Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/19ce031e-6c39-4a9e-9efc-cff2176a062a.roa
File: 19ce031e-6c39-4a9e-9efc-cff2176a062a.roa (raw, json)
Hash identifier: 8hfL2tVsqkjJHRhM+RFz00M9Tr1NE83yIh6yRnLY/v0=
Subject key identifier: 1D:45:EB:63:FD:D2:23:7C:30:96:C5:59:0F:FF:EE:F3:BB:B8:45:4C
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 423FAD1B25F8B220600F82E8791170662D22BA53
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/19ce031e-6c39-4a9e-9efc-cff2176a062a.roa
Signing time: Sat 01 Jul 2023 00:00:00 +0000
ROA not before: Sat 01 Jul 2023 00:00:00 +0000
ROA not after: Sat 05 Aug 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
42:3f:ad:1b:25:f8:b2:20:60:0f:82:e8:79:11:70:66:2d:22:ba:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Jul 1 00:00:00 2023 GMT
Not After : Aug 5 23:59:59 2023 GMT
Subject: serialNumber=34cd12d9f4a8ba092167d0ec5ed73cc5259d70a4ae4c6323153b09524640df0a, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:b3:9e:ff:a0:75:bf:80:bb:b5:2d:a4:7b:49:
f4:c8:cf:43:3d:28:82:b7:40:55:e2:98:a0:13:98:
10:d7:14:17:8a:71:a9:24:98:b0:ae:4f:32:6b:3f:
98:c5:cd:9c:cf:fa:d3:28:95:be:6e:9e:df:ce:15:
92:b2:46:3a:b9:d6:f3:3c:4f:41:90:29:63:a8:d7:
90:53:d4:f0:79:33:cb:02:84:88:c7:85:88:4b:80:
a0:f7:58:f0:a8:a2:b6:ac:5b:60:85:f9:33:5d:6e:
d9:fb:69:8f:6a:0b:1d:27:7d:07:be:0e:a4:bc:12:
67:9d:73:69:b5:06:e6:39:0c:f8:49:3f:65:25:45:
c5:8f:3c:9e:75:21:34:de:00:15:b6:13:df:59:a2:
17:a1:76:ce:0c:40:5f:a1:0e:c1:b9:63:8c:31:a3:
2c:ad:ad:5e:e9:ba:bd:dc:c0:b6:48:14:3c:f2:d4:
b8:9b:b8:7d:83:bb:6f:cb:c6:7b:3c:83:34:a0:33:
25:da:59:b9:ed:a8:59:9b:4c:37:0d:2d:53:00:58:
c8:b3:f3:b9:4d:c9:46:6a:b7:34:8f:e2:54:c5:1a:
39:57:73:c0:2a:d4:ab:94:89:ce:cf:50:f3:4d:e6:
cc:4a:b4:f2:99:f3:a7:e1:12:8b:24:db:9f:23:df:
62:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:45:EB:63:FD:D2:23:7C:30:96:C5:59:0F:FF:EE:F3:BB:B8:45:4C
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/19ce031e-6c39-4a9e-9efc-cff2176a062a.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
26:79:ea:b2:64:7a:a9:02:1d:03:31:2c:33:24:88:65:93:07:
72:c4:f1:58:ba:15:ea:07:5d:42:c4:8b:99:4d:9e:9a:83:79:
1a:5b:c4:1e:4a:33:f4:d1:65:8c:53:68:30:5a:4a:14:0f:ca:
23:18:a1:8f:52:75:8e:e6:13:8b:0c:02:45:eb:b1:54:bc:3b:
99:59:6b:64:c1:1f:5f:11:67:86:e9:fd:5d:7e:8d:69:28:ce:
7d:0f:b4:82:d0:b1:e7:73:8c:56:d1:64:fb:b3:05:a4:5c:a9:
db:a9:02:a4:76:d7:b2:87:e6:3c:70:96:bb:3e:6d:cd:88:70:
c3:9b:4a:7d:9f:d8:37:bd:0a:a5:a7:4b:19:79:d9:c1:d4:53:
34:2a:f9:29:ac:b3:d7:b5:c2:bb:4d:30:dc:1f:ff:7f:28:e7:
c9:f6:7e:34:f7:96:59:80:57:36:fc:4c:27:6b:b2:a0:7d:0b:
00:cc:44:73:7d:36:b3:01:f9:70:8d:78:bd:0d:71:11:a2:0f:
10:b4:84:45:12:e2:72:1b:d5:37:ab:48:a1:1d:0a:e7:b1:c2:
e9:0d:17:81:64:db:76:74:71:83:2e:37:4f:13:70:b4:c6:f3:
99:57:d8:0c:f2:5a:ae:f9:07:47:da:64:06:f8:6a:82:90:da:
f4:e3:fe:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:46:50 2024 by rpki-client on console-ams.rpki-client.org