Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/0ca7ea47-0fdc-49a0-a774-7e4a40669f3b.roa
File: 0ca7ea47-0fdc-49a0-a774-7e4a40669f3b.roa (raw, json)
Hash identifier: aH/MKMzn2G/NIQ7cxiQd/C96lS+3A6sgHdu6r1jp0CM=
Subject key identifier: 58:D1:BE:29:59:D3:D9:11:BB:7F:4F:BA:1A:A3:BA:57:8D:AD:F3:6F
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 2C1D9C97B9AF111A4185B82C2E4FD842EA1860E5
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/0ca7ea47-0fdc-49a0-a774-7e4a40669f3b.roa
Signing time: Mon 25 Mar 2024 00:00:00 +0000
ROA not before: Mon 25 Mar 2024 00:00:00 +0000
ROA not after: Mon 29 Apr 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2c:1d:9c:97:b9:af:11:1a:41:85:b8:2c:2e:4f:d8:42:ea:18:60:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Mar 25 00:00:00 2024 GMT
Not After : Apr 29 23:59:59 2024 GMT
Subject: serialNumber=0337f86cf144d6ff70c598d2531b33441616bcc7d694630385818e2351f704bb, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:ff:c5:95:03:a5:fe:ab:4b:a6:81:03:7d:84:
54:2f:8f:5c:09:65:60:aa:a5:bb:f1:97:a5:9f:a9:
b5:c5:6a:60:b8:d3:db:25:19:2a:ae:c6:af:b7:7e:
ba:68:74:3e:8c:63:a1:3b:4d:25:77:77:39:00:99:
29:ae:03:e0:40:22:31:14:6a:68:03:a0:ac:6b:71:
76:b9:cf:8c:11:96:57:ce:70:ed:ed:2a:cc:c6:12:
93:3f:e1:e2:97:ce:8f:b6:cb:45:6f:f5:07:df:aa:
19:bd:f6:b5:c6:53:07:13:d7:6b:17:e1:26:65:ff:
44:f1:7d:49:ab:8a:cd:06:22:7f:54:fb:69:0d:a5:
ff:54:41:a6:50:e1:d5:81:06:bc:4f:bb:3a:29:8b:
1f:fb:7d:d8:79:f4:7b:ea:45:d4:1a:4b:94:2a:a7:
91:1f:ea:bc:5f:32:f7:99:76:72:68:ac:38:dd:48:
7f:5c:6b:3d:ed:56:74:fa:7c:ab:aa:34:75:5c:32:
22:2d:b1:50:c9:ad:86:c3:b1:63:1a:50:9e:6c:6c:
77:ae:96:01:04:05:57:d7:db:17:98:bc:86:e8:ee:
61:90:a3:70:bd:c7:be:8f:87:a4:83:44:02:6f:48:
28:46:bc:27:f0:ef:98:a2:12:3a:14:ac:5e:d4:7b:
b4:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:D1:BE:29:59:D3:D9:11:BB:7F:4F:BA:1A:A3:BA:57:8D:AD:F3:6F
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/0ca7ea47-0fdc-49a0-a774-7e4a40669f3b.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
32:cc:06:1c:bb:3e:8b:db:1f:1f:a5:44:af:a4:af:5e:39:c6:
9e:e6:d9:e2:73:bf:ed:f6:ae:e3:4f:d7:35:b2:ff:77:39:f7:
46:b7:ab:e6:68:74:71:6a:14:af:ab:30:fb:30:18:15:94:1e:
d0:29:4a:65:de:87:ea:7e:d7:58:45:12:d4:1c:51:4c:51:ba:
cd:fc:2d:ef:a7:e5:23:5a:d3:be:30:2a:02:b5:16:b4:ca:fc:
77:91:e1:d0:1b:e0:ac:6a:fd:17:7b:f4:22:c7:ab:18:6c:2f:
5d:9f:17:d3:1d:fb:5e:35:d7:93:90:c5:66:58:5d:15:65:39:
4f:e2:63:4b:3d:cd:19:8e:cb:e2:d5:0d:03:ce:d4:06:b3:86:
3d:32:20:28:78:d3:d9:80:db:bc:f8:f9:59:12:8a:9b:28:8a:
a3:86:0a:c1:19:1b:f8:0a:fe:e3:bb:16:97:20:17:78:e8:bf:
dc:75:3f:55:c9:cb:e2:0c:52:07:76:5a:18:93:75:ff:a5:ec:
5c:48:11:f7:48:1f:dc:8c:96:d6:f7:52:dc:e5:f0:2b:5f:3a:
f8:21:7f:fe:fe:67:c8:87:8b:17:89:40:b7:fa:38:7e:f5:a5:
cb:81:a7:c2:3a:5c:2e:9f:84:7c:05:3e:77:05:4d:66:cf:9a:
6d:da:2f:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 7 14:13:49 2025 by rpki-client