Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/27fa87e1-82f3-484e-8d47-b5797203e9b5.roa
File: 27fa87e1-82f3-484e-8d47-b5797203e9b5.roa (raw, json)
Hash identifier: JhZws05ANXXzILlUEvUpOMZK5wZlorOphLIcjc2wKy4=
Subject key identifier: 3E:C2:1B:D9:2B:5B:10:DF:A0:68:3C:DF:19:19:F7:33:0E:08:B6:77
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 198A0D13C294A048AF6B6A31EE095E23A4B26585
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/27fa87e1-82f3-484e-8d47-b5797203e9b5.roa
Signing time: Sat 27 Apr 2024 00:00:00 +0000
ROA not before: Sat 27 Apr 2024 00:00:00 +0000
ROA not after: Sat 01 Jun 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
19:8a:0d:13:c2:94:a0:48:af:6b:6a:31:ee:09:5e:23:a4:b2:65:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Apr 27 00:00:00 2024 GMT
Not After : Jun 1 23:59:59 2024 GMT
Subject: serialNumber=592c07cdc9c9abbf9d620fb64eb30c92a26d3b5f6d6c4a019acb8980612ef428, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:e5:89:df:2c:6c:4d:68:fb:ce:21:17:e6:28:
76:0d:28:3e:76:17:75:f5:d0:6c:06:ae:00:fb:77:
ae:a6:6c:7d:0e:04:d6:f4:90:08:a4:51:76:00:af:
57:f7:07:21:be:ce:d6:23:ec:bf:70:2e:c5:5a:f0:
78:2b:53:95:a8:cf:06:03:a6:35:67:e3:f1:69:dc:
d0:20:ea:b8:bc:6f:98:91:2e:a9:cb:58:c6:d6:09:
e5:a6:60:0a:86:4e:d8:71:e1:f0:6c:54:c2:33:a5:
04:10:f8:93:d7:f2:db:49:8d:45:eb:02:e6:8a:fe:
7c:09:f4:93:ad:9f:db:73:4e:33:dc:2b:1a:9a:92:
6f:3d:a1:c2:3b:01:f6:6a:1c:19:6f:32:2b:37:72:
30:05:99:79:8a:72:8f:ba:30:bf:99:80:07:b8:24:
1f:d5:4b:7f:7b:a6:ff:82:18:bf:7f:9e:fa:0d:48:
f6:98:94:dd:b4:6b:59:e0:5f:57:00:7c:ce:81:01:
86:90:b5:00:ba:13:fc:b2:8e:18:79:2e:2a:ec:8e:
1a:41:2d:8e:f7:9c:a8:7a:11:91:cd:a3:a5:8c:2c:
5c:76:c7:75:66:69:a6:b4:b7:10:70:bb:51:b2:b0:
c8:e1:d1:83:46:ec:be:b5:58:2a:52:66:56:15:76:
57:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:C2:1B:D9:2B:5B:10:DF:A0:68:3C:DF:19:19:F7:33:0E:08:B6:77
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/27fa87e1-82f3-484e-8d47-b5797203e9b5.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
60:59:e2:f1:86:5a:78:1e:4e:c5:20:a1:f6:84:d0:cd:04:d2:
56:d0:28:74:ab:b5:78:88:32:77:c1:50:c8:01:ab:99:47:2e:
da:d0:c8:c7:45:44:a5:fe:ac:32:1d:ad:a4:62:3d:70:ca:2a:
ac:fc:42:79:ac:3e:d9:dd:32:d7:0f:71:62:ae:6f:64:ad:48:
9b:39:b1:ed:79:fc:c7:e1:92:f2:ac:c2:fa:2b:59:5c:c2:1b:
4e:ba:43:48:3b:3e:5a:6b:0a:8a:b2:60:01:c9:1b:33:ec:05:
bc:d8:90:54:77:65:f6:f7:0d:61:a6:7d:75:62:76:07:fd:36:
d4:4d:52:1d:e0:53:a9:40:a7:d1:1a:9d:0b:2d:da:ee:ea:b8:
9c:d8:35:d1:31:2e:08:67:77:dc:1e:62:4d:dd:74:a6:4d:5d:
7b:89:1a:a3:47:84:8c:9d:f4:08:fd:d7:b2:5a:5b:98:33:49:
17:eb:53:89:f2:1d:96:20:7f:e8:c1:ad:e9:a0:26:f6:66:c0:
42:af:e8:ba:c5:bf:0e:28:1f:16:ee:f6:16:7c:71:d6:09:13:
e3:35:4a:ee:07:7c:00:2a:44:30:65:ab:f5:01:7e:df:97:19:
98:fd:25:b1:ad:e9:aa:9f:10:1d:4d:aa:3a:72:2a:08:f0:a2:
22:f0:be:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:46:57 2024 by rpki-client on console-ams.rpki-client.org