Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/aa226906-8e69-48bf-a197-525c5d778deb.roa
File: aa226906-8e69-48bf-a197-525c5d778deb.roa (raw, json)
Hash identifier: aRClmMtko2W3qhfd2OXoHmu60fDbPCKbjP7MrJa/aGU=
Subject key identifier: 30:3A:D8:B1:8A:A4:C2:ED:6F:9B:8E:09:6C:AB:51:4C:B3:53:0F:43
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 01D6DBAF8D3E736BF23F6FFB0B3E523906FA47AC
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/aa226906-8e69-48bf-a197-525c5d778deb.roa
Signing time: Sat 22 Jun 2024 00:00:00 +0000
ROA not before: Sat 22 Jun 2024 00:00:00 +0000
ROA not after: Sat 27 Jul 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:d6:db:af:8d:3e:73:6b:f2:3f:6f:fb:0b:3e:52:39:06:fa:47:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Jun 22 00:00:00 2024 GMT
Not After : Jul 27 23:59:59 2024 GMT
Subject: serialNumber=e6fa1a04a2b9216813988f24ae1f025dadd297c91a1530dfcd61ca4dd8d54cdb, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:bb:58:8f:f4:f0:9b:4e:44:7e:c5:64:77:07:
5e:cc:76:74:2b:ec:1e:3e:7f:5a:ec:5b:bb:28:73:
13:e2:fd:ee:11:d6:81:ef:0b:f5:fa:79:73:d6:13:
7e:47:36:79:14:15:ec:f8:ba:21:e7:14:ad:77:38:
51:ad:bd:c7:1b:c1:bf:e4:ab:f0:77:ac:ef:78:43:
34:c8:83:57:47:49:01:a8:8d:b8:7e:e5:02:2a:dc:
46:39:c7:44:64:6f:c8:47:75:72:96:3f:20:72:ad:
96:63:b2:2e:fa:cd:1f:13:b1:22:d6:dd:5e:7f:b8:
b5:77:f5:1b:4e:c8:25:8d:e1:81:66:86:6c:cc:51:
49:a6:29:cf:58:48:37:f3:92:d3:13:eb:ad:86:cb:
12:7e:87:45:f8:5a:47:78:eb:48:fc:87:e4:d8:8e:
8e:8c:a5:65:72:29:6e:5d:4e:57:93:03:cd:f2:cd:
07:4a:e4:37:d5:a0:9a:bc:6d:02:97:a8:79:af:4c:
00:13:15:cf:fe:1e:98:94:67:c0:b8:a0:7d:1d:7a:
ce:ef:19:4f:ad:f3:73:bc:12:f2:8b:6a:13:ff:3f:
c6:16:68:5d:42:dc:73:32:b3:3f:3b:cc:60:41:f2:
a3:4d:ea:fa:da:86:28:c7:1b:be:a4:3f:91:59:7e:
e5:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:3A:D8:B1:8A:A4:C2:ED:6F:9B:8E:09:6C:AB:51:4C:B3:53:0F:43
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/aa226906-8e69-48bf-a197-525c5d778deb.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
7f:59:ce:98:9f:32:b0:5a:99:ac:42:ed:6e:52:45:a1:a0:f1:
fe:bd:e3:43:23:a9:c1:1b:74:dd:f1:25:5e:6d:fd:7f:82:18:
c2:0f:a4:c9:a0:e0:83:6a:ba:b0:8b:3f:a5:f5:0c:48:b7:18:
64:35:ec:5c:04:97:1f:60:57:18:6e:d4:9d:97:a1:6c:24:ad:
b3:02:80:0b:c9:9f:09:11:e3:ee:8b:78:52:be:83:f2:42:de:
25:15:c6:fa:c8:ce:82:f2:a5:5c:16:7c:71:a6:bf:7c:4a:6e:
97:a5:d0:aa:4c:81:31:93:6b:4e:ea:1a:8a:9e:7d:0a:ee:23:
5e:5a:20:55:d2:22:e5:c0:1b:ee:ee:ba:77:e1:63:7f:f0:8c:
3e:9f:8b:a3:3f:49:89:f1:7e:6e:bd:25:0e:d3:30:21:84:9c:
ee:64:1f:0d:be:b7:3d:6c:a7:78:23:54:c2:30:b2:14:40:fe:
8d:6c:bf:d4:6d:f4:29:04:61:fe:50:78:8c:fd:26:a1:b6:bf:
8d:b1:f5:d0:aa:a3:f9:36:21:7b:09:4b:7c:d9:d7:f8:8e:40:
7f:fc:2c:55:40:e0:45:42:67:34:2b:b1:f6:98:0b:79:b9:5a:
cb:7f:22:a8:7c:40:32:0c:81:d7:98:d0:5f:25:af:79:75:87:
78:34:37:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 6 08:49:36 2025 by rpki-client