Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/f8fd3d57-48ea-4124-a18c-76bef9812ab6.roa
File: f8fd3d57-48ea-4124-a18c-76bef9812ab6.roa (raw, json)
Hash identifier: DcduhERpH0A04o0bV7P4II4jn6Q3RlV6548S0nsvdJY=
Subject key identifier: 85:FD:44:7B:3D:8C:39:C0:73:08:B2:CD:2F:DD:4C:F3:08:6B:7E:FB
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 3D1EFDBA64C2B36838EDD69D655A3989D0157C32
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/f8fd3d57-48ea-4124-a18c-76bef9812ab6.roa
Signing time: Fri 21 Jul 2023 00:00:00 +0000
ROA not before: Fri 21 Jul 2023 00:00:00 +0000
ROA not after: Fri 25 Aug 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3d:1e:fd:ba:64:c2:b3:68:38:ed:d6:9d:65:5a:39:89:d0:15:7c:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Jul 21 00:00:00 2023 GMT
Not After : Aug 25 23:59:59 2023 GMT
Subject: CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:68:64:7f:7c:db:3a:ec:fe:94:55:80:da:4d:
04:54:66:c4:c5:16:4a:cf:71:33:9e:d1:ba:c7:08:
ae:07:15:b3:b9:f0:13:52:f1:b3:5b:29:83:fe:6c:
83:85:3a:35:b6:81:2e:1f:c7:d9:50:d8:bf:c3:30:
3d:78:97:a6:f8:67:77:73:59:07:dc:b6:13:81:e6:
0a:4b:34:74:47:5d:83:96:25:a9:47:1b:07:f5:ba:
1a:2b:b6:7d:d0:a5:eb:63:3a:ee:c3:7d:6c:5a:a5:
67:c8:a1:72:44:7c:96:cc:7b:9d:11:30:d5:ea:b7:
8d:07:b6:75:bb:40:e4:21:6f:ca:1f:7f:f9:94:f6:
1b:65:33:40:7f:2a:60:c4:c5:03:1b:b7:8c:64:ee:
40:a2:ba:b7:d5:5b:e1:2b:31:23:ca:f6:87:19:00:
52:12:7c:ef:63:f0:ee:ea:0e:ff:5e:68:c6:df:ec:
04:33:4a:a4:e4:d0:5e:de:3c:4b:a1:e8:ce:e1:07:
b7:b9:54:a6:ba:f6:4d:16:7d:4d:00:2b:fd:16:11:
1b:8c:6f:ca:53:58:8f:5a:68:b9:4b:53:87:47:49:
94:68:5e:5b:a6:d3:52:e4:4d:93:66:e0:0a:88:d4:
42:b2:56:4d:6a:42:05:fe:eb:d2:e8:d7:8c:03:5d:
9f:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:FD:44:7B:3D:8C:39:C0:73:08:B2:CD:2F:DD:4C:F3:08:6B:7E:FB
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/f8fd3d57-48ea-4124-a18c-76bef9812ab6.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
25:14:e8:00:ef:b8:43:70:67:ad:11:41:46:b0:28:34:a7:30:
b9:8b:d9:38:d9:8b:42:5e:3b:8a:89:cb:9f:71:5f:56:f0:ed:
f8:8f:e8:7f:50:0b:e0:d4:32:78:6a:d7:80:a7:e5:33:15:30:
d1:d1:3c:d8:f5:53:d0:15:95:1c:75:4b:33:3c:60:f4:03:16:
f6:9f:77:19:b5:80:87:e8:18:58:d3:b8:b0:25:c2:8c:6d:7f:
66:d4:20:80:33:fe:32:70:51:97:83:bf:5a:6c:40:14:37:94:
38:af:3c:7b:81:23:ce:a8:91:97:eb:e0:80:ab:0f:37:7d:4b:
38:4b:46:16:3b:13:83:9b:7f:cd:06:11:4e:69:8d:4f:3f:90:
4c:1f:04:2b:48:fe:87:2e:be:c2:d1:00:d6:37:a3:c8:82:ef:
fb:22:7b:e5:47:d4:9f:f9:ea:cc:8d:ed:d2:0e:97:ee:3e:3c:
92:3f:8f:d0:a3:5b:09:d0:1b:67:62:9b:73:c2:d5:2c:a4:2e:
c8:11:d1:73:67:c6:18:96:6f:ff:44:65:28:a6:34:77:c8:67:
12:cc:94:73:a9:4b:83:7b:8f:9d:8d:6a:fa:9c:40:61:b1:ac:
26:6c:5e:01:fb:d7:6f:df:9a:be:25:76:5d:b1:9b:ee:60:91:
f7:7e:40:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Feb 18 07:05:56 2025 by rpki-client