Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/40b4c9cc-cd32-459d-86da-a9b2fb061dea.roa
File: 40b4c9cc-cd32-459d-86da-a9b2fb061dea.roa (raw, json)
Hash identifier: 9h7Kk2Jq7nthmNk5sxCR/V/qwVE+dEyJnlZFp5yJV2k=
Subject key identifier: 30:90:70:B3:E0:9B:7B:28:3E:66:FD:BC:D6:84:96:2F:11:65:3F:8D
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 7ED7961A6C9BA99892F90E2A4BD78F4BB9CDE314
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/40b4c9cc-cd32-459d-86da-a9b2fb061dea.roa
Signing time: Thu 21 Mar 2024 00:00:00 +0000
ROA not before: Thu 21 Mar 2024 00:00:00 +0000
ROA not after: Thu 25 Apr 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7e:d7:96:1a:6c:9b:a9:98:92:f9:0e:2a:4b:d7:8f:4b:b9:cd:e3:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Mar 21 00:00:00 2024 GMT
Not After : Apr 25 23:59:59 2024 GMT
Subject: serialNumber=6df40b0f1a864a094944f8395801f8536657c6d78ee1920a1a35b286602465eb, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:13:d2:37:3d:ee:0d:5b:ea:2d:ad:74:37:9c:
30:8c:d7:5f:a3:0c:b1:b1:4f:84:a5:a6:f2:6c:16:
a2:09:bb:0b:f0:ec:09:60:b1:af:f1:11:5a:40:71:
7e:1e:f9:c0:e9:ff:ea:ce:a6:70:88:d6:55:e7:d8:
e9:6c:c1:f9:42:83:8b:6b:9a:0d:5e:90:18:96:16:
6a:5a:91:ab:b8:a0:18:d4:ed:27:6d:43:5c:4d:cc:
10:b6:63:eb:19:83:67:f7:09:3f:4f:00:54:95:b1:
cb:42:b8:06:3d:37:c3:49:a0:13:13:e2:ff:73:2a:
73:a2:df:19:51:2e:65:e9:b7:62:01:78:3d:95:a6:
dd:0e:f0:b3:d7:da:69:75:4b:e1:72:ae:e5:3b:4c:
ed:32:c8:e6:a8:f2:aa:1a:89:72:72:4d:5e:dc:c6:
5b:51:a8:e0:fd:11:61:1c:42:24:ff:6d:61:ad:d2:
ab:d7:e8:fa:a5:3f:77:f3:1a:16:f2:13:19:85:0f:
a0:af:73:1b:8b:25:2c:00:79:2b:53:a4:49:c6:93:
49:3f:03:e4:5b:7a:9f:e5:34:be:dd:e5:1d:77:4e:
6e:74:ae:06:20:0c:7f:c8:bc:0f:89:b2:2d:ca:29:
d4:16:03:7e:06:9c:01:50:0d:a2:85:46:69:99:b3:
33:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:90:70:B3:E0:9B:7B:28:3E:66:FD:BC:D6:84:96:2F:11:65:3F:8D
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/40b4c9cc-cd32-459d-86da-a9b2fb061dea.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
09:01:ea:28:31:3b:b3:40:61:bc:78:58:97:23:5f:25:f3:d1:
cc:16:da:39:22:e2:a6:43:ea:da:5b:bd:fe:b9:da:e4:36:0e:
03:ea:7d:0b:e8:1a:14:1c:48:39:07:73:68:6c:5d:29:a8:23:
ff:f5:a7:e5:c0:e9:e8:de:7c:eb:81:91:74:17:b7:e3:dc:eb:
18:f5:f9:1c:0f:ef:66:4c:75:33:f9:e8:2c:a6:4d:22:dc:19:
46:e1:8a:6c:33:45:62:01:42:47:08:17:5e:ff:97:99:c0:72:
01:8d:ae:72:06:1d:87:ce:ab:5e:8a:ac:40:63:8e:5b:98:ca:
c3:e1:e6:39:b3:ce:76:51:c8:a8:f6:55:4d:6f:77:cd:6a:dd:
05:4c:63:21:25:f1:ea:35:94:09:d1:db:ed:a1:d2:f5:44:ea:
44:9b:28:e1:30:a3:94:e8:9e:4d:81:03:41:cf:d8:67:3c:b6:
69:64:e3:3e:5d:74:d6:64:72:e0:11:95:7e:12:5c:c3:40:8a:
86:b9:be:cc:b2:5d:42:75:7c:91:d9:95:2a:b4:23:2c:7c:8f:
7c:78:3d:2c:9f:83:d3:f7:1f:c1:91:53:84:cf:2d:a0:0d:a8:
0d:86:80:5d:64:9e:01:e2:44:42:ef:4b:92:6b:74:36:eb:6e:
e0:d9:77:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 18:33:10 2025 by rpki-client