Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/8841306e-f305-416d-8774-fd66881c50c0.roa
File: 8841306e-f305-416d-8774-fd66881c50c0.roa (raw, json)
Hash identifier: oO6Zdl2iOcFt7qMDpnPeqEgXo+WdvWb67bSRbb0hfwU=
Subject key identifier: 11:51:A5:7B:6E:CE:E6:19:C2:FF:BE:7A:84:CF:75:50:C2:FA:17:7F
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 29CD226B16875449EF9FBF33CDA8B09F3E476BEF
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/8841306e-f305-416d-8774-fd66881c50c0.roa
Signing time: Fri 04 Aug 2023 00:00:00 +0000
ROA not before: Fri 04 Aug 2023 00:00:00 +0000
ROA not after: Fri 08 Sep 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
29:cd:22:6b:16:87:54:49:ef:9f:bf:33:cd:a8:b0:9f:3e:47:6b:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Aug 4 00:00:00 2023 GMT
Not After : Sep 8 23:59:59 2023 GMT
Subject: serialNumber=4310db10aafda4f3ebcb2ad31c301d515082553af59c88cf6dd640796c9ce102, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:38:23:5b:16:84:c3:8c:11:4e:58:38:9a:88:
81:42:0b:03:65:76:21:f7:06:91:f2:15:50:6f:12:
5c:ca:97:2b:2b:24:09:79:4c:7f:21:56:16:40:3a:
dc:7c:21:5d:27:cf:f5:86:50:8e:45:d1:96:d1:92:
d5:08:c3:28:94:66:96:0c:63:3e:55:b0:3e:63:a8:
a6:aa:c1:c6:8f:74:58:4b:e2:2a:65:97:af:e5:11:
e9:b0:ff:e4:7a:7f:82:7c:97:91:3b:e3:a1:2d:68:
6e:7c:46:d5:21:f9:8a:29:f0:cf:e3:26:d4:11:f9:
52:59:c5:13:79:dd:98:06:95:ca:16:dd:4d:2f:ee:
7a:ab:57:c4:95:04:98:11:4a:96:16:9b:a7:bc:3b:
01:bd:b2:c4:84:6b:ed:ce:2b:2e:99:e1:c4:38:23:
4f:57:c2:3f:84:8f:77:13:6f:2e:8a:d7:65:de:78:
a8:78:6f:28:b5:fc:7a:fb:4d:f1:ad:27:3b:e0:17:
6b:37:18:0f:42:01:85:73:ad:f8:bd:3d:ca:e3:55:
92:80:e7:11:30:dd:ab:92:27:da:b9:14:cf:10:5b:
c6:42:d2:ab:cd:a4:0d:63:70:21:5e:68:fd:10:47:
76:dd:7b:ab:91:74:27:b8:84:f2:81:97:99:d2:9d:
a8:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:51:A5:7B:6E:CE:E6:19:C2:FF:BE:7A:84:CF:75:50:C2:FA:17:7F
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/8841306e-f305-416d-8774-fd66881c50c0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
3c:52:12:e0:e4:7f:e8:a0:8e:e6:4c:12:6d:44:be:7d:1a:f8:
ac:4f:a4:af:50:80:6f:2c:32:77:ca:2b:77:06:ef:3f:74:a0:
42:85:ab:92:c5:de:de:dd:84:0f:fc:8b:f5:f8:41:98:5c:2e:
9c:5c:a0:35:66:ac:64:4e:d8:f0:85:80:92:e7:d2:15:07:51:
92:a2:a4:3e:c0:0f:19:fa:30:70:8d:2f:ce:c8:9b:25:17:89:
b5:c8:76:ee:6d:f8:93:e6:6c:5f:dd:76:df:0c:cd:17:20:41:
3a:2e:9c:af:4a:46:c3:0d:91:5e:3a:58:5b:33:a9:89:a7:cb:
04:6b:9a:a8:62:a6:4d:3e:e1:74:ff:7f:e9:55:b3:95:57:ad:
4f:ce:bc:b5:5e:43:67:c9:84:aa:71:1d:07:43:81:ff:51:c2:
94:50:73:f7:8e:83:e4:f8:3c:68:e8:73:e7:2b:13:1e:d5:70:
5a:45:37:28:5c:b3:27:5d:8e:d2:00:4a:97:18:e2:8b:e2:b2:
e7:9a:b4:ce:98:89:ad:db:44:67:48:82:23:43:1e:29:46:ba:
85:65:77:38:9b:ae:d2:97:e8:95:5e:13:e6:15:e9:8a:e3:5d:
87:fb:70:b6:71:9d:2c:31:8f:a4:d9:86:be:69:0e:85:4e:ec:
6a:e5:9a:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 07:32:12 2025 by rpki-client