Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/b57121e1-b478-4115-bb82-7e5c1a6de8ae.roa
File: b57121e1-b478-4115-bb82-7e5c1a6de8ae.roa (raw, json)
Hash identifier: RBQLpUSUaXI4m2WZtUhMKbGeyhilX38VEqhW2PTU9cI=
Subject key identifier: B9:6C:E4:8C:67:70:9D:05:5C:33:70:8A:FC:51:5D:BE:4C:A9:DE:8F
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 5CCFA84F472217A6BA05573E7C4594C5DE863B82
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/b57121e1-b478-4115-bb82-7e5c1a6de8ae.roa
Signing time: Sat 04 Jan 2025 00:00:00 +0000
ROA not before: Sat 04 Jan 2025 00:00:00 +0000
ROA not after: Sat 08 Feb 2025 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5c:cf:a8:4f:47:22:17:a6:ba:05:57:3e:7c:45:94:c5:de:86:3b:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Jan 4 00:00:00 2025 GMT
Not After : Feb 8 23:59:59 2025 GMT
Subject: serialNumber=895fb892080a7501ccced6edd452428f01e504d6d2a29b7da42b529af7aed10e, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:ef:3c:b0:4c:d9:5d:ec:ab:75:a1:df:f2:76:
7b:73:21:5e:08:cc:c0:05:40:67:50:c8:f9:6d:de:
79:cb:c1:46:c3:96:3d:3d:53:6c:18:46:5b:52:01:
12:9c:22:8f:ab:54:2f:d6:03:e9:e3:53:c5:bf:d6:
44:72:ab:c2:a8:cc:bf:37:dc:28:98:27:cb:de:3b:
c4:e6:52:d7:de:16:3b:f1:be:1b:24:fa:92:6b:e4:
24:1b:21:31:ff:a4:3c:5b:0f:20:9e:03:7c:03:f7:
08:36:5f:af:be:60:fa:36:5b:7a:bf:ff:2c:43:97:
4f:48:06:e6:a4:bd:3c:ba:1f:02:05:53:ff:8e:2c:
57:fc:1d:66:eb:c5:b5:9f:a2:c1:a6:43:cc:f8:22:
99:3c:88:41:d0:f8:b2:b3:ad:7e:de:5c:f3:da:16:
ad:13:26:a4:a4:93:c1:f7:ea:03:3a:6c:23:9a:c3:
b8:1f:0f:97:0c:25:8f:e5:7f:b1:48:73:70:e7:d5:
2d:3a:26:a7:bc:ac:92:89:2e:1c:85:a3:ad:d3:b0:
66:96:f5:f2:0a:37:e5:cb:33:a8:1a:53:29:0f:8b:
a3:74:da:ee:ff:0e:cb:9f:29:ed:da:d0:23:d4:35:
e9:bd:b6:98:bb:6d:35:f4:73:d6:0f:c0:9a:d2:68:
be:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:6C:E4:8C:67:70:9D:05:5C:33:70:8A:FC:51:5D:BE:4C:A9:DE:8F
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/b57121e1-b478-4115-bb82-7e5c1a6de8ae.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
34:f8:6d:d3:4e:8f:73:29:90:2b:eb:32:11:f2:46:81:29:4d:
59:fe:17:a1:66:f7:7c:a8:5c:61:ff:25:e2:ee:e6:b4:be:04:
70:bf:0b:bf:64:e2:ea:f3:64:98:c4:de:4f:7f:86:c2:59:88:
ee:5e:79:5a:b7:a1:19:fc:3b:9a:86:d1:ea:46:5e:3c:a6:2b:
f5:17:61:60:3d:e9:62:83:9f:50:31:3c:67:72:35:47:21:82:
62:29:88:ae:6b:88:ef:e7:a5:cc:2b:de:ae:dd:c2:ec:02:eb:
01:45:22:9e:f7:0b:65:a4:5a:a9:c6:f9:ab:df:c5:d4:f3:f2:
ee:b3:3a:6b:d9:db:c3:82:f3:1f:5b:c1:d0:7d:d0:ee:5b:d3:
20:29:bd:fb:40:49:93:a9:c4:18:64:3b:c4:47:4a:f7:ea:59:
22:09:2d:77:ee:84:a0:e9:b0:d5:8e:f3:51:77:5d:57:0e:28:
3f:4b:ec:b8:0a:95:38:be:9e:1f:40:22:13:a5:b2:5e:52:06:
ef:dd:47:4c:2a:5f:74:6c:4e:97:03:0d:c3:4f:af:99:ec:fc:
15:36:e5:90:79:9d:ea:43:7e:b8:b9:79:b2:34:41:b6:6f:40:
1d:ae:36:71:e5:92:13:03:07:05:05:d8:d9:eb:cb:f6:81:af:
ca:ec:96:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 9 02:57:04 2025 by rpki-client