Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/2118064e-8389-4971-bbf4-c16812ad4347.roa
File: 2118064e-8389-4971-bbf4-c16812ad4347.roa (raw, json)
Hash identifier: IVUsBnGKxWAVCyWqM8GkAohvwpP/ezk0oTeWQVjpg1k=
Subject key identifier: 3A:89:75:B8:C1:85:FE:2F:BD:72:E5:57:5B:C7:30:CA:24:34:BE:22
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 1FB58712F7564714BF089D912B5F404EDF53D6AF
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/2118064e-8389-4971-bbf4-c16812ad4347.roa
Signing time: Thu 25 Apr 2024 00:00:00 +0000
ROA not before: Thu 25 Apr 2024 00:00:00 +0000
ROA not after: Thu 30 May 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1f:b5:87:12:f7:56:47:14:bf:08:9d:91:2b:5f:40:4e:df:53:d6:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Apr 25 00:00:00 2024 GMT
Not After : May 30 23:59:59 2024 GMT
Subject: serialNumber=f0c49f6e6c7a5764eb026fae65343fbfd0ef451eb32a94b7aabca93a370b0bd5, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:e2:78:ed:dd:2d:7d:09:ca:69:1f:84:3d:47:
20:e6:ee:18:29:78:ae:a7:b1:e3:ee:6f:13:88:ff:
b5:53:ed:c9:30:cc:e7:c4:61:1c:58:7a:25:ea:2d:
e3:6d:0d:bd:1b:4b:8a:c1:06:90:df:8d:57:82:3d:
77:24:cb:42:b4:e4:56:7e:97:34:6c:f7:65:07:0c:
e2:bd:bc:f4:83:08:9b:91:39:77:bb:27:50:56:56:
49:bd:fa:17:21:14:5a:b1:4d:fb:a6:d3:50:96:44:
19:d2:e7:73:19:8a:1d:69:9c:f3:85:3c:f1:cb:32:
40:3d:d0:63:cf:96:b6:b3:0b:c8:38:4a:5a:07:06:
1b:76:07:ba:4f:34:e4:da:6b:30:d7:0a:37:22:cd:
cc:be:22:a5:04:e3:ef:4f:27:59:95:8e:67:4e:e6:
07:6d:da:39:b9:6a:96:4a:22:8a:07:bd:08:40:6d:
c4:10:9f:36:6c:4b:76:fd:1e:37:6a:11:68:db:80:
96:df:1e:6b:99:1d:2a:a0:23:73:05:8f:fd:cb:00:
87:c4:5e:e7:7b:44:8a:88:e2:23:4c:0e:b9:80:36:
74:9a:43:9b:a9:98:77:ce:c0:94:bb:9f:04:e5:13:
bd:a0:ae:dd:28:41:ff:49:a2:7a:85:15:bb:09:53:
89:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:89:75:B8:C1:85:FE:2F:BD:72:E5:57:5B:C7:30:CA:24:34:BE:22
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/2118064e-8389-4971-bbf4-c16812ad4347.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
05:e8:1f:06:c9:58:0f:74:00:8c:df:28:b1:ed:02:7e:1b:97:
0f:3c:76:a3:bc:68:28:c8:7d:77:bd:ef:89:d3:d5:bb:8e:1b:
62:22:66:56:ef:8b:72:65:67:2d:cd:29:d1:69:af:ef:32:33:
a9:ee:58:f2:e8:1f:2d:b1:ff:dc:8b:49:97:53:ae:8c:a3:cb:
f4:1a:18:14:81:48:65:c8:18:52:bb:52:0f:f3:5b:0a:fe:7c:
ef:b8:47:da:50:b8:ce:20:5b:ec:d4:5e:13:bc:86:ce:fb:97:
3d:b6:7e:53:37:25:7c:f3:12:80:6a:0c:6d:55:17:3f:a7:ee:
d4:be:59:4e:83:7d:66:77:2f:a7:62:5a:8f:09:38:33:99:4e:
0e:7a:6c:ad:90:05:ab:cd:e6:ba:61:89:f1:5a:34:18:f2:c2:
9c:50:ee:31:d3:7c:71:ec:48:a6:1b:f2:af:cc:19:9b:69:ea:
bf:53:53:a3:78:bc:b3:9e:37:32:29:55:e8:02:db:0e:8d:b0:
55:d4:3f:a8:03:97:79:e4:75:7d:28:b7:04:12:ae:76:6b:f5:
64:a1:b4:24:c5:a0:bd:d4:c9:80:f8:88:75:55:f3:dd:90:15:
cf:02:3b:f6:82:b7:bc:39:59:13:00:87:16:e6:82:75:90:c6:
cc:21:4b:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 13 04:35:21 2025 by rpki-client