Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/800d5f18-0f7e-4b0e-b39a-cc0e64e04e13.roa
File: 800d5f18-0f7e-4b0e-b39a-cc0e64e04e13.roa (raw, json)
Hash identifier: WteXs5kwoAQ74HqeW+NJy+ehOXhLLt8Vtd7bkdo7pdM=
Subject key identifier: 39:50:5A:E4:5C:81:65:82:E8:E5:35:F3:A8:9C:85:BE:2B:0E:BA:17
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 0AF608239BD629CF4DE2AC2B15E9076BDD9E95D4
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/800d5f18-0f7e-4b0e-b39a-cc0e64e04e13.roa
Signing time: Fri 13 Dec 2024 00:00:00 +0000
ROA not before: Fri 13 Dec 2024 00:00:00 +0000
ROA not after: Fri 17 Jan 2025 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0a:f6:08:23:9b:d6:29:cf:4d:e2:ac:2b:15:e9:07:6b:dd:9e:95:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Dec 13 00:00:00 2024 GMT
Not After : Jan 17 23:59:59 2025 GMT
Subject: serialNumber=39695876524e32ac3b5129eaab15690dd20cef96daf6cbe3ee3ef7906307e714, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:ee:ee:93:5d:c5:cc:4c:a7:3d:79:e3:c8:37:
2a:d3:bb:b4:e3:34:ab:1d:d3:e7:7f:05:aa:2a:9c:
ea:bf:67:03:d3:d9:ac:37:95:be:88:52:92:93:5c:
bd:15:a8:01:95:22:a8:7a:b2:e5:46:91:b5:5c:24:
a3:02:d2:a5:fa:a8:c7:ba:3f:2e:97:83:ec:41:64:
07:65:d4:dd:96:6d:03:eb:27:ee:3e:66:e4:72:77:
ea:4f:8d:7e:81:a2:79:52:6a:5f:e9:c5:d9:ab:6a:
4b:06:cb:0f:7b:96:c2:87:d7:be:b4:64:e6:5a:e5:
68:62:e1:ee:b9:5e:56:f9:8e:47:41:f8:90:8f:be:
5c:46:c8:b9:c9:19:52:bc:50:7c:cd:f0:eb:78:96:
33:61:92:46:b7:0d:8a:59:ad:ae:bd:67:12:d9:72:
99:3a:d0:a0:48:7f:00:db:62:b8:c4:2a:f8:08:7b:
6f:24:d6:fe:79:10:cb:18:78:d8:de:87:95:c0:51:
4b:c0:19:8c:9b:77:8c:83:f6:b1:2e:66:e3:30:0e:
b0:85:7d:9c:24:4f:52:0b:1c:bb:90:ed:87:31:42:
7f:39:2e:e2:8e:b0:43:2a:06:fc:3f:88:3d:b0:3b:
ba:c0:a8:f3:d0:76:0c:f3:69:42:31:cd:5e:56:8b:
e6:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:50:5A:E4:5C:81:65:82:E8:E5:35:F3:A8:9C:85:BE:2B:0E:BA:17
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/800d5f18-0f7e-4b0e-b39a-cc0e64e04e13.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
42:64:c9:9d:80:30:5b:21:29:e7:a3:51:55:07:ce:2f:a1:5b:
cf:b2:cc:ef:3e:99:ee:54:1e:d0:1d:85:eb:ea:00:b0:38:cf:
0e:03:b9:f1:c2:ec:96:dc:9f:2a:29:94:a0:aa:26:9c:43:98:
db:02:66:2d:7c:fb:19:26:d1:c7:ae:43:f1:7d:28:c2:fb:f8:
37:24:b1:d4:0f:7b:23:9b:66:ed:ea:28:c5:56:a0:4d:8c:5c:
8b:89:11:e1:ec:5e:b1:14:a8:cf:20:e2:85:24:5a:43:24:41:
36:b9:b2:58:81:b2:61:1d:3d:8f:d9:38:2c:bb:22:97:e5:aa:
39:9b:66:bc:c2:99:4f:62:e3:4b:9b:5f:33:b8:cd:66:e2:80:
50:fc:96:ec:93:76:b5:42:00:00:fe:e1:17:01:bc:0b:16:65:
22:e6:60:35:af:09:35:3a:61:a7:da:12:ac:d2:db:48:6b:00:
32:d4:48:c1:1c:c3:c2:e0:25:79:5a:5d:50:b4:58:a1:59:d1:
26:aa:cc:56:89:37:4e:82:84:0a:21:fe:d6:30:ae:13:b9:37:
92:d0:7f:fa:21:b8:8f:9c:a0:7c:92:38:12:ae:0a:85:a0:7b:
89:34:16:ea:a7:1b:bb:a6:9c:71:b3:e1:11:e9:a0:89:92:25:
af:e8:a2:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 17:41:31 2025 by rpki-client