Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/e5f4c4a7-1267-4609-964a-176714d8fad2.roa
File: e5f4c4a7-1267-4609-964a-176714d8fad2.roa (raw, json)
Hash identifier: 8Tubrm8K4mmq+EUHD9cd5SWQyRIwZVfZPJIZ4qVDo34=
Subject key identifier: F9:72:BF:FA:75:D7:8C:4B:D1:93:E1:B2:A7:98:5C:CF:01:F6:76:AA
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 28829A3797B7CC432E95C8D0DB26BD0859B5E8E9
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/e5f4c4a7-1267-4609-964a-176714d8fad2.roa
Signing time: Thu 20 Jul 2023 00:00:00 +0000
ROA not before: Thu 20 Jul 2023 00:00:00 +0000
ROA not after: Thu 24 Aug 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
28:82:9a:37:97:b7:cc:43:2e:95:c8:d0:db:26:bd:08:59:b5:e8:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Jul 20 00:00:00 2023 GMT
Not After : Aug 24 23:59:59 2023 GMT
Subject: serialNumber=40dfe4d78621feb504bf656be6926e604f8ce7928de561e69245d14c9f985959, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:0f:d9:52:bf:48:85:0e:38:45:1a:9c:40:c6:
50:43:1a:26:43:57:91:f5:e7:29:03:10:7a:37:fe:
e5:d7:cd:70:41:5f:0a:4b:d1:eb:14:29:ef:b9:e9:
81:5d:ea:d1:7d:9c:dd:0a:e6:08:a6:2a:fc:4d:89:
f8:9c:f4:27:d4:53:25:1e:70:1a:31:08:43:f8:9c:
aa:f2:8b:33:a0:31:bd:33:b7:d0:47:e6:74:7a:82:
b3:c3:0f:be:95:78:b2:80:51:2b:fb:d8:37:e4:93:
76:f5:02:d6:62:31:ba:3e:b7:80:50:01:a4:ee:47:
ba:c1:f0:d5:b0:80:b8:18:7d:2f:cd:97:d5:8d:36:
71:01:8a:4f:c5:98:18:81:4c:a7:37:e8:ce:a3:e8:
84:ac:e2:b4:82:89:ce:48:da:ab:2e:52:bd:71:0a:
6c:9d:db:6d:b9:ff:eb:f6:aa:cb:99:aa:19:9c:72:
c6:91:bb:9a:17:66:1e:27:35:48:f3:b7:98:7d:d5:
b9:17:ed:20:6b:0a:06:f2:37:dc:2b:4b:82:5a:7c:
4a:f5:00:1a:f0:02:84:97:46:1c:11:69:41:23:df:
1d:0c:1c:da:83:a5:6d:b0:15:5b:67:39:9d:48:c1:
02:db:00:a7:b5:9a:47:3c:64:42:0d:48:74:79:ab:
d5:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:72:BF:FA:75:D7:8C:4B:D1:93:E1:B2:A7:98:5C:CF:01:F6:76:AA
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/e5f4c4a7-1267-4609-964a-176714d8fad2.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
b3:1e:d8:2f:10:23:59:8a:29:ca:2b:63:08:63:a1:53:a1:ba:
28:52:6f:26:9a:8c:53:9b:b9:9b:3b:95:27:d6:02:25:14:a5:
00:f9:e1:fd:9d:2e:ee:b8:a9:9d:d9:96:12:5d:0f:48:35:d2:
eb:cc:89:93:a0:c2:63:7c:5f:bc:83:98:59:3a:9b:57:fe:13:
39:a8:82:e1:39:da:e1:0a:71:fc:3f:f5:15:ad:e4:29:ad:0a:
9a:48:f3:f8:74:62:a4:ef:d4:ac:2e:02:ae:43:1a:cd:4d:1f:
c9:66:58:e7:3a:09:67:a1:af:5c:44:84:81:c5:88:f5:17:99:
91:65:cc:1b:87:a1:21:62:1d:18:41:e5:95:48:a2:98:5f:6e:
3a:ad:b3:f6:d3:d1:ba:4d:bd:29:92:72:ed:e1:4c:3d:d4:6f:
de:a0:4e:2f:54:be:49:78:43:81:76:72:f3:fc:40:d9:db:f3:
64:ff:89:f8:06:3a:7e:89:5e:dc:78:84:35:ec:85:e5:6c:be:
ba:bd:cc:cf:df:79:e6:b4:e1:99:65:b6:40:ba:bc:48:62:c6:
d9:47:09:67:e3:1b:75:f5:b8:b3:bf:91:de:0a:59:ef:66:9e:
f9:55:06:3f:eb:76:52:7d:81:cc:ce:b2:31:4c:b0:cf:f9:06:
da:b3:77:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 8 12:17:01 2025 by rpki-client