Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/50faa1d2-8aeb-4c93-a67a-66766a19db1b.roa
File: 50faa1d2-8aeb-4c93-a67a-66766a19db1b.roa (raw, json)
Hash identifier: nBzN9C6DbFJN5UE0JH8RGTVAdSciOqCKc9F7M/Dhvu8=
Subject key identifier: 2E:C2:9E:F9:6D:C3:88:B0:79:FD:DA:D6:28:00:5F:73:6E:51:9B:0B
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 2B568069C42298725FD08725571B678DB3802B0C
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/50faa1d2-8aeb-4c93-a67a-66766a19db1b.roa
Signing time: Sun 02 Jun 2024 00:00:00 +0000
ROA not before: Sun 02 Jun 2024 00:00:00 +0000
ROA not after: Sun 07 Jul 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2b:56:80:69:c4:22:98:72:5f:d0:87:25:57:1b:67:8d:b3:80:2b:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Jun 2 00:00:00 2024 GMT
Not After : Jul 7 23:59:59 2024 GMT
Subject: serialNumber=e7e17a06ceee8810635cd7d998877927f5bdddd353d908955603a59333925bb1, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:41:5b:3c:62:03:05:49:c7:b5:f3:03:26:42:
8f:3c:8b:38:be:25:46:f4:75:a7:a4:91:09:7e:d3:
15:46:f4:87:35:3f:6b:63:1b:38:5d:b6:3e:9c:44:
ce:b8:eb:b9:38:a2:2f:1e:c5:04:8d:64:9a:72:1e:
eb:ea:d8:84:05:da:d7:b1:e2:75:bc:39:1b:55:83:
8c:fb:14:a0:29:79:b3:4b:43:c5:a3:61:d0:60:7e:
63:5f:bd:37:9d:82:dc:f6:54:f9:6c:22:91:c9:10:
5a:76:bc:a0:5a:a7:25:1e:46:06:9b:eb:a8:82:7e:
9d:37:62:f5:c8:9f:d5:e1:bd:03:73:6c:7d:5f:2b:
85:2a:e8:9d:2c:62:69:aa:6b:d5:9e:a5:01:d2:55:
58:0e:9f:55:cb:5c:d2:29:3b:6b:98:5e:98:e2:cb:
7d:e0:0b:d6:6f:a1:83:36:59:fc:cd:7a:0c:85:9b:
18:bb:04:37:b1:07:e8:27:dd:5b:9f:b5:a3:e7:6e:
49:ba:fb:2d:07:f7:66:6a:81:29:f7:01:8f:96:e5:
c5:9c:4c:e8:df:75:07:28:87:db:fa:3d:0c:1d:0a:
16:bc:63:9b:50:65:0e:25:f4:43:10:4f:f4:79:fe:
01:a3:1a:75:17:dc:9e:4d:11:9e:26:50:d7:d2:da:
a1:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:C2:9E:F9:6D:C3:88:B0:79:FD:DA:D6:28:00:5F:73:6E:51:9B:0B
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/50faa1d2-8aeb-4c93-a67a-66766a19db1b.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
b5:01:e3:33:54:cd:b9:65:bb:41:b4:d2:a6:4d:1a:94:68:00:
9b:b1:e6:5b:b5:d8:e7:5f:db:1b:bc:05:b0:d1:0e:8a:dd:6c:
fd:b7:70:f9:f0:9d:89:a6:f8:4e:c6:37:66:40:9e:5e:d1:38:
33:e5:5e:db:22:43:c0:41:89:14:78:62:8e:1c:42:3b:dd:36:
25:62:e9:d3:11:c0:fa:10:13:6f:56:8c:3b:22:ae:7e:bd:0c:
fd:65:6f:f0:6a:01:7c:bf:08:c0:d5:37:5a:76:26:7a:20:a0:
19:a2:98:d6:9e:07:c9:b5:60:34:f6:85:42:df:4d:0c:8b:a5:
ac:88:f5:ed:74:e9:63:7e:ee:38:67:b9:32:eb:43:d7:f1:4e:
21:1a:6d:5e:44:ae:15:12:63:07:06:73:06:38:7e:cd:4a:68:
50:5d:80:e2:94:37:99:5b:c5:85:39:1b:dd:3c:89:88:5c:d9:
53:24:88:89:07:0b:30:4c:a2:6b:ab:14:ed:70:71:16:99:06:
1b:f0:12:e5:fe:16:37:8c:cc:64:f7:12:2a:34:21:95:bb:1b:
f9:8b:fa:06:e5:a2:c8:72:ec:d8:f4:b5:c2:7c:f3:03:76:7a:
76:a5:8b:e6:c4:fc:28:0c:e6:d4:56:da:ea:4b:11:7f:f2:81:
94:dd:ea:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 15:55:33 2025 by rpki-client