Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/510b40c2-e17e-4185-a6af-38954ddb6117.roa
File: 510b40c2-e17e-4185-a6af-38954ddb6117.roa (raw, json)
Hash identifier: YHBPySp03tdMSgt8qetUQKi4ujWITG3mf5mYkWfT3Zg=
Subject key identifier: 90:09:EA:1B:28:28:40:AE:01:9B:60:A8:F0:AC:A0:EC:E5:9D:5E:A4
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 64C31C8493BA6BF152BBB9E976E63D217FE8B120
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/510b40c2-e17e-4185-a6af-38954ddb6117.roa
Signing time: Sun 17 Dec 2023 00:00:00 +0000
ROA not before: Sun 17 Dec 2023 00:00:00 +0000
ROA not after: Sun 21 Jan 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
64:c3:1c:84:93:ba:6b:f1:52:bb:b9:e9:76:e6:3d:21:7f:e8:b1:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Dec 17 00:00:00 2023 GMT
Not After : Jan 21 23:59:59 2024 GMT
Subject: serialNumber=8359349fcf19577dc7903f25aeb19b0afa2cccb426ae7f3b29a828ef2b94b216, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:91:ea:ac:6e:58:4c:7d:b0:c6:56:e1:29:b5:
4f:42:30:05:87:e7:a4:91:d8:43:05:69:d0:41:40:
8b:c1:4e:4c:b0:e7:4d:86:16:c6:93:12:e0:9e:34:
8b:e5:a8:63:52:33:bd:f9:fc:8e:9b:17:a4:5c:3f:
ca:a1:44:51:12:b7:53:f9:63:49:4a:30:8c:5f:40:
44:ad:4d:e9:93:b6:e9:cc:e9:1d:35:bb:b6:66:a4:
ff:b6:0e:ca:4e:76:5b:5a:39:60:b0:7b:ac:cb:2c:
5f:15:86:9b:61:a2:f0:71:65:bd:82:29:d5:96:5b:
0f:e8:c2:97:f6:17:09:d0:8e:08:77:0c:66:3d:c1:
66:a4:e5:45:83:55:a2:16:b7:42:e0:f0:9d:01:e1:
c0:30:d6:2a:05:bd:71:e1:8c:36:60:2e:a8:c9:1a:
b1:b3:2c:88:ec:a6:c6:9c:24:0e:35:3d:11:c5:67:
b4:3c:ab:cb:70:14:f3:b4:7f:55:54:23:21:25:aa:
ee:fc:17:f2:e7:3b:22:c4:c3:41:9e:7a:5b:6a:3e:
81:bc:83:8a:a1:94:ab:ce:3d:ee:08:b5:6a:e6:1b:
51:11:1a:a8:7c:34:b0:3e:ec:16:3f:ea:4e:a2:c4:
e0:5f:d2:e5:6d:3b:02:ca:cc:f2:00:f3:41:a9:43:
b7:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:09:EA:1B:28:28:40:AE:01:9B:60:A8:F0:AC:A0:EC:E5:9D:5E:A4
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/510b40c2-e17e-4185-a6af-38954ddb6117.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
67:a1:83:d9:a3:56:e5:c2:4b:21:e7:bb:9c:ab:02:15:ba:8a:
8e:30:b1:25:3b:b5:ab:4e:bf:b7:d5:de:c4:06:e7:5c:75:9c:
15:76:a0:1f:60:c1:d3:e3:18:de:52:8a:8d:0b:fd:bf:55:6a:
be:5e:d1:cb:f6:53:c8:2e:ec:0b:99:d9:3b:1d:dd:57:c9:5e:
61:da:71:58:f8:ff:a3:5e:7e:d4:58:8c:e0:79:fd:fd:72:90:
c7:95:bd:07:20:3e:56:7f:dd:d1:8a:98:03:1f:56:96:f1:10:
e1:aa:26:34:91:ff:77:5b:84:d9:b2:48:16:4c:d3:ec:44:69:
5c:b3:cb:7c:96:51:03:74:c3:a1:56:3c:5b:cf:55:2d:c3:95:
0a:95:a0:8f:1c:b8:5c:2b:6c:cb:96:a2:d9:7e:5f:88:7c:ad:
2e:7d:61:46:be:92:96:a0:d4:08:3a:ad:71:4d:e5:eb:eb:bc:
9a:64:e3:5b:2c:67:ee:87:62:07:76:35:e4:ef:cf:37:3a:f1:
5b:80:17:2f:f2:ab:a8:46:e8:01:8b:02:9f:8c:d9:ad:2a:d5:
5d:0b:84:2d:6a:a5:52:06:25:1a:ea:7e:b4:cb:a1:9b:b8:78:
6c:a5:28:91:95:28:dd:82:fa:e7:3f:c5:a6:07:a1:46:17:e2:
6d:de:64:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 19:10:38 2025 by rpki-client