Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/bb5b7ce2-7837-4b22-bd41-020d88c2d7b9.roa
File: bb5b7ce2-7837-4b22-bd41-020d88c2d7b9.roa (raw, json)
Hash identifier: LQoQRTWxtBg0ucH95rcdQN/55nsdpchgQMc/YBZFERE=
Subject key identifier: FD:20:31:AD:75:7E:12:00:D4:4F:EE:26:25:B8:C7:A1:31:8B:75:C6
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 60FBDDC0C84643731D170AB441841B7CBB15F084
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/bb5b7ce2-7837-4b22-bd41-020d88c2d7b9.roa
Signing time: Wed 18 Dec 2024 00:00:00 +0000
ROA not before: Wed 18 Dec 2024 00:00:00 +0000
ROA not after: Wed 22 Jan 2025 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
60:fb:dd:c0:c8:46:43:73:1d:17:0a:b4:41:84:1b:7c:bb:15:f0:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Dec 18 00:00:00 2024 GMT
Not After : Jan 22 23:59:59 2025 GMT
Subject: serialNumber=be7e7b595412e5e7eb6b26c5d751fe46771c32aa17172a6234e440bb570f3513, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:9c:d7:98:47:70:ac:a0:bf:1a:f4:45:af:cb:
b5:2e:91:f1:ef:b2:cd:5d:96:37:a6:bc:84:eb:00:
95:7f:fc:a7:2c:95:ad:ab:c8:cd:38:b9:dd:18:e3:
35:38:24:44:4e:6c:9b:ac:dc:9c:3e:29:22:4d:6a:
44:98:89:d0:20:f9:00:6e:04:53:db:85:c8:10:a5:
4c:82:a9:f1:37:bd:15:40:4d:c9:55:8c:a4:df:09:
96:4c:b2:ba:d6:79:d9:6a:29:17:dc:8f:da:09:94:
6d:f0:c2:99:66:20:e3:5a:f6:9d:55:8f:c7:29:8f:
61:81:1e:a1:07:e9:20:22:e4:91:6c:96:2e:b0:05:
11:5d:a8:8d:a2:0f:d5:b5:07:ba:6d:be:7d:92:15:
3e:91:40:ca:70:2a:76:f9:74:e2:ab:e1:ad:b8:16:
a5:be:11:b3:a6:45:53:64:fa:0f:52:63:12:f4:ff:
04:03:4b:f8:64:a8:76:7e:0b:25:f7:fe:e4:aa:32:
c5:2e:94:ae:88:6e:11:30:dc:fe:6e:e0:ab:f6:99:
75:35:6d:38:50:1a:34:af:fb:03:92:fc:7f:1b:03:
b9:82:a0:f0:e6:2e:44:9a:49:fd:a3:d5:ab:75:df:
b3:4c:ef:b4:c8:3d:31:db:16:5e:c9:08:c6:82:9d:
38:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:20:31:AD:75:7E:12:00:D4:4F:EE:26:25:B8:C7:A1:31:8B:75:C6
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/bb5b7ce2-7837-4b22-bd41-020d88c2d7b9.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
87:a5:c0:ea:65:61:14:13:9c:41:93:8b:de:eb:21:e8:ef:c1:
0b:29:67:a5:45:6c:e2:5b:f4:fc:a8:21:8f:c2:50:09:1a:a9:
ba:1f:58:05:c2:ef:2f:9f:ac:0a:b1:d6:ad:11:2a:c2:8a:30:
44:d0:42:05:0a:9a:0d:1f:75:c9:bb:39:6e:86:24:f7:82:0f:
39:1a:73:94:27:45:0c:62:d0:a7:18:59:21:60:82:c5:e9:91:
7a:b2:52:43:ee:9e:5a:e6:4b:51:12:be:14:d9:a8:87:a4:d7:
a6:9a:93:cd:77:d4:33:d6:96:e8:ac:cc:1f:d3:2d:e4:0f:df:
3e:0e:64:8d:23:d1:40:97:13:e2:da:92:4b:54:7a:91:b5:4a:
7d:28:93:ae:ce:31:f6:42:5a:00:2c:a7:90:9d:7c:0e:29:df:
52:a7:6c:03:c3:00:b2:49:9a:70:0a:1f:aa:df:e5:48:7c:73:
10:0e:88:bc:1c:0e:72:ef:17:7d:af:ff:e2:b4:c7:d3:9d:80:
0c:b0:f4:ee:c0:be:10:d5:5b:bb:d9:82:18:76:29:9b:e2:28:
45:fe:7f:b3:95:d6:d1:0a:f0:df:6d:94:fe:b7:3f:5c:fb:ff:
45:8f:09:76:c9:12:12:b8:0f:eb:bc:42:c6:1a:f9:59:36:16:
e1:87:1b:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 18:40:41 2025 by rpki-client