Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/01454e61-3539-42fe-91d8-4bdb663f9699.roa
File: 01454e61-3539-42fe-91d8-4bdb663f9699.roa (raw, json)
Hash identifier: DI9lvOFJSCNB5rlG7XZBWDJcYbTOIQQYsMJOnUgdBrU=
Subject key identifier: 4C:2B:1A:75:07:E9:3D:BA:E7:37:45:D1:32:F0:D7:CB:86:6B:3A:DE
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 458880D2CBEC544E36950507706DF0C99A3F68
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/01454e61-3539-42fe-91d8-4bdb663f9699.roa
Signing time: Mon 06 Nov 2023 00:00:00 +0000
ROA not before: Mon 06 Nov 2023 00:00:00 +0000
ROA not after: Mon 11 Dec 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
45:88:80:d2:cb:ec:54:4e:36:95:05:07:70:6d:f0:c9:9a:3f:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Nov 6 00:00:00 2023 GMT
Not After : Dec 11 23:59:59 2023 GMT
Subject: serialNumber=1b6de431d41a3b8c73e41932c7e3d323b75aca7d0c18f2d12d5231f0d6db7aca, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:79:fd:a9:50:28:b0:da:5d:7c:2e:c4:34:7a:
30:6c:eb:b9:18:86:b9:48:3d:96:2a:2f:af:70:73:
ac:40:a8:c4:0f:e5:86:ea:aa:d7:e4:39:41:69:56:
66:3d:e2:03:70:03:9f:f2:a5:0e:12:d5:ef:21:5c:
1a:7a:52:9f:52:d0:69:77:ca:55:12:0c:b7:85:53:
1c:7b:70:09:29:3e:e1:59:c1:4c:29:33:97:81:d4:
fb:78:12:01:cf:96:71:19:ca:d7:4c:b0:7a:27:08:
bc:02:a4:05:96:1b:16:fe:9e:96:22:07:da:18:35:
48:31:94:cb:8b:f9:c7:9e:17:87:28:b3:f4:55:d6:
2e:75:e2:37:c2:10:06:94:6a:5e:d4:89:b0:bb:90:
3d:da:c5:f3:5a:70:05:68:b1:68:e7:41:bf:c7:63:
86:ae:25:88:c0:73:c2:85:2c:7a:0e:32:df:db:d2:
bf:90:bc:0b:c9:73:2e:c2:71:d2:b4:b4:b3:84:70:
a6:61:50:6a:46:46:83:76:30:a0:0f:c9:e9:49:2b:
d2:51:07:d8:5e:9e:17:35:1f:06:0e:8c:d0:b6:a7:
25:d2:d9:eb:67:dc:d9:22:93:4f:02:38:f3:bf:32:
b0:92:d9:22:db:dc:27:47:da:f3:b7:7c:19:7b:64:
2f:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:2B:1A:75:07:E9:3D:BA:E7:37:45:D1:32:F0:D7:CB:86:6B:3A:DE
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/01454e61-3539-42fe-91d8-4bdb663f9699.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
24:81:97:de:d7:ef:c6:5b:2e:09:08:bf:97:f7:75:20:28:83:
b5:8d:e7:44:3d:fe:18:bd:9e:be:44:4a:aa:3c:e3:65:03:7e:
df:56:5f:55:63:4c:f7:53:7e:49:6d:93:90:96:69:2f:fb:ce:
e7:c2:c5:7f:f8:16:c6:58:fc:e5:45:cf:ae:21:db:7b:4b:c9:
cc:a8:ca:6f:8b:62:bb:a4:a5:3f:8b:11:ee:09:e2:8c:ec:4c:
00:92:0a:5b:2e:65:26:17:ac:74:67:f9:20:5b:e5:b7:70:75:
fe:ae:94:c1:d8:cb:b1:de:fa:c3:e7:fb:21:a5:5d:a7:29:18:
47:1c:dc:59:19:27:c2:ed:f7:cd:25:b5:83:41:63:32:fe:69:
95:ff:33:21:7c:36:9a:70:44:24:79:94:7c:dc:5b:3e:70:ed:
6f:5d:1a:72:89:a3:99:b8:55:c8:3e:3b:c8:55:bc:34:d8:38:
59:50:67:cd:f8:a8:dc:0d:7a:d3:7a:e2:c3:9f:63:06:bf:9b:
8c:28:1b:41:1d:37:d7:0f:77:14:de:63:89:c6:84:b6:7b:23:
bc:8c:66:c4:ac:e1:2f:63:1a:8b:37:90:b5:44:88:ef:34:16:
2b:76:92:c0:f1:c0:54:01:63:0c:6b:ec:52:86:c4:27:f7:f8:
e1:41:1c:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:46:45 2024 by rpki-client on console-ams.rpki-client.org