Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/e5bb9d07-9f76-4909-ad41-168f3fb695fe.roa
File: e5bb9d07-9f76-4909-ad41-168f3fb695fe.roa (raw, json)
Hash identifier: 1jpHizirEUAV7YMgNx31YaVP4NLpg2duLTaUhmSW7Gs=
Subject key identifier: 6C:14:76:16:04:D9:A5:BB:CA:FF:89:0D:6A:B8:DD:97:5B:90:57:6A
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 2C52A1FCCCB27D46C830271406298CA2C1645B97
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/e5bb9d07-9f76-4909-ad41-168f3fb695fe.roa
Signing time: Mon 06 Jan 2025 00:00:00 +0000
ROA not before: Mon 06 Jan 2025 00:00:00 +0000
ROA not after: Mon 10 Feb 2025 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2c:52:a1:fc:cc:b2:7d:46:c8:30:27:14:06:29:8c:a2:c1:64:5b:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Jan 6 00:00:00 2025 GMT
Not After : Feb 10 23:59:59 2025 GMT
Subject: serialNumber=b384a51f60d1472566e67a373bb1b724cc23fd5115d908b6db57c635418a5d8a, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:40:52:98:c3:91:64:a8:93:4d:29:7d:ad:8f:
bb:97:ad:34:f5:e5:22:29:45:e2:4f:1d:2b:a6:a2:
8b:7e:91:e9:06:ab:2b:e2:4f:f9:4f:48:bd:d7:9e:
70:ea:6d:14:1c:fd:92:30:66:78:97:2f:c8:f5:1b:
45:7c:3b:51:f9:39:ba:ba:f5:d4:12:19:60:4c:85:
96:e6:69:4e:a5:d9:f9:44:0c:f7:23:82:cd:9f:cd:
44:0c:b1:7f:49:d4:3c:c1:d2:73:f2:06:1f:1f:7f:
ed:f0:f2:2c:31:7b:88:a0:23:fa:14:bf:be:df:1e:
30:4d:a3:bd:80:29:cc:7a:81:00:83:58:09:39:73:
0e:43:47:d6:b2:13:04:97:b9:8b:da:3a:45:69:7a:
a1:e6:5b:25:40:74:23:ff:b8:c2:08:c6:24:00:50:
5f:f2:9c:3d:a4:b3:e5:a1:a5:1a:5d:af:df:69:ec:
ca:ec:30:f1:42:26:c9:68:35:04:75:1f:1f:85:e8:
98:ee:7e:db:06:f7:e4:cb:ac:7b:b3:d6:d0:98:3a:
bd:b4:67:aa:43:98:4e:0e:0d:79:b5:1f:ef:29:18:
70:b2:15:55:d8:49:6b:cb:c1:3d:c5:e1:fb:66:3f:
40:6f:22:e2:15:83:5f:9f:78:25:0b:20:c9:70:00:
94:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:14:76:16:04:D9:A5:BB:CA:FF:89:0D:6A:B8:DD:97:5B:90:57:6A
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/e5bb9d07-9f76-4909-ad41-168f3fb695fe.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
3a:22:d6:a5:3c:ab:bb:b9:13:02:b7:49:7f:40:08:24:90:b7:
eb:9a:54:d9:a6:92:e6:95:62:b5:bb:a4:a4:0f:b3:16:09:00:
2f:16:eb:36:35:5a:cd:42:af:41:84:a2:01:86:7c:f6:5a:36:
fd:9b:b0:eb:a0:53:7a:a6:e2:61:e2:57:a3:17:4c:22:56:31:
d4:9a:a4:88:d7:56:44:db:8f:ba:23:42:ae:4f:20:a1:7e:7d:
07:32:44:d2:45:e6:bf:ee:db:85:fd:7d:a6:61:72:9e:ed:68:
7e:e4:0d:95:79:b0:4b:e5:09:08:91:01:b3:cc:1e:c8:92:e7:
68:14:7d:08:22:a4:8d:e8:1c:ca:40:d0:2d:6b:f8:da:8c:85:
52:aa:e0:fa:1b:aa:c4:87:64:c5:20:b7:e1:2d:b5:28:97:71:
6d:c3:a1:4b:9b:c0:11:50:29:fc:07:88:d7:76:70:7f:8a:00:
dd:ba:72:0b:84:93:f0:0b:ec:c5:17:87:5f:d3:6a:e3:82:fd:
4d:62:05:28:60:e1:30:47:69:7c:1e:c3:b9:3c:2b:dd:56:96:
c0:59:f7:29:5b:3f:50:50:4c:a0:b4:cf:34:d4:e4:a6:78:c4:
d5:e4:c9:b3:62:f3:ea:a7:87:ba:99:fc:b5:14:62:92:08:a8:
2b:73:90:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 16:03:03 2025 by rpki-client