Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/55026cbe-f20b-4e8c-a87f-02afda3c3cf8.roa
File: 55026cbe-f20b-4e8c-a87f-02afda3c3cf8.roa (raw, json)
Hash identifier: k2YseD1IFG09XfK+SZ6PiR6MQpJH1I1EeQfjp1OBAsU=
Subject key identifier: 1B:76:F0:E0:DB:86:AC:A4:67:B8:22:FE:AD:0C:AA:E1:B7:17:D6:63
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 4510E0C54D8CD49E6DE21850F85EF384EBD895EB
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/55026cbe-f20b-4e8c-a87f-02afda3c3cf8.roa
Signing time: Fri 04 Apr 2025 20:53:20 +0000
ROA not before: Fri 04 Apr 2025 20:53:20 +0000
ROA not after: Fri 09 May 2025 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
45:10:e0:c5:4d:8c:d4:9e:6d:e2:18:50:f8:5e:f3:84:eb:d8:95:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Apr 4 20:53:20 2025 GMT
Not After : May 9 23:59:59 2025 GMT
Subject: serialNumber=e4816de5839482b30320139b0557fc8f201a1dc4633bb3e0f5e48f1b8f7e12f1, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:5a:18:3f:8f:15:3a:7e:cc:a8:17:ac:c7:15:
7b:a5:2c:41:e5:38:c7:5a:a3:b4:f6:85:17:f9:5d:
af:bb:e0:0f:a1:82:67:2a:fd:52:86:76:30:a3:1e:
20:79:de:59:cf:a2:06:65:53:a5:c0:63:c0:a9:58:
d1:5a:85:07:5f:f1:9f:58:e9:ee:63:67:45:cd:32:
8a:44:fd:49:67:bc:4d:d7:0f:68:fb:53:fb:0d:46:
24:fc:4d:3b:f3:9c:fd:25:6c:84:ee:1f:a7:c7:ea:
ec:5f:11:4d:90:83:1f:c6:01:6a:2d:ad:b8:93:d1:
00:2e:77:66:8c:c2:5b:46:45:e6:fd:1b:2a:60:6a:
d1:10:d9:07:24:ba:e6:1e:b1:00:98:83:92:d4:7c:
4f:fd:61:46:8a:3a:19:5b:bb:e9:f9:66:10:d5:70:
81:6d:00:d3:70:1a:ab:31:b7:f8:f7:63:a8:51:69:
ce:f0:db:8e:bb:07:d3:73:b3:58:cc:bd:15:00:36:
3e:c1:01:2d:27:26:2a:9c:d2:d0:4e:42:d0:8b:a8:
c8:dc:52:ff:74:e9:c5:89:f6:8f:27:58:97:58:aa:
22:14:c6:e1:3a:6a:f2:23:9d:7c:b7:7d:ad:dd:bc:
7c:46:78:cc:e9:11:99:be:c1:ef:74:da:d5:9e:6e:
f5:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:76:F0:E0:DB:86:AC:A4:67:B8:22:FE:AD:0C:AA:E1:B7:17:D6:63
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/55026cbe-f20b-4e8c-a87f-02afda3c3cf8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
af:76:5d:65:0e:c9:60:22:3c:f0:52:94:d1:ef:cb:f3:ee:4f:
62:50:04:ba:38:e3:d5:0c:7d:6a:0c:a1:3c:2f:a3:4c:1b:c2:
69:52:d7:bd:98:fb:c1:77:2e:65:3b:ac:dd:03:ba:90:7a:9c:
78:54:52:22:40:cf:fc:d0:f4:10:a2:0d:6c:d7:ae:d1:a0:4a:
a0:29:52:37:aa:71:3f:60:fd:34:d0:50:40:eb:da:49:6e:9a:
44:b5:fe:81:89:16:69:cf:c5:c9:c3:d8:10:73:8c:d8:80:c4:
86:a0:ea:17:46:0e:61:e9:46:35:46:38:31:3f:22:f0:b5:11:
21:c1:53:9f:3e:85:0b:67:5b:cc:69:a3:46:df:84:2e:11:44:
5a:2d:61:a3:b6:6a:9d:8b:b7:02:fb:05:d8:e5:8c:5d:5f:83:
26:9f:ad:23:93:94:29:ca:04:35:e2:8a:24:01:ec:42:21:93:
4b:82:45:1b:7b:e2:37:8c:54:cc:e1:c0:45:d9:b2:6b:26:75:
56:4c:c1:97:ea:9e:e7:4e:e9:e5:0d:aa:94:77:cd:94:8b:05:
6a:86:ba:89:11:19:ca:af:2b:a6:2b:f0:c7:ed:62:b6:d5:52:
5e:e8:70:4c:fb:f8:2a:8a:b6:bc:fe:b3:27:b5:8f:99:40:91:
4f:bb:fc:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 16 15:47:01 2025 by rpki-client