Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/9277a3fb-f1e3-4685-bfc3-79ac36c88a9b.roa
File: 9277a3fb-f1e3-4685-bfc3-79ac36c88a9b.roa (raw, json)
Hash identifier: Tp0aQDVPYEgiZXpxxS5XcP4Fm62VQExuXntzYaA/AQ0=
Subject key identifier: 3A:3D:EB:9D:DD:97:84:FB:8E:5F:86:4D:EE:51:24:02:7C:A7:CF:C4
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 35B76D027599BE2C5C088039E37C2485686A83E7
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/9277a3fb-f1e3-4685-bfc3-79ac36c88a9b.roa
Signing time: Sat 04 Nov 2023 00:00:00 +0000
ROA not before: Sat 04 Nov 2023 00:00:00 +0000
ROA not after: Sat 09 Dec 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
35:b7:6d:02:75:99:be:2c:5c:08:80:39:e3:7c:24:85:68:6a:83:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Nov 4 00:00:00 2023 GMT
Not After : Dec 9 23:59:59 2023 GMT
Subject: serialNumber=e07c155d1761d9a02c9d3a0d20f52b7061564d71056dbe587b940692a6ec3af8, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:6d:df:89:e5:00:a0:ad:a0:f2:72:f3:75:26:
cc:eb:1f:a3:b1:d6:05:70:12:f6:86:59:7e:b7:81:
ae:e9:a0:54:9b:33:b0:90:6f:6c:d3:c4:53:8e:a6:
9d:6c:16:9c:8a:d5:f5:a6:ea:56:59:90:96:07:b0:
cc:65:f2:e1:31:8d:75:48:f1:f8:bf:d4:e5:74:9e:
54:5f:a0:73:2a:1d:62:47:2b:d9:89:7d:12:75:26:
15:64:88:8f:fb:51:bf:45:83:02:f6:d0:8e:f0:ba:
15:50:bb:aa:46:21:ad:0f:8e:e5:82:4c:c9:c9:55:
23:72:f1:c9:b3:80:31:59:25:93:d3:64:78:50:5f:
d8:0b:c7:9b:53:9c:4e:b4:b8:5a:14:89:f6:70:49:
96:80:6c:92:62:b6:40:d3:e4:c8:54:4e:07:41:bd:
fd:9e:f6:26:4d:85:4b:fb:59:71:f6:b6:4d:82:bf:
b8:5a:ad:30:66:3a:b3:f3:b8:15:fd:da:9e:66:e4:
56:d7:3e:58:a3:39:df:c3:3d:e6:3a:be:f9:4b:59:
14:81:12:42:34:c7:6d:17:30:77:95:c7:d9:09:aa:
2c:6a:fa:e9:ff:6e:59:9b:25:71:e7:cb:b4:f4:5d:
9a:50:c8:f7:3a:30:f0:c3:48:5c:7e:c9:b9:05:3f:
a2:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:3D:EB:9D:DD:97:84:FB:8E:5F:86:4D:EE:51:24:02:7C:A7:CF:C4
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/9277a3fb-f1e3-4685-bfc3-79ac36c88a9b.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
9c:2b:5a:22:cb:91:3d:38:96:d3:13:5c:52:b0:ee:34:ab:87:
30:62:4e:04:6f:50:44:ae:84:0e:03:21:71:df:2b:9e:6d:37:
e1:c5:26:99:d1:24:a8:fe:67:ad:ae:0c:be:58:97:a2:89:1d:
0f:7f:3b:74:d9:69:db:1d:51:a4:d3:d3:5f:68:4b:9e:29:ba:
cc:b9:66:a2:0a:30:5e:79:4f:ad:ca:bb:41:23:f1:bc:ea:ab:
fa:c5:0d:0c:f3:b4:e5:e8:8f:6b:6e:f0:8b:a2:37:73:6c:57:
6e:2b:ff:8d:7f:19:fb:a4:05:2d:1f:c4:8b:49:fc:e2:cc:01:
b1:5e:7e:62:75:4e:d3:ac:f0:c5:d6:c6:a6:ef:c9:9b:0a:d1:
41:5a:4b:a7:71:2f:5f:9c:d7:91:07:28:61:d0:94:d4:a3:d6:
0e:52:1e:16:11:c7:4c:b1:f9:17:4f:92:8d:bc:7a:52:f2:da:
49:55:1e:cf:ab:73:0f:ea:1d:37:90:6d:ab:e9:d3:4a:75:58:
e8:78:ae:81:b0:87:e5:11:12:d1:5a:02:37:89:11:66:6e:a0:
41:24:8d:1d:46:74:7c:3c:73:26:74:48:d3:91:d0:dd:bc:a8:
ad:4a:d1:bb:ef:16:7b:e6:04:1c:91:a9:fb:4e:ce:a1:3b:8c:
a9:66:a4:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 16 11:20:02 2025 by rpki-client