Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/dca49d1d-53ae-41ce-ae5a-425b2a80cbd3.roa
File: dca49d1d-53ae-41ce-ae5a-425b2a80cbd3.roa (raw, json)
Hash identifier: RPhYNC6/LRyPld7VEVY9QfxCS9oj3coMekHB/ATr9lk=
Subject key identifier: B4:E8:30:77:53:73:0D:54:23:72:3B:99:C4:CF:CE:08:26:1F:3F:39
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 2B00AF5D2BC596AC7EC5AD54C82E547AE639845C
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/dca49d1d-53ae-41ce-ae5a-425b2a80cbd3.roa
Signing time: Wed 10 Jan 2024 00:00:00 +0000
ROA not before: Wed 10 Jan 2024 00:00:00 +0000
ROA not after: Wed 14 Feb 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2b:00:af:5d:2b:c5:96:ac:7e:c5:ad:54:c8:2e:54:7a:e6:39:84:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Jan 10 00:00:00 2024 GMT
Not After : Feb 14 23:59:59 2024 GMT
Subject: serialNumber=d07e62ff2b9da5e13125549a3e0b3246ddc3bfef2d06a6b512fb7bc21b060658, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:24:29:b5:a1:66:74:45:19:ad:f6:bb:fe:bb:
61:cd:84:10:bc:02:31:8f:3c:8a:1e:ac:c7:dd:7f:
df:3c:d7:64:fd:4a:80:d6:76:11:41:c9:41:94:9b:
02:eb:45:ce:d9:fe:0f:d5:4f:3d:c2:8b:ef:0e:09:
8f:d6:5f:80:1e:7e:e5:6d:fb:ca:60:c7:d7:1a:59:
c1:be:c9:ab:9d:67:2f:fc:79:dc:bc:09:05:e0:16:
b9:85:60:f3:ad:0c:d7:2b:b3:a2:9c:76:fd:e5:3a:
b8:f6:24:03:d3:84:d2:80:b1:e8:0f:d4:3d:b9:a2:
90:8e:85:f6:45:94:f0:09:28:fa:01:03:eb:4b:5c:
7f:6c:e4:aa:25:f1:b2:0e:cf:c7:64:e1:50:2a:43:
8a:8a:79:50:5f:e6:1c:5c:10:3b:fa:ce:af:1c:22:
ab:c9:6f:7d:e7:81:e3:cf:71:c4:99:90:75:4f:46:
6a:ec:64:45:48:94:eb:ba:3d:48:cb:d3:8c:83:ad:
51:74:35:b9:f1:ca:5e:86:1e:61:a5:e5:40:2a:bf:
53:eb:8b:0e:c7:48:8e:a6:07:ef:ff:e1:b8:91:62:
c8:25:e5:20:a5:bb:06:fd:9b:c9:42:4c:f2:e7:52:
99:8e:ce:a0:4e:27:15:89:90:8c:07:ce:86:e2:92:
f1:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:E8:30:77:53:73:0D:54:23:72:3B:99:C4:CF:CE:08:26:1F:3F:39
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/dca49d1d-53ae-41ce-ae5a-425b2a80cbd3.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
67:83:0d:1d:cc:0c:04:9d:8a:5d:65:0f:da:5f:f1:86:41:58:
42:3a:3a:6a:ef:92:48:e5:e7:0a:ef:e5:ee:26:43:0d:66:e9:
e5:d1:32:0a:49:01:ca:f6:92:dc:d1:fb:fa:61:77:21:5b:b1:
82:a1:59:8e:3f:ba:6c:1b:2a:c2:3e:dc:7f:3c:a6:37:b8:fc:
3a:46:72:19:9d:80:15:94:7f:3c:fb:81:f9:c3:35:0a:ff:64:
b9:88:c6:84:00:99:f2:a8:0d:98:89:f7:55:85:45:33:d3:ed:
f2:76:1c:bc:cf:8f:1f:1e:07:df:1a:a7:51:ec:2c:39:3e:68:
b2:ca:74:4a:8b:01:91:82:01:b5:7e:0d:e2:f0:38:e8:d9:69:
bd:e0:f5:59:a3:2e:3d:34:6c:a2:7b:53:a5:92:50:b4:76:57:
83:ea:43:16:b1:36:50:9e:fe:37:3b:0d:47:3c:99:92:c9:a0:
3d:a7:ee:c7:b3:f3:dd:37:7f:7c:00:62:c2:be:59:9c:53:d9:
d5:63:32:1c:13:dc:39:58:b5:de:7f:b9:a2:55:83:58:e4:94:
c7:7d:35:26:41:4d:13:74:22:4c:1b:4b:b5:85:02:33:7d:25:
9a:36:a4:81:ae:8e:77:50:40:9b:7c:b4:b8:47:6a:d9:a5:01:
a9:42:81:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 17:42:08 2025 by rpki-client