Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/2524dfaf-6ba4-4c7b-a66a-d70f1eafc86e.roa
File: 2524dfaf-6ba4-4c7b-a66a-d70f1eafc86e.roa (raw, json)
Hash identifier: KCU3/Ort/sHem0pVnZGldH3JSk9vDpugEL7N6upKopk=
Subject key identifier: D8:E4:D1:95:EB:96:00:CF:98:5E:04:A8:B0:EB:6F:0D:5F:65:B3:1F
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 749905AFA2F3DB5624CA575DF7A72A1FAD76E1C9
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/2524dfaf-6ba4-4c7b-a66a-d70f1eafc86e.roa
Signing time: Sun 01 Oct 2023 00:00:00 +0000
ROA not before: Sun 01 Oct 2023 00:00:00 +0000
ROA not after: Sun 05 Nov 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
74:99:05:af:a2:f3:db:56:24:ca:57:5d:f7:a7:2a:1f:ad:76:e1:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Oct 1 00:00:00 2023 GMT
Not After : Nov 5 23:59:59 2023 GMT
Subject: serialNumber=6e6b871096c37bfb8733256c40552a3d497d60f3e6d2369606008f230955d9cd, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:25:1f:27:d3:44:86:f3:d5:4d:71:1a:b7:f0:
ed:ba:50:f2:c4:2c:10:c1:d7:63:1b:1a:f3:db:71:
30:6a:10:fd:76:e7:49:80:a6:2d:0d:4d:53:b6:1b:
54:56:9c:f3:95:c6:cc:9d:7c:8a:47:17:09:9a:d6:
da:5e:3e:3f:0b:73:3e:50:4b:34:6e:7a:21:9b:5f:
61:b0:2e:7c:0c:43:4b:52:e5:23:c7:29:b3:90:e3:
8b:82:6d:7b:b1:42:e9:ed:06:ed:4f:a5:0e:dc:17:
a0:69:bf:b2:ee:1d:5e:75:0a:31:ad:88:26:ff:c0:
bd:3d:f7:a1:2e:a8:44:ea:7c:0a:bb:f8:e2:d0:f6:
2a:15:8b:8c:cc:bf:ec:c5:e1:fa:e0:c6:ce:9c:c1:
7a:38:5f:4f:09:d0:2d:e4:2d:f1:50:fa:16:84:c6:
5a:00:9b:d8:dd:36:4f:23:f0:94:00:eb:37:f2:07:
74:0c:7b:a6:3a:73:5f:4d:b3:04:44:c2:c5:9b:c0:
64:2e:71:8e:9e:02:42:a2:99:1d:0d:e6:cc:1b:e9:
23:17:e6:68:f3:36:fd:65:50:1e:ba:3e:d0:16:26:
03:29:da:12:24:b6:cd:2c:f0:21:e0:ca:9d:6e:d5:
f4:1b:49:67:d0:ce:51:e5:c6:55:cc:d4:fb:25:6c:
8d:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:E4:D1:95:EB:96:00:CF:98:5E:04:A8:B0:EB:6F:0D:5F:65:B3:1F
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/2524dfaf-6ba4-4c7b-a66a-d70f1eafc86e.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
74:aa:51:0a:0e:83:9a:2e:b9:9b:39:ed:c0:6b:b0:0c:e9:db:
f9:bc:a5:22:eb:fc:ec:93:76:92:5b:8d:8d:85:3a:b6:cb:c5:
d5:07:4f:f8:49:21:a7:e2:9a:8c:fb:35:29:5f:50:74:70:e1:
47:cf:9e:b9:37:b0:f9:4a:79:94:be:38:37:8b:b9:89:25:4b:
7d:94:02:27:dc:c5:c2:e4:d6:e4:52:6b:a7:a2:39:02:03:21:
e6:0c:9f:23:4d:78:a9:fb:6d:55:6b:fd:cb:b7:fb:10:bf:4f:
3b:99:6c:7e:be:09:21:6d:b7:29:5c:22:84:95:c8:9a:95:1e:
5a:5f:d9:8c:ba:44:d3:e9:4e:f3:2e:74:d2:d3:b7:43:e7:22:
57:d5:eb:b0:88:85:9e:0c:75:ae:4b:8e:ec:55:9e:bb:89:8f:
de:67:15:38:87:f2:fd:97:f4:05:66:0e:01:79:31:bc:46:41:
dd:be:3c:5c:4a:99:de:45:f8:6f:96:ae:2e:65:21:03:e2:d5:
02:da:49:eb:81:1f:d2:be:76:34:6a:0f:4d:6f:b6:da:f6:d4:
8d:61:17:cc:73:6c:23:a3:6e:39:c0:7c:72:52:18:b5:7c:07:
c5:d6:15:16:4e:31:a3:d5:db:11:af:40:4b:0d:09:01:4a:49:
d3:af:19:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:41:15 2024 by rpki-client on console-fra.rpki-client.org