Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/43537385-2fb8-4fb6-a1ca-17b4e484a2d0.roa
File: 43537385-2fb8-4fb6-a1ca-17b4e484a2d0.roa (raw, json)
Hash identifier: 4ExoQLM61MNwTUgEDQJ7AyIVU+vPY71wpOHtSZLB1xg=
Subject key identifier: 14:D5:73:37:4B:40:B2:02:52:9C:72:A5:E4:B0:6D:98:49:CD:EE:D1
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 7319F3E76EB26D23A756A9DAA85D6BDFFDC50B70
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/43537385-2fb8-4fb6-a1ca-17b4e484a2d0.roa
Signing time: Thu 26 Sep 2024 00:00:00 +0000
ROA not before: Thu 26 Sep 2024 00:00:00 +0000
ROA not after: Thu 31 Oct 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
73:19:f3:e7:6e:b2:6d:23:a7:56:a9:da:a8:5d:6b:df:fd:c5:0b:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Sep 26 00:00:00 2024 GMT
Not After : Oct 31 23:59:59 2024 GMT
Subject: serialNumber=b5530ef264c05f3144cf9a4b3abfb6ca740728c00ec8a4b0f2d4431ea60ff78e, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:90:61:49:34:d6:2e:20:89:e7:e9:6d:56:ec:
0c:ec:58:be:f5:07:23:2a:82:03:ad:7a:04:f1:ff:
9f:43:8f:a3:c3:52:27:39:26:0b:52:7d:16:37:45:
70:ab:c3:78:40:1d:fe:c3:a6:69:a2:02:00:74:6b:
3b:66:d3:76:5f:da:cf:78:0b:c0:76:67:cd:43:ee:
a4:b7:7d:cb:99:44:8c:02:b4:02:65:30:a8:bc:3b:
2b:32:87:67:82:61:18:d7:64:5e:3a:d0:e6:1d:f1:
a9:71:5b:29:6a:1f:05:00:15:f3:cd:54:b1:9d:7e:
7d:65:1e:a5:cf:2d:63:35:d6:35:ca:29:22:ba:e0:
5b:fd:77:1f:05:04:1b:26:34:59:3b:f7:11:bf:ae:
07:6e:9f:9a:89:7b:aa:a4:93:94:d4:58:91:87:ba:
08:f6:92:6c:99:b4:17:80:fc:3e:f2:55:c4:70:75:
c3:8d:50:ac:70:c7:08:ab:ba:b3:37:20:8b:bd:aa:
3a:3a:0e:e0:63:ca:4e:87:a9:d0:93:2a:ae:8f:3d:
3f:63:fc:dd:f0:d5:1e:6b:01:2b:46:67:e8:fd:f5:
6a:96:87:51:81:04:66:fc:3a:3f:16:74:bf:34:2c:
5c:3b:d6:ef:4a:96:4b:03:3a:10:0e:5e:b5:06:fc:
1b:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:D5:73:37:4B:40:B2:02:52:9C:72:A5:E4:B0:6D:98:49:CD:EE:D1
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/43537385-2fb8-4fb6-a1ca-17b4e484a2d0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
79:b2:99:02:65:38:ce:a7:9f:52:d0:b2:cc:2f:13:82:c9:de:
7f:75:3d:5b:06:4f:dd:a1:dc:0a:20:9b:0a:da:d8:3e:40:e4:
e8:74:ea:b8:65:2d:a9:cf:4e:b1:80:8c:04:54:ac:94:55:68:
a6:64:10:65:58:cb:16:52:16:de:e3:93:4a:d2:ff:75:37:c3:
0f:96:67:05:31:5b:1a:42:dd:59:8e:b4:d7:dd:de:c8:a6:aa:
78:fa:70:df:b5:8b:49:03:73:77:19:35:e7:d2:2d:80:2b:bb:
2e:6f:7e:1b:15:0e:76:a8:4d:ba:65:46:8a:0f:99:39:20:29:
0c:47:65:ff:24:37:0c:12:c7:28:41:10:14:49:3e:f9:6e:23:
12:60:81:6c:a9:40:05:a9:f7:8d:02:9a:54:12:52:c0:cb:52:
e8:f4:a1:91:8d:6f:e9:7d:43:c5:70:d9:c0:7b:ed:3c:4a:e7:
df:a8:02:e4:0a:01:2f:85:56:50:d7:47:27:4a:b6:67:27:67:
02:5b:6b:84:95:b3:04:25:ef:77:3a:99:ba:c1:b8:c9:1c:af:
60:41:db:1f:7d:80:a6:e5:be:91:c8:9d:05:ee:d8:74:11:fd:
0d:c8:87:f0:0a:18:17:d6:77:5f:66:8d:fe:3b:28:95:27:36:
54:1b:8d:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 15:56:28 2025 by rpki-client