Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/02474116-3fce-4834-a6cb-4fa61a425fc3.roa
File: 02474116-3fce-4834-a6cb-4fa61a425fc3.roa (raw, json)
Hash identifier: RLvmjchoU7yApSCpmou994K7ndE0Ox/7QJjavh4cs5k=
Subject key identifier: 19:30:72:8D:86:EA:93:5A:28:A4:96:9F:61:D7:64:F2:3E:6E:29:E1
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 12CBDF06A6A99EE7286CD5368CBA9D35CF4D3A1B
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/02474116-3fce-4834-a6cb-4fa61a425fc3.roa
Signing time: Sat 01 Jul 2023 00:00:00 +0000
ROA not before: Sat 01 Jul 2023 00:00:00 +0000
ROA not after: Sat 05 Aug 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
12:cb:df:06:a6:a9:9e:e7:28:6c:d5:36:8c:ba:9d:35:cf:4d:3a:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Jul 1 00:00:00 2023 GMT
Not After : Aug 5 23:59:59 2023 GMT
Subject: serialNumber=c3e9c52a65ac7038b60b78a8f1e33dc217178b7063981143bedd7d963888155c, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:47:20:3f:cf:6d:8d:26:9f:fe:90:48:14:73:
e0:59:01:20:ab:86:7a:d9:ee:ad:f3:3f:80:a9:91:
a0:b2:e6:30:d2:73:44:94:84:5f:d1:8c:bc:03:34:
43:e8:e8:75:40:bf:f2:59:f2:b3:46:e5:73:42:3f:
fa:4d:46:0a:3f:26:d1:a5:29:69:31:9b:47:29:66:
97:b6:35:14:a1:43:40:95:c6:28:f7:cd:d0:f5:d0:
9f:8d:af:10:9f:95:56:85:76:48:a1:fa:1c:6d:21:
b9:d5:eb:1b:fb:8b:fd:a7:c1:91:90:41:1e:b0:41:
17:51:14:c5:4c:00:be:90:6f:c7:f0:44:7e:be:32:
e1:82:f9:3d:8a:a1:6e:92:cb:99:ff:a6:e3:d2:1b:
76:0f:60:58:d7:38:a6:15:04:6b:52:8b:74:08:d7:
3a:c8:9f:b6:1e:45:af:61:7d:3f:e0:4b:11:c4:f5:
f8:0f:24:52:00:90:8d:5c:79:0d:2c:30:4c:f6:0b:
c0:e6:a9:7b:eb:2e:54:41:1d:e2:03:11:3c:cc:8d:
1e:b1:6d:fd:6d:45:a8:f4:71:a9:f3:3e:6c:62:29:
f9:7a:5f:30:f6:49:67:4c:64:df:4b:83:e6:67:2d:
b8:ac:40:e1:92:3b:f4:05:9d:e3:c5:f4:78:9a:be:
8b:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:30:72:8D:86:EA:93:5A:28:A4:96:9F:61:D7:64:F2:3E:6E:29:E1
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/02474116-3fce-4834-a6cb-4fa61a425fc3.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
5c:60:5c:d6:a2:7a:cd:ef:77:ff:7f:dd:ef:43:65:4c:65:88:
28:4b:62:a7:d5:3a:49:d4:74:39:b3:f2:aa:f0:c8:19:60:8c:
26:0f:91:0e:a7:96:c6:b0:ec:70:a2:b5:ee:90:52:04:ee:42:
a6:98:7b:c6:46:0b:7f:b0:09:9d:a3:12:67:c5:1d:8b:a5:3d:
24:30:99:b7:e9:cf:23:2f:c1:a4:ca:b5:d4:96:0e:5d:47:e9:
13:e0:90:d8:37:88:e8:01:04:38:c1:5d:ec:2c:f8:c9:8d:3a:
39:58:22:37:73:3b:54:89:cb:ec:94:b2:bc:00:f3:87:1c:ae:
5d:a9:ee:0a:3b:00:83:0d:39:79:60:a0:93:85:38:0c:0b:0e:
b9:df:e6:56:37:f8:2f:5e:b3:4a:85:ac:af:0f:cf:26:71:9e:
fc:10:39:fc:41:e4:2c:80:c7:99:bd:fb:36:48:d2:e3:b1:1d:
9d:f8:8f:87:ba:3c:ee:31:eb:e8:58:47:57:2c:71:d2:69:92:
13:8b:78:3d:b9:cb:61:50:66:f8:13:e9:69:0e:62:39:7b:b4:
33:fc:ae:82:63:3d:bc:88:6c:c0:af:64:e3:7f:c6:9e:4f:5d:
a3:7f:2f:6f:2f:02:ca:6a:bc:39:0e:c1:24:be:38:e0:97:5c:
24:cf:0e:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:46:45 2024 by rpki-client on console-ams.rpki-client.org