Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/d6abccaa-4964-4154-895a-ba1844a302a1.roa
File: d6abccaa-4964-4154-895a-ba1844a302a1.roa (raw, json)
Hash identifier: 36GCXzaQFa6x6t0nyM2HJkqag9ZyS+nAlCGobEETv1M=
Subject key identifier: B6:B0:21:78:12:3B:B3:94:2C:1A:A5:5E:7C:ED:ED:60:7B:D5:6D:2B
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 141FB20FF7D8794D3D957A7AFD2C97EF401DE4ED
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/d6abccaa-4964-4154-895a-ba1844a302a1.roa
Signing time: Fri 07 Feb 2025 00:00:00 +0000
ROA not before: Fri 07 Feb 2025 00:00:00 +0000
ROA not after: Fri 14 Mar 2025 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
14:1f:b2:0f:f7:d8:79:4d:3d:95:7a:7a:fd:2c:97:ef:40:1d:e4:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Feb 7 00:00:00 2025 GMT
Not After : Mar 14 23:59:59 2025 GMT
Subject: serialNumber=be523c50efd5d7bea0ff538762f27e352daa58f4abec4145b0cafd2a1b39b7e6, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:11:c2:e3:0b:4f:56:ba:92:48:97:6b:ef:d5:
80:55:02:df:49:5d:7e:66:12:b6:06:ac:f7:8c:e1:
7a:82:5d:f0:f2:61:fe:3d:50:fc:6e:a9:c9:94:1f:
82:6e:2a:49:31:53:c0:2c:8c:3c:ab:ce:2f:68:61:
a8:1e:56:c8:ed:0d:00:b2:d7:17:a3:24:b6:20:9e:
6b:b2:71:b1:fc:0e:27:6b:24:88:37:ec:b2:8d:19:
45:f8:31:94:09:e0:e6:7f:13:2d:75:cf:22:67:09:
53:97:6b:d3:6b:c4:38:f3:7e:60:c4:86:ce:22:b8:
e6:ee:d4:6d:e7:aa:3e:2c:8e:47:c0:4a:47:f3:51:
5d:65:72:76:80:2d:f8:ff:eb:9b:14:d2:8f:d0:ac:
c0:a4:76:f3:79:81:f6:5a:01:19:fe:e4:15:3a:b0:
73:59:44:4f:ad:bc:27:42:3d:36:0b:52:f9:11:44:
4a:d8:91:f2:cc:1d:44:74:d6:a8:23:dd:a6:28:5c:
34:bc:2c:a8:9b:26:14:ba:d3:a3:d1:8f:a4:ef:32:
9a:65:7a:61:02:54:a4:3f:be:79:9d:2a:29:f0:e2:
ce:d4:91:c8:8f:93:0d:c3:c0:71:96:7d:5a:21:f3:
16:29:85:91:ab:e4:13:87:3e:24:b5:eb:13:3d:4a:
6c:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:B0:21:78:12:3B:B3:94:2C:1A:A5:5E:7C:ED:ED:60:7B:D5:6D:2B
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/d6abccaa-4964-4154-895a-ba1844a302a1.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
54:6d:85:4c:99:6d:9d:5a:2c:68:6a:2d:5e:56:e1:0c:e8:88:
91:6b:f9:9a:e2:4d:75:a9:06:64:fd:0f:35:98:3c:e8:f2:b6:
26:53:c4:45:56:98:7e:89:7c:43:64:30:28:82:65:22:e7:e0:
bb:70:47:73:dd:da:0a:aa:d3:98:17:64:2d:5e:a4:c4:12:78:
84:f5:50:ac:ac:f7:fa:72:c9:a8:8f:f2:a0:8a:32:80:56:ea:
80:ae:f3:3c:4f:2f:31:8c:d2:3f:a9:18:14:59:8c:1b:18:e6:
c4:77:fe:85:da:83:8d:6e:12:a1:ab:0f:99:df:fc:b8:40:00:
24:98:04:d2:3d:cc:20:97:da:19:1d:83:17:9d:08:51:08:13:
a3:9f:df:2d:e9:c2:52:40:f5:bb:a7:4e:fa:06:a6:d0:28:7b:
31:4e:3b:5c:d1:a4:b7:32:4b:f4:e3:e6:db:52:2e:e4:94:75:
e9:2f:34:3f:9f:46:20:2e:da:81:e1:e3:01:5c:5d:17:7f:0d:
54:90:f7:74:4e:05:af:cc:ba:00:57:cf:41:a6:e2:3e:d2:ff:
49:f3:fa:63:f5:37:64:9b:7c:95:f0:51:5a:e9:78:77:20:6f:
d4:74:f8:45:1a:d5:62:93:89:ce:50:1e:9a:68:13:a7:ad:bf:
3f:b6:5d:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 16:35:16 2025 by rpki-client