Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/abed771f-f002-48ae-a6c3-006c8286464d.roa
File: abed771f-f002-48ae-a6c3-006c8286464d.roa (raw, json)
Hash identifier: 1bSOmyVpVXBDnDEUMwbsup/Y+/Tdn1z7xVciH7B/Vss=
Subject key identifier: 01:E6:D6:98:3D:FA:3C:02:54:4A:5B:D8:1D:AD:2C:88:FE:C6:71:08
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 2356AAF6A699EBD3BDDA9CABEEF3714DC45D2B1A
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/abed771f-f002-48ae-a6c3-006c8286464d.roa
Signing time: Sun 09 Jun 2024 00:00:00 +0000
ROA not before: Sun 09 Jun 2024 00:00:00 +0000
ROA not after: Sun 14 Jul 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
23:56:aa:f6:a6:99:eb:d3:bd:da:9c:ab:ee:f3:71:4d:c4:5d:2b:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Jun 9 00:00:00 2024 GMT
Not After : Jul 14 23:59:59 2024 GMT
Subject: serialNumber=ccbacd3a282ad0b8d06fe149b10ba0cce6059a3e8d09de7efe191e95ea51f0a3, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:af:76:7f:05:c7:c8:07:08:10:23:2f:9d:04:
20:ff:5d:14:ed:6e:5e:aa:04:1a:34:a4:0b:f5:5d:
82:02:2b:38:e8:e2:9f:4e:51:95:4c:e2:34:13:1b:
4f:07:c4:31:17:9a:e9:5d:96:82:fd:73:10:e3:25:
d7:2c:9d:60:3c:bd:68:87:86:3e:44:1e:ca:51:a0:
8e:56:57:39:ff:a2:d7:2b:bb:0b:47:80:27:e7:a8:
a5:bb:b4:c1:5e:2a:e2:94:17:31:be:52:1e:12:1e:
91:5f:93:9e:69:e8:59:e5:b4:07:a4:71:b3:40:09:
33:22:0f:87:14:a7:b6:44:49:9c:fd:1f:d6:99:f4:
85:4f:bc:17:cc:7f:94:ce:73:67:40:09:ed:30:f7:
c7:8a:6d:49:87:fe:d1:88:c7:93:00:91:1f:7e:ef:
a8:a2:b0:50:48:c2:3d:76:a3:3e:0b:54:f5:38:55:
ed:74:8d:52:35:d1:15:75:0c:f9:9c:2d:6f:91:aa:
1d:6f:9e:1f:a6:06:a1:64:ab:cb:49:87:2f:7a:b8:
f1:33:6c:f3:69:c8:3a:92:e9:2f:c9:86:98:4e:99:
05:05:15:37:1a:a4:82:0f:60:58:0e:61:b3:f7:a4:
e3:72:8c:13:dc:a7:e1:12:ed:14:3a:d3:54:f2:2a:
21:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:E6:D6:98:3D:FA:3C:02:54:4A:5B:D8:1D:AD:2C:88:FE:C6:71:08
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/abed771f-f002-48ae-a6c3-006c8286464d.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
83:10:d0:55:3b:71:1c:0b:16:51:74:9b:8d:62:53:80:95:60:
64:41:18:b8:a3:1f:e7:b6:28:b6:c5:19:96:e4:5c:cf:f5:67:
d8:67:43:b4:db:5d:3c:6f:57:9e:9f:ad:ca:3f:31:a5:da:ff:
78:de:97:19:e2:31:82:74:06:df:da:59:61:ad:d6:62:92:51:
3b:8d:ac:e0:6f:da:5c:96:14:9e:f3:fd:c6:a6:c8:e4:54:49:
55:67:a0:e6:8a:9c:2c:59:a1:c8:56:09:31:b7:a7:43:79:a4:
17:90:59:66:be:1c:ee:f5:c8:b3:db:ac:82:bc:64:4a:b9:34:
b7:81:ec:12:28:ee:3e:9d:0f:21:99:69:67:bc:89:5b:e7:ad:
64:c4:31:bf:df:e0:6d:18:58:d0:0d:11:35:93:d5:40:31:42:
21:57:2e:62:6b:a9:81:da:15:75:54:db:c6:6e:fc:1d:0a:ff:
d7:60:67:fa:65:75:8e:47:a2:1d:ed:a1:e0:b1:ed:cb:6d:fe:
ad:c7:68:c4:8a:c8:c3:b3:a8:a6:47:97:e7:93:3b:94:f6:59:
84:3b:98:de:32:a0:9d:8f:75:75:3b:eb:f1:e6:d1:b8:9e:75:
4a:a0:a8:7a:e6:9e:08:55:c2:d0:02:9a:a4:9d:e4:4b:c4:28:
98:e6:77:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 16:12:49 2025 by rpki-client