Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/2524c873-2e4f-4511-b0d9-27d002ad06f2.roa
File: 2524c873-2e4f-4511-b0d9-27d002ad06f2.roa (raw, json)
Hash identifier: rl3cD/JjmqKk4cLX9LizKPeKxlKru2dw3cMsoRbP2vg=
Subject key identifier: BA:91:6E:E7:64:FD:70:03:04:CE:94:EA:FC:81:96:AE:FB:E9:23:3E
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 626E1FBE87FEC735AF99624F4BBE1C4286E6EDF3
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/2524c873-2e4f-4511-b0d9-27d002ad06f2.roa
Signing time: Sun 02 Jul 2023 00:00:00 +0000
ROA not before: Sun 02 Jul 2023 00:00:00 +0000
ROA not after: Sun 06 Aug 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
62:6e:1f:be:87:fe:c7:35:af:99:62:4f:4b:be:1c:42:86:e6:ed:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Jul 2 00:00:00 2023 GMT
Not After : Aug 6 23:59:59 2023 GMT
Subject: CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:7f:d5:5d:ac:5b:96:3f:9f:1d:29:b6:f7:5b:
7a:3b:12:6d:b2:af:7f:b3:6f:5b:50:1b:fe:25:71:
67:25:52:d4:e0:27:7b:f5:0f:3b:d3:96:e5:b9:c6:
42:db:10:77:b5:70:b3:f3:d6:7c:a7:f0:55:42:1a:
0f:3d:a0:2d:2c:bc:1d:5e:f6:e0:c5:2f:55:8e:45:
6a:6f:d9:30:ca:02:04:00:6b:f5:2d:e7:44:6c:97:
b5:bf:db:15:02:af:e3:85:06:00:11:68:ae:75:a1:
43:70:ba:a8:30:f0:59:88:a4:62:fb:c4:02:b9:22:
88:91:5f:78:b7:0f:67:5f:a7:ad:19:3e:21:c0:d7:
2a:24:b4:6a:cd:46:1c:df:13:20:99:38:80:ca:69:
2a:63:ff:ad:50:68:5f:38:ad:4e:4b:7a:57:f6:88:
f2:49:4c:45:64:58:7c:b1:c4:c0:4b:b2:b5:f7:ef:
6c:f7:b8:44:4b:83:3f:3f:c1:c8:b4:6c:d6:45:23:
ee:9c:60:e7:3b:12:43:d1:d7:cb:de:5e:3c:dc:81:
45:9a:b5:ca:ac:48:12:31:08:52:5d:ae:89:f1:65:
fe:f1:cb:72:86:39:02:5b:5c:9d:f1:b9:84:be:04:
8a:43:1c:44:a7:9d:f8:e7:5b:1b:78:d8:73:b4:9a:
e8:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:91:6E:E7:64:FD:70:03:04:CE:94:EA:FC:81:96:AE:FB:E9:23:3E
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/2524c873-2e4f-4511-b0d9-27d002ad06f2.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
7f:2d:d7:ff:5a:42:fa:11:3c:d4:93:2f:f7:28:76:95:08:83:
84:95:1d:09:76:4c:68:d3:bd:6b:75:ae:c9:30:9d:58:77:9a:
a2:6d:ea:13:68:57:04:3e:ba:45:be:3c:d9:3b:2d:5a:b4:62:
f4:b2:c9:40:27:08:9c:61:51:93:83:21:48:4f:22:e6:75:29:
25:88:54:16:57:3c:1d:d3:6e:74:f8:5a:62:bc:83:85:53:96:
62:31:87:39:f0:63:9f:88:0a:a1:cf:ba:fd:49:58:5c:42:35:
d9:ea:f1:b6:63:0e:63:11:f7:53:b8:48:9c:d9:e8:ff:dc:10:
8c:30:62:74:8b:d1:1e:59:9a:53:31:ec:ea:6a:64:3e:41:bb:
80:83:31:b9:62:75:f0:b8:a4:bf:43:fe:dd:22:f5:52:45:d9:
19:ea:44:da:b9:20:f5:fa:4b:17:73:1f:61:fa:07:21:10:83:
03:72:e9:87:27:7b:26:08:3b:76:11:37:4d:93:e4:77:31:fa:
37:fd:47:95:44:31:43:76:fa:78:ce:a0:a1:29:06:42:78:1d:
b1:e7:e0:46:de:f4:4a:18:41:6c:c5:f8:cd:4e:98:2d:86:93:
a3:31:28:a9:6d:71:f5:98:7a:f0:d3:89:6e:4b:74:46:cf:16:
8c:14:58:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:10:52 2025 by rpki-client