Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/ce8db36e-cd33-403f-a001-792973628f55.roa
File: ce8db36e-cd33-403f-a001-792973628f55.roa (raw, json)
Hash identifier: C0pAyBVju/dBI5nHsMsjjk3vSkYDOx/rbYmoZ7OWvO0=
Subject key identifier: 63:C0:3E:CA:37:1E:D1:D2:71:88:C3:D0:86:FB:36:15:A7:80:7F:E0
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 7F4FF66E8D4DDF01A17DBB69957D07EB7F2DC66E
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/ce8db36e-cd33-403f-a001-792973628f55.roa
Signing time: Wed 22 May 2024 00:00:00 +0000
ROA not before: Wed 22 May 2024 00:00:00 +0000
ROA not after: Wed 26 Jun 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7f:4f:f6:6e:8d:4d:df:01:a1:7d:bb:69:95:7d:07:eb:7f:2d:c6:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: May 22 00:00:00 2024 GMT
Not After : Jun 26 23:59:59 2024 GMT
Subject: serialNumber=573a1ad5f39dd6971fbe9634f3a3e0a853e8cea1f57a00ee250c4d77854360e3, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:74:f9:26:04:c5:b6:89:6d:c9:73:02:cb:a3:
dc:50:61:20:44:db:49:71:35:93:57:38:e2:5a:a8:
13:1a:9e:78:47:bf:de:be:6f:3f:42:16:c6:71:5f:
73:55:6e:db:9d:ba:0a:e1:53:8d:9e:6f:e0:c3:ad:
8a:93:14:8e:a7:ee:7e:e1:e3:c2:c2:b9:6c:df:b6:
73:f8:0a:4f:7d:74:50:40:d0:e8:4d:06:66:12:d1:
45:80:fd:ac:c4:5d:15:94:02:a8:1e:79:17:73:27:
86:ec:29:26:e7:a1:5b:44:e5:50:43:2b:57:ec:99:
13:2c:cb:b2:cb:02:85:eb:10:e4:df:c8:e6:b8:52:
52:3e:02:1b:89:0b:c8:11:3a:6f:c3:97:2d:de:54:
40:b4:6c:61:02:b3:7a:4c:89:2c:f8:55:78:48:32:
fc:50:ec:f3:a9:a2:a0:7b:da:01:c9:f0:14:90:90:
10:f5:44:e4:cd:4b:69:0b:bd:4a:64:cf:45:01:29:
71:69:fa:e1:80:74:f0:7e:dd:b2:bf:1d:c5:32:e9:
42:8b:b7:62:04:29:d5:7a:0f:cb:66:55:d6:26:7a:
e1:89:d8:eb:a2:31:7f:52:c5:23:c7:8b:d4:7e:8f:
57:f5:59:74:22:2d:74:b5:5c:84:ea:4b:a1:e8:bc:
e3:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:C0:3E:CA:37:1E:D1:D2:71:88:C3:D0:86:FB:36:15:A7:80:7F:E0
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/ce8db36e-cd33-403f-a001-792973628f55.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
70:06:d3:42:f8:33:af:d6:39:c4:63:9c:fb:69:28:be:46:9c:
0f:eb:e4:11:c8:5f:e2:fa:bf:a0:76:d1:23:cf:94:dd:24:de:
60:d8:d7:47:20:17:20:44:46:da:dc:0d:73:8c:73:23:7d:72:
8e:2d:84:ed:17:bd:f3:45:08:65:78:49:37:1a:36:03:82:b5:
e7:cc:ec:9c:4a:f4:19:ed:d7:7d:16:8c:3d:56:34:40:05:99:
9a:0f:08:ae:33:8b:d8:60:b8:3a:6f:2c:4d:ac:5b:88:cc:ee:
5a:03:a7:4e:5d:4d:ca:f6:21:18:a9:24:2b:c2:bc:f5:19:1e:
d8:95:0c:db:e9:04:58:f7:20:34:10:8a:96:e3:da:99:75:83:
ed:32:3f:c3:55:97:42:2a:8a:36:6f:86:6f:65:da:e8:df:7d:
21:3d:cb:47:cc:14:66:cc:82:3c:dd:fb:a2:71:92:50:0a:0d:
bd:e8:4f:43:4a:8b:bd:2e:86:02:42:11:8c:bf:6b:b3:89:88:
e1:f4:97:36:f0:e4:ca:af:9e:94:69:3a:c4:c0:64:d3:14:7a:
49:60:cc:54:23:a0:b4:58:61:c0:89:03:7b:a8:50:60:9d:a4:
1e:e6:e3:cf:b3:5b:1b:9b:db:77:f1:8a:a5:ba:cf:d8:90:95:
13:28:d1:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 16:00:02 2025 by rpki-client