Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/92345f3e-2f39-4547-912c-f390842951d2.roa
File: 92345f3e-2f39-4547-912c-f390842951d2.roa (raw, json)
Hash identifier: gC3g10+CTCSjK1ZtoN6l0Eqqut99ooP4UZ55Bz0AFz4=
Subject key identifier: 38:A8:44:D0:1E:57:3B:2F:76:14:18:05:54:25:93:2E:B7:C3:01:F3
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 3008A5234007AD28180A06119174E4EF4DBB0D1C
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/92345f3e-2f39-4547-912c-f390842951d2.roa
Signing time: Thu 22 Feb 2024 00:00:00 +0000
ROA not before: Thu 22 Feb 2024 00:00:00 +0000
ROA not after: Thu 28 Mar 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
30:08:a5:23:40:07:ad:28:18:0a:06:11:91:74:e4:ef:4d:bb:0d:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Feb 22 00:00:00 2024 GMT
Not After : Mar 28 23:59:59 2024 GMT
Subject: serialNumber=fd26325b5c0f95973965bad74a4dbb132efd213a3fe204167d8d6afe0f24acb2, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:ef:ba:84:50:99:fe:8d:d4:51:df:84:01:89:
25:91:44:93:94:d7:9d:64:a6:81:ba:47:24:3e:ec:
58:6d:42:60:a4:fb:01:45:6f:45:41:ae:bc:e0:9f:
b2:15:f2:e5:24:f1:d1:e6:b3:7f:20:73:50:01:f3:
a8:98:58:8b:23:94:02:36:bf:46:b6:04:26:aa:26:
54:a4:46:40:2a:24:26:a5:74:fa:fa:e3:51:64:40:
50:0a:6d:ac:bc:52:86:c9:6c:5b:65:d4:61:f6:61:
30:4c:8a:0f:b7:02:2b:20:12:44:e0:de:c4:87:07:
14:72:97:f8:be:34:1d:5b:ea:72:44:41:c5:11:37:
10:8f:06:c3:63:9c:25:ae:27:34:b6:a2:ed:b9:d3:
ac:f3:43:24:9e:0a:ab:17:20:9c:0b:60:00:bf:a0:
c9:da:79:2c:b6:36:7a:58:52:26:cc:bf:be:d1:6a:
73:1a:5b:52:2c:38:19:6f:51:26:37:38:2c:98:b1:
4e:8f:30:dd:5d:dc:f0:13:f8:d5:60:22:4c:97:24:
0e:82:5f:25:f1:6a:63:f1:b3:db:a3:5a:f7:57:58:
0f:44:76:13:78:f5:d0:46:df:f2:58:33:8f:6f:7d:
fd:39:2a:9e:ea:1d:d0:20:d1:83:d5:06:32:2e:de:
d1:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:A8:44:D0:1E:57:3B:2F:76:14:18:05:54:25:93:2E:B7:C3:01:F3
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/92345f3e-2f39-4547-912c-f390842951d2.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
59:ac:95:47:b6:c7:a1:6f:49:70:67:29:c8:e3:5b:78:ac:64:
98:33:fe:fb:57:7f:5d:6b:b4:41:c8:fe:a0:0e:70:b3:fb:56:
67:75:ef:8e:20:cd:bf:f4:3a:23:a6:91:02:eb:54:31:a8:02:
14:60:64:0f:16:27:95:8a:38:7b:b7:a3:d9:f7:0e:88:64:26:
77:1a:9f:b2:fc:cf:8f:9c:bf:49:f7:08:ea:0b:bb:3c:bd:8f:
f3:65:ae:84:14:06:e9:29:ef:94:ed:f2:cd:21:d2:29:9c:e0:
3f:ac:24:64:a6:0e:22:69:1c:4a:ac:f9:9a:17:23:59:86:a9:
59:01:60:de:89:0a:a2:4d:53:3b:40:1b:6e:e7:98:4e:28:70:
c0:8a:d0:5a:7b:5c:31:38:33:05:9d:37:45:5b:65:bd:fb:5e:
00:c0:49:f4:90:e9:4e:ef:22:80:25:12:0a:16:30:2e:a6:a8:
e4:a8:0f:53:f4:0b:bb:e8:02:71:6a:a1:d9:2a:c1:9e:a1:79:
6b:20:ea:26:22:41:a9:68:4d:4e:74:dd:e1:ca:07:a0:f0:ec:
6b:8b:cf:fe:a1:a9:d0:ca:13:1e:3b:a8:09:e4:c6:ad:29:b0:
02:78:91:a8:1f:6b:ce:02:2c:5d:97:15:ae:8f:6d:e5:1d:17:
b1:cd:22:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 18:03:48 2025 by rpki-client