Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/c3aea70e-05ee-4511-96dd-00df14eca900.roa
File: c3aea70e-05ee-4511-96dd-00df14eca900.roa (raw, json)
Hash identifier: 1Ed8eE40RLhPIdkEzBaIZxTXWy2FEMs9Im1JY3MHWGY=
Subject key identifier: 3B:A2:F8:1F:BF:36:87:82:D5:66:5A:12:5A:3D:6C:DC:F2:E4:27:9D
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 230A6D90A36C747891D42D0C5A39798E9EAFC8CB
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/c3aea70e-05ee-4511-96dd-00df14eca900.roa
Signing time: Tue 11 Jul 2023 00:00:00 +0000
ROA not before: Tue 11 Jul 2023 00:00:00 +0000
ROA not after: Tue 15 Aug 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
23:0a:6d:90:a3:6c:74:78:91:d4:2d:0c:5a:39:79:8e:9e:af:c8:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Jul 11 00:00:00 2023 GMT
Not After : Aug 15 23:59:59 2023 GMT
Subject: CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f4:bd:7b:4c:ea:17:64:13:9e:f0:39:96:b4:cb:
86:92:27:91:da:26:4d:35:3a:25:0a:1a:eb:41:22:
2a:b5:db:f7:6b:3d:a0:67:68:90:f8:4e:36:2a:9a:
51:1d:f9:26:b9:6c:0e:56:aa:c7:54:34:bb:69:b2:
bf:35:f7:1c:60:af:8e:58:8a:39:90:6f:f4:e2:a6:
e4:86:05:18:4e:fe:af:43:1c:0d:84:c0:57:6d:24:
ba:df:85:8a:a7:e1:93:d6:84:e7:05:cb:63:74:f4:
83:f2:dc:a9:1d:f1:25:02:d6:56:27:68:f6:cb:e6:
7c:5f:65:64:f0:31:b4:d0:92:51:22:01:5e:64:ed:
ab:97:29:e6:40:97:43:a3:d8:2e:06:30:cf:11:22:
39:b3:5c:e2:12:a4:53:a4:6d:12:e0:8b:87:94:93:
99:b5:bb:89:66:00:ca:24:a0:84:31:85:06:f6:68:
5f:7f:ba:ba:02:74:2f:d3:d5:1c:b5:7b:f1:81:55:
86:6d:05:42:44:78:de:16:98:a9:a4:d6:f1:f5:76:
c3:4c:1d:c9:a5:10:04:c9:28:db:2d:be:32:77:82:
10:b6:0d:9e:79:a6:c1:e4:fb:bf:25:88:f1:65:80:
9e:9e:97:57:20:96:e7:40:84:51:c9:83:d5:2d:a8:
48:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:A2:F8:1F:BF:36:87:82:D5:66:5A:12:5A:3D:6C:DC:F2:E4:27:9D
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/c3aea70e-05ee-4511-96dd-00df14eca900.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
4d:af:84:74:8e:42:42:de:fd:97:9a:bb:9e:82:5c:c9:6b:b0:
5e:94:3c:73:2e:bd:13:bd:92:aa:0a:da:43:d3:5b:42:da:07:
08:8e:3b:f3:3c:16:44:69:85:33:59:36:6a:56:d5:c5:f7:03:
83:83:7d:63:71:5f:0f:ec:bd:11:0a:a7:a7:2a:88:27:39:ea:
04:eb:6b:10:15:23:f0:f3:7c:7b:a2:a4:a6:5d:76:0b:a0:64:
03:86:09:b6:62:46:63:71:b1:7d:f8:28:34:8a:ff:c3:6a:54:
65:11:e4:eb:b5:72:1f:71:e3:df:1c:63:d8:02:f8:98:11:f4:
76:1f:1e:3d:9d:c5:ae:98:e0:3c:4b:51:9a:3a:bb:68:b2:3b:
53:5e:a5:a1:d4:96:64:c5:c2:a0:25:59:fb:5e:ea:49:a5:ab:
a1:1b:5b:0a:5d:f5:2e:6a:a0:e5:47:79:a0:e4:6a:2a:18:ac:
2a:4f:38:53:be:57:45:87:8b:9b:9c:57:5b:83:fd:55:dd:ad:
cd:2e:03:5f:50:ed:83:6b:88:c6:40:55:35:8e:55:2b:cd:41:
66:b1:81:c6:97:bb:e3:91:6b:ff:2f:1a:9c:1a:69:29:e9:47:
b9:3b:50:ff:1f:9c:29:04:69:36:70:7f:15:74:59:f5:9f:14:
4d:b7:6e:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Feb 18 06:49:47 2025 by rpki-client