Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/7e685189-4535-4bfc-be75-01e2797f4f11.roa
File: 7e685189-4535-4bfc-be75-01e2797f4f11.roa (raw, json)
Hash identifier: xUmQxtx+3QVtmrk/eUfn4IhdQqZsH8hhQusoFkLHVBs=
Subject key identifier: 70:BB:06:C4:2C:0C:A6:08:94:C3:6E:1F:8D:94:F5:EF:21:C3:81:C7
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 1DA43E81CE31D5506D2042E519D6E14F6678D02C
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/7e685189-4535-4bfc-be75-01e2797f4f11.roa
Signing time: Wed 22 Nov 2023 00:00:00 +0000
ROA not before: Wed 22 Nov 2023 00:00:00 +0000
ROA not after: Wed 27 Dec 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1d:a4:3e:81:ce:31:d5:50:6d:20:42:e5:19:d6:e1:4f:66:78:d0:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Nov 22 00:00:00 2023 GMT
Not After : Dec 27 23:59:59 2023 GMT
Subject: serialNumber=254be403005796672c33dc0f3e6a977318c2ee088988d34758fb69b634078f00, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:4d:f1:f6:af:fd:19:cc:0b:9b:df:8a:ad:c4:
b4:f0:c6:82:a0:ad:53:74:f4:6b:2b:3a:7b:86:d9:
c9:2c:20:6d:7c:f9:f8:f2:0f:c1:ca:5b:e0:d1:3e:
e3:42:df:f8:49:7f:c3:63:ef:ae:09:ef:d5:35:62:
de:1e:88:04:bc:b5:76:02:3c:67:da:d8:f4:8c:27:
43:5a:03:34:01:6e:2d:1f:ea:8a:9f:46:67:28:62:
53:ad:33:92:b8:50:9b:07:58:bf:1a:a5:72:01:c8:
26:1c:fb:81:60:77:bf:d4:62:a9:a6:ce:21:b0:db:
53:96:8f:8c:4b:c3:6e:7d:c7:5c:48:da:36:99:25:
3a:12:ab:24:80:c4:31:13:db:7d:72:68:97:7f:c0:
3d:4a:bf:4e:f0:92:01:93:1a:a6:a5:09:22:00:5d:
88:26:dd:54:91:bb:39:5d:bd:2b:f1:27:49:75:f9:
50:10:5c:71:3d:5b:bc:66:f4:f1:0a:fc:db:cc:76:
5a:f0:00:5e:62:50:25:27:c4:79:11:97:a5:cf:f3:
52:67:9f:6b:22:35:94:8c:72:46:1e:d4:77:6b:9b:
f7:a8:91:e9:fa:5b:22:b8:f9:0d:cd:cf:d5:1b:2a:
4e:22:4b:bc:0c:12:64:4c:1e:02:ab:62:71:e1:16:
58:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:BB:06:C4:2C:0C:A6:08:94:C3:6E:1F:8D:94:F5:EF:21:C3:81:C7
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/7e685189-4535-4bfc-be75-01e2797f4f11.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
10:32:b3:f9:91:85:a3:5a:7d:51:62:b1:d3:4d:f2:a9:a0:9f:
87:f7:c8:cc:75:4c:cc:aa:3c:59:9a:54:fb:c9:b7:f7:3d:e2:
c6:79:c3:88:12:f9:6b:ad:28:12:5f:e9:e5:eb:51:3c:4d:ee:
03:17:df:84:e8:eb:a3:ba:3b:e1:fb:69:58:9b:64:1d:72:ba:
40:3f:e1:f7:5a:47:4b:29:cb:c0:17:b8:4d:cf:77:a6:ec:94:
1c:e5:a1:cb:67:a0:c4:85:75:1b:89:fa:0f:0e:45:80:4e:f6:
ae:4f:ed:fa:97:21:69:5f:0e:01:7e:fe:b9:c3:76:fe:10:94:
de:1b:93:56:ec:1c:72:50:d3:17:91:8d:c2:12:c9:a5:1f:b4:
6c:16:a1:23:35:c8:a7:e9:b6:30:21:23:bf:7d:0a:9e:8e:ba:
32:22:0d:cf:81:54:47:6b:6d:41:17:c2:bc:b4:f8:bc:89:37:
90:f4:70:63:16:58:93:f7:d1:03:c6:61:70:3a:5c:ed:33:7a:
d0:1f:98:30:db:be:89:df:fc:1c:8a:f0:52:2d:29:99:3a:a3:
b0:17:0b:5c:0d:85:3b:6c:6a:09:60:f2:a2:bd:6c:24:57:51:
41:b6:cb:c9:5b:89:a9:07:eb:9c:52:02:71:77:ea:dd:0f:52:
07:a1:df:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 00:22:56 2025 by rpki-client