Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/079bb647-319e-48f8-8a64-83a8d343e347.roa
File: 079bb647-319e-48f8-8a64-83a8d343e347.roa (raw, json)
Hash identifier: rgJJFmfE60wxcKhCrfRRbujz/xRWaUqdgidEw/jma54=
Subject key identifier: 89:A1:A6:02:09:C3:BE:BE:0F:79:34:79:36:A3:33:F6:38:0B:06:39
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 4ACA94E4903B5AAB1D341303F99EE17D628CBDF7
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/079bb647-319e-48f8-8a64-83a8d343e347.roa
Signing time: Tue 28 Nov 2023 00:00:00 +0000
ROA not before: Tue 28 Nov 2023 00:00:00 +0000
ROA not after: Tue 02 Jan 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4a:ca:94:e4:90:3b:5a:ab:1d:34:13:03:f9:9e:e1:7d:62:8c:bd:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Nov 28 00:00:00 2023 GMT
Not After : Jan 2 23:59:59 2024 GMT
Subject: CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fd:38:6a:77:6a:ba:9c:a1:e9:b2:6c:84:e9:bb:
3a:a3:82:a4:4a:9c:a5:fb:fb:d9:21:ff:b3:87:0b:
3b:48:c3:0d:37:ca:60:6d:f3:4e:c9:ea:5b:92:00:
eb:ad:13:96:12:55:6a:ba:59:30:73:74:2e:8c:2d:
1f:77:c0:b7:eb:14:a4:30:6d:98:c2:2f:cf:ee:66:
4a:0a:32:7c:1a:93:a7:73:36:e3:82:49:ba:eb:ea:
dd:2a:6f:15:56:a5:d5:8d:14:49:c4:3a:f3:25:e8:
6a:c4:57:a2:b1:0f:46:b1:50:40:e5:be:79:e9:f1:
f6:bc:1a:7a:7a:fd:7a:6e:c6:c1:a5:1e:d7:a6:35:
8a:47:1b:97:6a:41:b2:72:c3:ea:76:84:20:9a:b0:
27:8a:1f:84:15:e7:40:61:c4:74:ce:a1:68:34:f9:
db:d1:39:7d:b3:62:fd:8a:2d:a8:00:8b:8f:d6:a5:
3b:3a:b6:b2:96:84:36:70:29:7b:e4:09:5f:d9:15:
c4:6b:9b:b4:bf:07:b4:0f:14:0b:e3:23:52:83:41:
72:95:21:3a:98:cf:35:4d:17:6b:54:1a:52:32:8a:
66:c5:4c:7b:e9:88:36:b8:e4:19:05:7e:ea:3a:84:
df:48:7c:57:8e:51:42:43:16:0d:b3:bb:d1:aa:74:
8e:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:A1:A6:02:09:C3:BE:BE:0F:79:34:79:36:A3:33:F6:38:0B:06:39
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/079bb647-319e-48f8-8a64-83a8d343e347.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
44:96:59:e9:76:67:36:d5:1f:f3:3e:58:c1:84:f5:cd:1d:7c:
0f:86:bb:b2:3f:2a:a5:33:e2:8c:d7:eb:da:a2:bb:ef:f0:ee:
ce:96:93:dd:fc:2b:00:cd:e9:34:a4:df:62:cb:cd:86:ab:15:
65:37:19:83:ba:bf:2b:70:50:23:a6:b2:89:62:40:f9:ae:c3:
03:e6:88:3a:b1:34:34:5e:0e:33:46:79:6f:fc:8f:6e:c3:ea:
10:49:d5:d1:34:91:73:55:44:c7:07:7a:24:4a:f6:4e:44:a4:
e3:26:ad:72:e2:15:1c:d2:c3:79:9a:68:d3:77:76:88:41:4d:
90:bc:ae:9b:9c:54:1b:d8:5e:99:cd:14:a7:7a:e7:1b:47:18:
43:3a:53:0b:ba:ca:3e:53:a5:2d:ff:0b:37:ad:32:e9:3f:de:
a4:53:33:49:1c:00:51:46:63:19:d7:68:9b:aa:ec:ad:31:f8:
31:8b:29:b6:85:1b:bc:ed:38:d8:7d:28:b9:ca:c1:fd:28:5c:
8f:4e:77:21:b6:24:02:4a:29:71:e6:46:93:33:96:88:40:5b:
ae:c1:1b:10:bd:51:67:75:ae:9b:c7:36:de:06:a2:07:bf:e8:
ae:b3:f9:ef:be:b0:f3:be:06:c3:a0:15:bf:42:c5:fc:e9:96:
e3:17:ea:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Feb 18 06:49:48 2025 by rpki-client