64:86:c4:d0:47:f5:
3e:24:6e:f7:fb:b7:d6:75:63:72:d6:37:2f:1b:58:
b7:ac:f8:e8:08:62:80:17:34:11:01:c1:8f:e3:8e:
f2:a0:3b:52:c0:2d:b1:0a:f5:74:8e:7a:1e:a3:57:
08:eb:c1:48:ea:da:de:61:2c:e7:cb:ba:cc:f1:c0:
19:c2:03:8f:24:4d:95:99:ef:96:6e:22:18:87:9c:
ff:64:4a:ed:37:8c:d1:c2:69:d2:84:18:3b:2f:09:
9b:47:45:6e:4b:fb:4a:52:b7:f9:fb:62:15:a4:e1:
4d:39:a1:83:e8:33:bd:c7:34:a2:3f:52:0f:37:7c:
d4:a6:8a:e6:e3:d1:e7:a1:d2:db:5f:8f:3f:9a:de:
60:69:64:ea:16:6f:e1:2c:bd:5c:50:16:61:4d:f3:
c4:e8:c3:fb:e7:01:66:48:33:c5:05:e7:68:9f:f8:
41:69:a8:f7:dd:f6:e9:c5:fd:89:38:08:bf:5d:cd:
c2:57:8f:2c:65:31:d4:c4:f5:de:21:18:22:94:1e:
1a:42:fe:ba:a7:52:ad:e7:89:b7:09:b2:c5:58:13:
27:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:15:30:C2:03:A8:04:8B:3B:9A:A4:4C:5F:AF:FA:AA:76:07:B4:DB
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/35c2aefe-905c-433b-8dd0-686bb7bc8a5b.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
33:f3:21:9b:bf:95:fb:9e:58:6a:0c:2f:1a:01:12:4a:2c:c8:
91:c9:13:36:db:b3:c7:1e:4c:a3:b1:f8:c6:34:e3:73:83:44:
5d:a2:27:b7:f2:22:f8:cb:26:94:42:46:a2:c4:35:0a:3e:4f:
60:ef:d6:40:40:e8:92:b0:1a:49:75:b3:29:59:f5:8f:0b:e6:
34:59:94:b6:0b:90:b0:be:f1:b6:59:5b:e7:eb:07:ce:25:1e:
cd:20:d6:e2:83:ea:d2:c8:55:9c:f5:f9:56:3e:8a:9b:f7:db:
6b:1c:55:e3:9d:ba:21:6d:f2:44:80:5c:df:72:42:d4:20:6a:
ea:ad:a8:f1:a8:73:65:ec:1a:15:10:1d:90:3f:45:01:bc:71:
c9:81:61:91:4b:b1:d4:50:9d:ae:65:31:98:ec:bf:83:b5:fc:
4d:ef:58:d8:73:0c:53:61:dd:9b:0c:08:a2:73:0e:36:86:b0:
2e:7f:2b:88:25:e1:c2:4f:1f:a5:b7:5f:64:b0:4d:1c:bc:03:
5f:20:0f:6e:5c:b7:dc:8e:58:72:ac:1c:dd:ea:f6:42:ee:e6:
fd:83:a0:82:03:78:65:8d:dc:6b:ba:43:80:f5:f1:7c:f9:af:
03:c4:d7:42:9b:73:a9:ae:15:2b:bf:a9:b3:1f:97:85:39:a2:
da:56:6c:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 18:41:36 2025 by rpki-client