Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/3fa124aa-6c16-4867-ac9a-348ed4749894.roa
File: 3fa124aa-6c16-4867-ac9a-348ed4749894.roa (raw, json)
Hash identifier: iCxgndiEnBAJA4T5WhH+IHzf6MQrYTX1OCBhyXoob+8=
Subject key identifier: B6:5D:20:06:05:62:93:58:20:89:96:18:40:EB:47:B5:98:92:FE:A9
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 180F0FFF033DB405C3DDAD411C360A54E71FAA29
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/3fa124aa-6c16-4867-ac9a-348ed4749894.roa
Signing time: Thu 30 Nov 2023 00:00:00 +0000
ROA not before: Thu 30 Nov 2023 00:00:00 +0000
ROA not after: Thu 04 Jan 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
18:0f:0f:ff:03:3d:b4:05:c3:dd:ad:41:1c:36:0a:54:e7:1f:aa:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Nov 30 00:00:00 2023 GMT
Not After : Jan 4 23:59:59 2024 GMT
Subject: serialNumber=d77f54f556c4d45a9d27a3c73953f3c45d018ba67bc99e6f12d4055ff4bb0558, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:37:e9:2f:89:c7:88:ad:c5:19:12:cc:3e:5c:
e6:23:a5:28:b2:59:ce:9d:d7:34:03:53:ab:15:e0:
30:e7:c6:fb:6f:e0:d8:bc:a4:fe:15:59:73:67:6f:
19:74:05:47:7b:86:e0:77:d2:ec:75:80:76:45:50:
b2:01:37:40:f6:76:dd:29:b2:44:63:c2:d5:a6:00:
e4:33:3b:f1:5a:e7:07:67:f9:8b:a7:59:28:d2:d2:
b8:3b:ca:4f:ad:1d:87:35:b0:4e:6f:50:1b:9b:87:
e8:37:b3:d2:9e:93:ae:ee:71:d5:d9:95:f6:e0:c3:
dd:05:b9:93:f4:2b:19:53:ad:9f:25:8f:ed:aa:bd:
48:01:b6:b4:cb:90:9d:57:3f:1e:d1:25:6e:2a:48:
a5:0e:74:4b:13:63:b2:a6:05:b6:35:57:da:16:d6:
90:c4:c0:fa:2d:f4:f2:8d:71:72:2d:19:89:ae:f5:
28:9e:15:28:4d:18:90:a9:77:e5:e7:43:c4:71:29:
1a:66:88:2e:b4:00:17:eb:8e:9b:5e:23:27:4c:69:
56:b0:50:14:54:f0:ee:71:bb:11:9b:0a:e4:2a:94:
ba:53:e2:62:cc:3a:c4:81:ee:93:d4:2f:a7:63:52:
a3:2a:b2:48:9d:b6:74:b6:84:2f:9e:16:6f:12:08:
f7:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:5D:20:06:05:62:93:58:20:89:96:18:40:EB:47:B5:98:92:FE:A9
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/3fa124aa-6c16-4867-ac9a-348ed4749894.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
52:04:1e:2d:be:09:27:65:67:4f:0c:1b:89:7a:01:f4:ec:1d:
57:d1:f3:d9:83:b9:3b:9c:b7:30:62:59:91:f7:fd:43:e1:d1:
27:f8:45:2d:d3:ae:9c:c7:dd:41:ec:55:51:13:9d:0a:10:ff:
71:8d:ca:40:f9:b0:2f:f3:ef:55:1f:70:c4:c4:78:84:a6:81:
7d:86:15:2e:c2:fd:d5:69:3d:06:29:fd:50:d9:86:42:27:2c:
8e:49:2e:86:2b:d2:2e:3b:ae:0f:5e:f9:fd:44:1b:24:75:d8:
4d:16:f0:96:66:81:46:77:8c:aa:d3:c6:20:63:1a:63:cf:a4:
f8:ef:79:e3:52:ba:9b:3a:2d:24:52:21:6b:c2:d9:e8:c9:10:
53:28:c6:53:71:c3:12:3a:0d:4c:7b:2b:5d:aa:87:d6:41:ad:
2c:2d:f2:a4:95:9f:f7:0f:0e:53:67:78:ca:98:b6:15:54:ce:
c0:78:d1:22:94:9c:3a:80:71:cc:b1:06:12:fc:b9:13:ab:f8:
15:57:ff:c3:3c:3f:fd:b5:dc:e2:54:8a:f1:f0:52:a5:70:0f:
35:2a:f8:59:15:62:eb:2b:f7:4a:3c:61:98:e8:da:6a:b8:53:
eb:ff:d0:2e:e1:d9:3e:17:f9:0b:fa:74:29:d0:b1:a1:b4:8b:
30:d7:a6:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 13:25:49 2025 by rpki-client