Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/37b80907-2fb9-4ea5-a437-c3b497312ad3.roa
File: 37b80907-2fb9-4ea5-a437-c3b497312ad3.roa (raw, json)
Hash identifier: hTxt2z1CaVOHo/v+rLXnCT9afg1VCc6IDui9EpzDPyM=
Subject key identifier: 0A:02:EC:8C:E4:E9:0B:45:6C:AB:7E:47:65:54:0D:06:38:62:69:DE
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 5CB8F41833E580F3B295355D29653C932E0191
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/37b80907-2fb9-4ea5-a437-c3b497312ad3.roa
Signing time: Thu 04 Jul 2024 00:00:00 +0000
ROA not before: Thu 04 Jul 2024 00:00:00 +0000
ROA not after: Thu 08 Aug 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5c:b8:f4:18:33:e5:80:f3:b2:95:35:5d:29:65:3c:93:2e:01:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Jul 4 00:00:00 2024 GMT
Not After : Aug 8 23:59:59 2024 GMT
Subject: serialNumber=c5b4e3518832f94b6e0cf971bff52bf026828225b39f0db018f87c8c8ed575c7, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:6f:d8:06:cc:2d:55:92:bc:b8:e8:c8:44:b1:
69:20:2a:27:1d:ea:c5:a7:27:c6:84:3c:24:86:61:
58:79:cc:c1:64:c3:d0:44:67:58:be:e9:10:71:09:
bf:fb:71:4b:0f:73:1b:bc:0b:00:1f:83:cc:bc:72:
dd:62:9e:de:e6:26:ed:e9:0b:84:6f:ab:f2:9e:ec:
cb:37:25:bc:48:a4:0a:3b:26:85:1b:b0:39:83:7f:
e4:fe:a2:31:c5:ad:72:14:d0:a7:0a:bd:0f:59:2a:
28:b9:d4:79:e9:7d:ec:dd:a0:16:81:47:19:94:bf:
c8:e5:9b:4d:57:2a:58:73:6e:10:7a:37:60:36:1b:
99:67:b9:38:08:c0:63:8f:ae:d8:06:41:78:05:f5:
c4:f3:36:76:aa:48:68:a4:3e:ea:97:3c:38:23:48:
69:ac:66:b4:8b:db:1f:8d:fd:27:05:5f:de:d9:6a:
77:52:92:f8:eb:5d:19:26:40:f3:1c:f8:b0:d7:31:
12:a5:f6:9b:e8:d4:3a:f9:97:64:62:b1:0a:19:33:
1f:c6:ec:8e:32:13:f4:29:95:f3:5f:b7:c1:b6:85:
30:10:3c:79:e5:c6:1f:6c:37:c6:1a:5d:2d:3d:e4:
9a:ae:6b:57:9b:d5:b0:68:fc:f0:01:42:b1:a6:74:
89:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:02:EC:8C:E4:E9:0B:45:6C:AB:7E:47:65:54:0D:06:38:62:69:DE
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/37b80907-2fb9-4ea5-a437-c3b497312ad3.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
0c:48:d6:0d:2e:26:ee:57:d0:97:b3:4c:09:39:a4:d8:d1:34:
49:64:55:91:81:15:c7:6d:ac:22:fe:24:50:30:84:e3:b1:fb:
0e:a7:c0:98:a0:0a:bb:37:6d:f0:1f:b7:a9:21:04:70:27:13:
59:36:f9:ae:fd:ca:a0:ee:6c:77:ec:01:8b:7d:64:1c:83:f9:
49:df:dd:54:7f:5d:1a:72:ca:df:87:d7:81:26:5d:a8:08:82:
f7:37:e7:32:03:b0:07:a6:a8:7b:10:9b:49:3f:85:05:48:53:
e1:11:e7:39:30:0c:eb:d5:f0:d1:f1:c4:9c:a8:b3:79:2c:52:
9a:30:59:22:a9:55:39:c2:e3:ca:0e:c2:64:a9:cf:20:8c:83:
80:e3:40:61:63:5d:03:52:3e:46:76:5d:d5:04:a8:b8:f6:a3:
67:91:60:e2:f8:5b:3f:17:3b:80:78:44:6a:dd:dc:b0:ac:50:
cb:8e:e9:dd:f9:d5:6b:78:16:cc:6f:26:72:a2:57:36:bf:6c:
2c:31:66:69:f3:4d:15:54:73:c8:ae:a0:cb:4b:7b:06:62:8b:
5c:d7:01:0f:c2:43:1b:a5:33:ce:70:bc:4c:d4:6a:3b:ec:5a:
2a:ec:60:06:5d:de:d2:64:6e:54:9b:2f:2e:6a:ee:2a:98:d4:
a2:0b:58:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 7 04:18:07 2025 by rpki-client