Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/d1e950b8-4e94-420a-8ca3-bc16293a4a1d.roa
File: d1e950b8-4e94-420a-8ca3-bc16293a4a1d.roa (raw, json)
Hash identifier: S8kOEyZVQAFfTpzWgC0cYRcsrWaxdgB37FuxfNOCqrk=
Subject key identifier: 95:73:D4:DB:24:3F:90:15:98:4F:16:E5:48:AC:0F:79:6A:C9:CB:5D
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 3A64738BCDB2A2B745B92BBB8932DAA48B1966DB
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/d1e950b8-4e94-420a-8ca3-bc16293a4a1d.roa
Signing time: Thu 13 Jul 2023 00:00:00 +0000
ROA not before: Thu 13 Jul 2023 00:00:00 +0000
ROA not after: Thu 17 Aug 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3a:64:73:8b:cd:b2:a2:b7:45:b9:2b:bb:89:32:da:a4:8b:19:66:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Jul 13 00:00:00 2023 GMT
Not After : Aug 17 23:59:59 2023 GMT
Subject: serialNumber=e85e651f08bbe24dcc8ec12e59e9f95ee5f2c710e861d04727401ba859d870e5, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:a9:b7:65:9a:1c:b8:f3:40:1c:2b:31:cd:ab:
ca:43:a0:e4:6b:f4:9e:f9:ed:67:5b:41:2a:ff:dc:
0c:91:b5:85:ad:46:73:39:82:dc:ab:b5:97:88:4e:
f9:11:f7:ac:34:0d:ea:50:88:d7:c0:91:0e:e5:45:
6b:a8:9f:4a:fa:af:3f:96:a8:9a:a3:e3:98:66:18:
f7:77:a2:46:a7:56:56:b2:9c:77:9f:26:3e:dc:dc:
8d:67:1e:1e:6f:ee:cc:18:09:ed:65:d9:ac:fb:c0:
83:17:38:3e:17:d1:a9:73:bf:13:01:d3:c8:c6:cc:
2e:f7:5f:1f:58:b1:47:01:fc:e4:c0:75:a2:d4:ab:
60:03:db:e2:40:a5:51:5f:88:d6:d6:0e:f2:8f:5e:
c5:ec:14:62:8c:4d:41:53:cd:f7:ca:e5:83:b6:ee:
73:f9:70:f4:cf:ad:d3:8f:c9:9c:65:c0:7f:76:a9:
4b:01:fc:9a:83:ed:85:58:42:c2:cb:45:eb:5e:6b:
55:59:47:46:03:84:41:de:ac:3b:64:59:9f:36:fa:
d7:6e:f0:d8:fa:35:a6:92:7c:b0:3a:73:25:5f:4c:
38:3e:3e:d8:da:e4:75:cf:da:f9:e5:51:89:5a:78:
32:79:6f:36:44:a5:7d:ed:8a:38:ed:c2:ea:e3:76:
5a:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:73:D4:DB:24:3F:90:15:98:4F:16:E5:48:AC:0F:79:6A:C9:CB:5D
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/d1e950b8-4e94-420a-8ca3-bc16293a4a1d.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
91:57:20:b1:d6:78:c3:74:14:d8:cf:b5:16:c5:ba:44:23:14:
6b:3d:ff:66:04:58:8b:0c:81:27:e2:86:ce:76:10:b8:75:c6:
97:1f:d0:ba:76:36:d4:46:38:08:7b:07:e6:32:25:a8:e1:12:
f8:ad:18:cb:a1:f6:b9:87:1f:15:91:13:0d:6c:ae:77:6e:2f:
7a:0c:e2:e2:89:05:f6:4b:cc:8b:03:23:c4:67:b6:e0:b1:79:
e8:c0:fb:24:4d:04:2c:0e:21:a3:af:6a:2e:c1:a7:a8:bc:f4:
c4:99:12:69:de:70:ee:a5:e9:e2:18:12:14:aa:f0:48:12:05:
3d:7d:b5:c6:57:0a:81:26:7b:bd:82:f2:07:6c:83:66:fb:6d:
03:d7:3e:5f:5b:d0:ff:29:b7:b7:2f:d2:f6:2d:60:3c:1e:8e:
87:da:42:e5:5f:ab:bb:cd:63:22:d1:03:34:2a:3e:ea:a3:c0:
18:ef:0c:1e:92:36:f1:01:67:d4:b2:bc:b3:ec:16:b5:eb:51:
e8:af:89:b0:48:c0:22:77:83:ae:0e:c9:22:05:b1:73:e5:a7:
f9:2b:79:af:f0:ca:a4:41:f6:df:d0:a3:22:10:e0:ea:5a:f6:
be:29:e4:51:30:0d:12:a6:a7:6e:5b:c6:05:2a:21:6c:dd:53:
8c:93:21:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 16:05:22 2025 by rpki-client