Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/07b2c1f5-2368-4eb0-a92b-6bfadbeeee3f.roa
File: 07b2c1f5-2368-4eb0-a92b-6bfadbeeee3f.roa (raw, json)
Hash identifier: ccG6iDl4cYyy4N/gyHr0r94yfP27W6Jw53P/9fzkbdg=
Subject key identifier: C1:C7:68:60:60:F8:3C:9D:7A:3D:B4:D2:1B:59:4D:BC:23:BC:52:8E
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 6059F12CCE16C6D4966FAD47B4668A7382F9D1
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/07b2c1f5-2368-4eb0-a92b-6bfadbeeee3f.roa
Signing time: Tue 03 Oct 2023 00:00:00 +0000
ROA not before: Tue 03 Oct 2023 00:00:00 +0000
ROA not after: Tue 07 Nov 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
60:59:f1:2c:ce:16:c6:d4:96:6f:ad:47:b4:66:8a:73:82:f9:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Oct 3 00:00:00 2023 GMT
Not After : Nov 7 23:59:59 2023 GMT
Subject: serialNumber=c63333e96318fc70241fa7d940c49469d6afd5aec1aa01884e010c1882c95c10, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:e3:86:53:23:8d:26:78:75:12:51:23:8b:59:
5a:25:eb:5d:1c:6e:fd:88:39:2a:98:d8:48:52:9d:
08:a5:0a:9f:76:6e:01:81:46:d4:cf:f4:0e:ab:7d:
b4:83:a9:57:c8:14:31:8b:32:02:60:d3:16:e8:db:
62:74:95:d6:79:56:9b:e6:e0:5f:ed:67:51:f8:cd:
27:d3:b4:1d:61:00:03:68:3b:5d:a3:df:f6:d1:1e:
8f:07:57:26:80:77:f4:be:b5:eb:cb:83:1d:38:9d:
e7:8f:88:8f:48:3e:8a:cc:d9:ce:00:8f:be:94:ae:
d4:ab:de:66:f9:45:37:b5:29:84:4f:e4:e8:b7:eb:
21:01:ca:f3:83:01:6a:cb:4f:ea:82:ff:c0:da:d9:
af:ab:3f:64:70:2a:f1:44:1e:4d:98:f9:91:d4:b4:
c3:09:f7:08:42:8b:fb:7f:9f:7a:b4:45:fb:93:50:
56:4b:c9:4b:be:fc:64:60:31:8a:80:65:69:e7:04:
eb:95:01:30:1f:9d:85:a1:92:5d:9c:fd:1d:0c:c4:
5f:f4:4f:f6:3c:38:41:9f:0f:fa:0a:a4:cb:e4:b4:
59:7c:5d:a1:12:64:61:a2:2f:89:bd:65:c2:f0:b0:
7a:18:f5:52:55:6f:5f:23:54:45:3a:c7:0a:37:9d:
64:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:C7:68:60:60:F8:3C:9D:7A:3D:B4:D2:1B:59:4D:BC:23:BC:52:8E
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/07b2c1f5-2368-4eb0-a92b-6bfadbeeee3f.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
2c:5d:49:44:3e:8a:4e:6d:f3:d9:0f:65:b2:a0:d5:a2:cc:a9:
6d:cd:fc:2f:02:db:19:97:a7:7d:4e:5b:a0:57:e3:4a:e5:db:
ee:88:d0:4d:42:27:52:fb:8c:28:58:4f:4d:5c:92:4b:d8:b2:
15:00:b8:fd:0d:75:f3:04:ef:6c:8c:b9:5d:7e:37:10:0e:da:
ee:d0:8c:8b:46:8d:34:30:e7:21:f0:cf:3d:ed:c8:cc:51:dc:
05:63:1b:26:42:cd:7b:71:f7:a0:78:36:da:82:b7:30:15:ed:
8a:78:7f:5e:b1:89:18:0f:69:6b:2b:3c:57:e7:0f:f1:bc:d0:
ea:38:f9:fc:e3:43:cd:08:bb:13:50:f7:e8:c6:59:56:90:3b:
5f:5e:28:ec:e2:0d:44:88:f0:03:27:cc:2a:19:b5:67:c1:de:
25:c6:c1:6f:65:e7:e0:c8:28:5c:59:c7:ef:72:a5:01:4f:18:
71:2a:78:74:a2:5c:47:76:04:f4:f5:66:af:1e:c6:26:b2:9a:
e9:dd:dc:1a:19:e4:76:ff:07:59:fc:d4:7b:ce:10:b7:e7:e4:
9e:f4:e5:79:32:b0:33:76:a1:b6:eb:8c:5b:2e:ec:4e:f1:38:
0d:5e:c5:2d:72:10:4b:be:20:c2:81:e3:46:ae:44:41:d7:24:
7d:f9:0c:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:41:10 2024 by rpki-client on console-fra.rpki-client.org