Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/ed4c30b8-075d-47bb-a3cc-46f765885bd7.roa
File: ed4c30b8-075d-47bb-a3cc-46f765885bd7.roa (raw, json)
Hash identifier: rfHMNtSRmqlRfz4LIleG6eDx7QGK7ZD+nrr1VMVo48Q=
Subject key identifier: DE:BB:9B:08:76:5F:75:71:F6:58:49:25:D5:79:3F:31:0A:AB:7F:15
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 302A8553B8C96933B81D539ACEBC1CF99B3C05CA
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/ed4c30b8-075d-47bb-a3cc-46f765885bd7.roa
Signing time: Sun 16 Jul 2023 00:00:00 +0000
ROA not before: Sun 16 Jul 2023 00:00:00 +0000
ROA not after: Sun 20 Aug 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
30:2a:85:53:b8:c9:69:33:b8:1d:53:9a:ce:bc:1c:f9:9b:3c:05:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Jul 16 00:00:00 2023 GMT
Not After : Aug 20 23:59:59 2023 GMT
Subject: CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:24:3c:65:e4:70:97:81:28:1c:2c:1d:61:eb:
cf:17:15:77:ee:d3:37:c7:79:e5:57:bb:1d:0b:71:
7e:78:65:1f:6d:f2:53:94:bb:26:2a:29:8b:21:ef:
71:fc:29:b5:d6:70:4c:00:e4:8a:3d:b4:7d:84:ca:
bd:01:6e:76:32:f6:a1:28:98:4f:1b:55:92:76:4a:
fd:53:68:e6:d1:2b:15:2c:c2:4a:66:e2:ba:1e:85:
c9:73:31:89:a1:3e:9d:98:8d:10:82:bf:35:6b:ea:
35:4b:bb:95:26:73:d8:ab:f3:10:b7:5d:1b:22:21:
31:c1:69:61:11:2f:b8:02:38:5f:ff:68:4f:07:0c:
87:9a:d0:91:40:0f:22:d0:d4:be:e6:05:62:07:f9:
2a:13:9f:e3:b5:61:96:c8:7e:7e:fe:57:58:05:63:
90:9e:40:36:fd:d8:1c:d8:18:fa:84:e5:44:06:60:
87:ca:24:f7:b6:5a:c5:b8:e5:56:5f:34:e4:b0:03:
c3:59:2d:df:03:19:c0:29:bd:8e:56:78:af:75:d1:
40:f6:60:fd:0f:93:26:ed:35:36:02:5b:1e:a0:93:
96:20:ab:0b:66:d8:e0:59:5b:27:13:c1:4a:80:57:
17:7c:55:8f:07:75:db:fb:84:b7:31:96:a5:1a:e3:
e4:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:BB:9B:08:76:5F:75:71:F6:58:49:25:D5:79:3F:31:0A:AB:7F:15
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/ed4c30b8-075d-47bb-a3cc-46f765885bd7.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
b3:c3:65:af:e8:33:6f:af:ef:bc:a0:11:f0:3a:48:d2:22:c7:
9f:8e:23:cf:e8:05:cd:89:56:35:3c:0b:35:31:b6:e7:f7:09:
7c:04:a0:e2:84:61:c9:26:7e:d5:86:57:73:10:d3:70:89:11:
fe:64:cb:ad:21:fc:31:5b:de:f0:46:46:2c:02:73:c0:d6:0d:
71:86:80:b1:3d:fe:9f:32:e6:03:3d:3c:c4:23:25:83:76:de:
ad:78:07:a8:fa:9a:1b:b1:29:6f:54:e8:64:69:41:c6:33:cc:
35:78:35:15:e6:37:d9:70:d3:2e:aa:13:5c:42:03:f2:a8:ff:
19:fd:e0:29:f7:66:ff:1a:8d:09:a3:67:69:7a:f3:03:59:33:
9b:59:aa:ec:7d:6e:e4:2d:3a:f4:fe:71:2c:6d:bf:b1:f9:15:
59:86:ea:a6:07:b1:89:5c:2d:be:c6:f2:5a:4d:21:56:a7:82:
58:62:56:2f:c4:b4:19:90:de:b6:40:de:ba:29:31:72:67:64:
45:b6:9b:75:f4:ec:2f:d2:e7:da:67:12:14:7d:89:cd:89:d7:
dc:a6:6a:ac:58:67:7a:d7:5c:c1:d8:2e:8a:5a:e9:77:a2:7e:
2a:04:0a:6d:94:7b:99:e0:e4:f8:cd:9f:4c:5f:87:dc:ce:68:
c5:5e:77:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Feb 18 07:08:21 2025 by rpki-client