Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/fd715ab5-08bc-4779-ae66-052b9585741c.roa
File: fd715ab5-08bc-4779-ae66-052b9585741c.roa (raw, json)
Hash identifier: WO6zhmIWkrHce4LtJfgaXHSsQg+zUCEFr837YAWuJwU=
Subject key identifier: 1F:0C:F6:B6:B2:16:9E:0E:AA:47:D8:8E:C0:83:C5:CE:CE:54:19:FD
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 37610A358540E7CA7E239D34E27AE4FC6D98F7AA
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/fd715ab5-08bc-4779-ae66-052b9585741c.roa
Signing time: Sun 05 May 2024 00:00:00 +0000
ROA not before: Sun 05 May 2024 00:00:00 +0000
ROA not after: Sun 09 Jun 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
37:61:0a:35:85:40:e7:ca:7e:23:9d:34:e2:7a:e4:fc:6d:98:f7:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: May 5 00:00:00 2024 GMT
Not After : Jun 9 23:59:59 2024 GMT
Subject: serialNumber=793735902fb9092e9904c4c50b8a2c7718ea007a8a54061b670a9a0778354532, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:93:bf:6b:f3:0f:06:91:f2:33:c0:37:d0:b6:
3f:5e:51:ae:2b:b1:db:64:56:e2:37:e1:d1:78:21:
ed:69:74:17:7f:e2:86:bb:67:84:13:bd:48:b4:ea:
2f:d8:ce:2a:20:9d:e9:04:bf:7e:f6:32:14:08:29:
77:7d:a8:3d:fb:f7:0e:b8:3a:dd:2f:4d:05:1d:bb:
27:b4:1f:84:fa:99:de:37:bc:2f:86:d1:e7:c6:cb:
67:b0:d0:8c:08:2e:08:a2:38:af:d3:49:d5:9a:84:
78:4d:6d:ae:13:b6:fa:06:b9:6f:f9:02:45:0b:a4:
4f:da:de:04:b8:e7:3d:cc:ae:93:4e:0f:ed:86:7e:
ef:56:53:16:3e:21:7e:bb:37:bc:f4:47:cb:a8:8b:
d0:a3:7b:1d:a2:df:ef:25:a7:03:2d:84:16:1a:51:
4d:27:9f:bd:65:c7:1c:d9:58:71:49:75:be:a6:c9:
de:6d:50:4c:ba:97:66:21:06:48:38:dd:1a:9c:69:
92:c9:cc:f4:f3:9b:c0:14:9d:61:da:65:4e:c0:46:
85:87:8e:a7:09:de:82:95:7b:ed:d9:5f:51:5d:b9:
a2:91:01:ce:84:2d:f5:c2:4c:60:64:e1:23:83:33:
a7:ea:8f:49:f6:8e:ce:fd:8a:3d:37:95:a7:ea:d1:
57:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:0C:F6:B6:B2:16:9E:0E:AA:47:D8:8E:C0:83:C5:CE:CE:54:19:FD
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/fd715ab5-08bc-4779-ae66-052b9585741c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
b5:0a:fc:99:0e:d4:5b:21:17:cf:29:16:6f:46:67:48:d1:d5:
2a:a7:11:a3:4a:df:a4:f4:8b:05:6e:5b:f9:59:3d:63:60:95:
05:52:c7:1a:b6:32:49:16:b7:4b:65:73:58:f1:7f:28:36:86:
76:5d:e0:03:a0:22:8b:6d:a9:82:09:29:76:aa:89:2a:7b:a9:
c2:3d:26:7d:09:21:3d:93:9f:f9:73:66:75:04:6b:e4:3b:62:
b0:65:d8:c6:06:a7:b4:f5:0c:e6:e3:46:32:f2:85:b3:48:cc:
b6:44:ad:bf:1f:6f:ff:de:ec:5a:ea:6c:fe:8d:19:04:95:35:
49:b5:88:df:16:a2:f4:29:f5:81:d5:9a:c2:44:f5:94:9e:29:
54:1e:d6:e3:22:76:cf:7e:4f:7b:5c:24:a6:f7:cb:44:9b:dc:
00:d2:e9:1b:34:29:2c:4b:4e:8c:9c:44:b0:21:79:c1:3e:84:
63:bd:e0:fd:4c:cd:66:30:1b:d6:bd:dc:13:bd:19:91:8a:7e:
a3:ca:8d:aa:ff:1b:7e:8b:fb:33:31:52:1d:ea:87:9c:7d:ac:
4a:6f:59:8e:ba:7f:f6:1c:55:9c:0f:2f:0c:23:72:d2:3a:b5:
4d:02:39:9f:8f:51:52:a3:a6:6e:a3:8f:0d:48:0a:33:4c:3d:
84:d6:8f:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 19:15:40 2025 by rpki-client