Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/81750729-fa19-4df4-8209-f8e025e48a92.roa
File: 81750729-fa19-4df4-8209-f8e025e48a92.roa (raw, json)
Hash identifier: mUvWp/7SNu9KOAbvdt9AE/n2LhQWQsHK6Iml20y/1MA=
Subject key identifier: 59:79:AF:40:1B:9A:E5:15:62:E2:A6:76:97:0B:BA:8C:05:10:34:60
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 37DF297078BE8F9062B5EA7DBF8FFB3332518189
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/81750729-fa19-4df4-8209-f8e025e48a92.roa
Signing time: Sat 19 Oct 2024 00:00:00 +0000
ROA not before: Sat 19 Oct 2024 00:00:00 +0000
ROA not after: Sat 23 Nov 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
37:df:29:70:78:be:8f:90:62:b5:ea:7d:bf:8f:fb:33:32:51:81:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Oct 19 00:00:00 2024 GMT
Not After : Nov 23 23:59:59 2024 GMT
Subject: serialNumber=42747501fec0e86b67f5e14c94042b652b5c438e63f496d80d623c3e5f032c90, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:7b:ea:33:b1:51:63:31:d2:fc:3b:6a:0e:19:
6f:a3:b7:32:1f:67:ec:78:2a:79:de:e1:19:12:8e:
d6:4d:a3:de:bb:23:18:b5:dd:25:cf:cf:1a:93:d5:
0a:e6:13:77:65:fa:7b:9c:18:09:11:9d:d0:7b:6f:
a6:d8:50:80:a3:a8:b7:43:e5:a6:46:e5:ad:1d:a1:
93:29:5c:4d:37:13:e3:e5:ef:08:cd:b7:11:ab:5f:
93:42:54:bb:72:66:f6:7b:80:b9:a3:bc:e9:88:56:
d6:21:48:0e:ad:08:6c:e2:79:3f:6b:9d:23:fe:89:
4e:36:48:e1:d2:bc:00:4d:4f:9b:2e:fe:16:f3:87:
28:bf:91:f7:04:0d:a3:37:63:1b:2a:ab:7c:1c:d1:
8b:5f:40:54:f6:35:29:94:c6:b2:db:b5:ee:49:53:
27:42:97:60:8c:c9:8c:1e:5d:07:61:c2:a3:4c:6a:
e7:03:30:f8:01:ee:5c:63:f8:44:be:c1:1c:ee:11:
a3:e0:dc:be:e6:81:37:3a:c8:5a:ee:2e:d3:63:61:
9c:bd:a4:d6:f5:46:8a:22:d6:59:06:33:1c:8a:a8:
bf:80:b2:36:51:b6:10:01:53:d7:f6:58:7f:8c:9b:
cb:9a:93:a6:cb:fc:6c:fe:b8:a7:a8:57:c6:9b:66:
a6:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:79:AF:40:1B:9A:E5:15:62:E2:A6:76:97:0B:BA:8C:05:10:34:60
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/81750729-fa19-4df4-8209-f8e025e48a92.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
24:56:8c:51:e1:b8:d0:88:ae:8b:45:bd:59:9e:52:ee:74:7c:
a6:0a:7f:3f:bd:bf:52:e3:2f:c3:40:3c:4f:61:ef:28:68:f9:
f2:19:82:c6:d0:61:a1:a3:e3:24:5e:64:1b:a6:5f:32:f3:b7:
3b:00:f6:13:5e:16:90:fb:81:b2:93:a6:8d:00:10:21:5a:65:
fb:18:6e:ab:73:10:c9:2b:04:b3:28:cd:30:07:1d:36:a0:1a:
f9:67:3e:38:50:07:50:fe:90:2d:2e:70:77:d7:69:23:04:25:
1b:28:fd:b7:0a:92:a2:56:f5:74:d9:d5:e4:d1:32:c7:0d:f7:
d7:91:e0:77:9f:d3:68:92:71:9e:46:ce:ae:bf:8a:f0:a1:19:
4d:21:85:51:38:3a:e4:94:b6:36:24:a8:4a:34:47:4c:1c:5c:
4f:04:20:98:07:f7:80:2e:69:eb:10:b7:9a:f3:95:51:d0:5b:
19:1f:14:02:0b:f5:81:79:6d:14:1f:c8:e8:7c:6a:18:48:7b:
c1:14:50:c7:dd:4b:72:9b:3e:70:4f:84:ec:30:50:e7:99:17:
4e:42:c2:86:24:3d:99:6d:3b:65:e1:7f:52:cd:cc:fa:6e:22:
33:99:da:9f:eb:8a:2a:55:85:21:da:20:89:3a:6f:b0:53:ba:
c2:8e:78:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 18:09:20 2025 by rpki-client