Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/210f7543-7823-4ae9-b507-108f268f0e4d.roa
File: 210f7543-7823-4ae9-b507-108f268f0e4d.roa (raw, json)
Hash identifier: 7o3qP3bfb1pmYFmulYf0rA6qRL1RBxIgHKBiA9aJzXs=
Subject key identifier: EE:18:C3:72:46:87:75:D6:0D:9C:85:C8:7D:58:E5:6C:F7:38:D5:83
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 1A1D63F144B956CE3646121F155334E79E1D3DD2
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/210f7543-7823-4ae9-b507-108f268f0e4d.roa
Signing time: Mon 31 Jul 2023 00:00:00 +0000
ROA not before: Mon 31 Jul 2023 00:00:00 +0000
ROA not after: Mon 04 Sep 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1a:1d:63:f1:44:b9:56:ce:36:46:12:1f:15:53:34:e7:9e:1d:3d:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Jul 31 00:00:00 2023 GMT
Not After : Sep 4 23:59:59 2023 GMT
Subject: serialNumber=304efc0a5570bf199397650457c389afa7aa75bf2c4753c0186a613ca8ec6b72, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:81:09:aa:26:15:26:ca:2c:92:0a:26:fb:bc:
1c:96:ee:1e:34:62:a5:9c:52:9d:09:05:b4:e5:ab:
f4:df:42:04:42:80:4d:a0:20:27:ca:83:c0:ba:93:
fd:8b:e3:b4:7b:e7:26:c1:b4:80:3c:47:2b:18:96:
2d:7f:e6:e1:02:b7:5a:96:f6:9b:97:66:c4:48:48:
35:46:da:6c:ce:60:ea:5c:df:02:fc:35:44:f3:e4:
34:31:4c:37:03:33:c3:16:04:dd:6c:96:8f:a7:e8:
fd:b0:5a:4e:3b:94:88:84:37:9e:4d:6c:2a:09:9a:
32:67:64:96:ee:36:55:f6:73:b2:72:ae:99:2a:22:
ac:2c:8f:57:b2:c5:09:b7:fc:4c:b2:af:5e:8f:c0:
e6:64:65:77:94:96:58:49:47:99:bc:6e:0b:b7:02:
d5:5b:ef:0b:f1:d5:6e:4b:ed:1f:5d:ed:f9:d4:93:
11:a9:29:a2:b0:75:82:62:41:3a:f3:ac:21:8e:00:
a4:52:43:65:ea:90:b8:07:d3:bb:50:4f:df:0a:3e:
1f:d2:8a:c2:ad:e4:ce:dc:82:11:8d:60:34:67:5d:
90:76:96:ba:64:83:81:c0:c2:24:41:fa:89:52:4f:
78:2b:ff:61:48:62:6f:52:9f:be:61:6f:6e:cf:cc:
27:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:18:C3:72:46:87:75:D6:0D:9C:85:C8:7D:58:E5:6C:F7:38:D5:83
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/210f7543-7823-4ae9-b507-108f268f0e4d.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
86:65:a3:40:cb:18:93:bf:75:53:fa:c2:a9:88:66:a6:5b:a6:
4a:be:2c:90:a7:70:51:e0:d2:c2:98:48:31:96:b9:1a:2f:cf:
d3:89:e1:2f:0c:63:66:ea:09:2d:c7:0a:72:c9:f4:ef:b2:21:
94:5f:f3:5d:eb:ea:b9:39:10:8a:5c:aa:bb:68:aa:af:2a:88:
89:e9:f8:65:a2:33:b0:10:c9:fd:33:58:02:76:20:41:ac:e4:
2a:38:b7:d5:f1:35:e0:fc:f0:6d:e2:e8:d0:2a:fd:ab:4d:2d:
8d:fb:ea:27:b1:bd:07:19:1f:50:b3:82:24:04:ac:05:f5:b1:
bd:bf:23:b1:47:f3:63:8d:60:26:ea:12:95:08:0c:9c:07:bc:
6d:be:e8:29:8e:88:0d:8c:1b:f7:0a:47:69:45:65:70:e6:b2:
f8:c4:7b:a9:5e:cd:b3:c3:1c:fd:0f:c3:fa:ab:02:72:2a:61:
25:1e:7b:b8:63:87:0d:89:97:50:91:ce:11:34:60:8e:41:39:
b1:5d:2b:cb:00:69:84:19:de:52:58:88:bd:d5:ec:ab:ee:2b:
af:91:e7:88:3a:5f:4c:84:e3:62:88:6d:78:56:72:b8:68:4e:
b7:57:49:3c:39:d4:78:e3:0f:5b:d6:0c:73:ef:58:00:73:c0:
e6:43:1d:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:46:55 2024 by rpki-client on console-ams.rpki-client.org