Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/28965583-5e6e-43eb-9c1e-3976a6358048.roa
File: 28965583-5e6e-43eb-9c1e-3976a6358048.roa (raw, json)
Hash identifier: eUcUw3lK9gpXy4S0osMS3/JkWMNC4dpxlVtl6yuYDlc=
Subject key identifier: D9:BB:55:10:87:C7:B4:F7:A9:F4:7C:A4:5E:AB:8F:D6:E0:AE:2C:B0
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 3CD344EEF322B622D120890CA71FEAC766B27145
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/28965583-5e6e-43eb-9c1e-3976a6358048.roa
Signing time: Sat 14 Oct 2023 00:00:00 +0000
ROA not before: Sat 14 Oct 2023 00:00:00 +0000
ROA not after: Sat 18 Nov 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3c:d3:44:ee:f3:22:b6:22:d1:20:89:0c:a7:1f:ea:c7:66:b2:71:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Oct 14 00:00:00 2023 GMT
Not After : Nov 18 23:59:59 2023 GMT
Subject: serialNumber=f5a9ea181e619d79d51180d5bb60fc504cf06be41bb64622250fdba5f50e8112, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:dd:52:03:9f:99:1e:f3:93:78:7f:de:29:da:
f1:ca:15:ef:5c:de:00:ab:8d:68:6c:7c:6d:c7:ac:
7d:15:34:49:32:13:8e:e2:cc:73:8f:a9:a1:4e:43:
a0:f2:af:d7:c4:1a:a1:33:07:32:bf:c0:d7:23:16:
74:91:a0:24:b6:8a:72:d4:ea:a3:a9:10:ef:0b:d1:
ea:70:12:c5:c8:ee:e5:c8:f6:c1:52:12:ed:c6:02:
20:7a:ca:6b:3e:00:4c:bc:bc:11:52:b8:78:59:f1:
cc:fc:4e:39:82:66:54:16:1e:28:a2:03:4e:e9:4f:
72:58:8f:ed:b4:f2:82:cb:0d:10:d8:19:6a:de:9a:
f3:62:e1:c2:1d:a9:a3:b3:5d:c9:39:d1:fa:5f:e3:
65:08:7b:21:9a:3d:a9:ba:4c:cf:bc:d3:fd:71:c7:
fd:f7:21:79:13:da:c4:cd:1c:f5:8b:85:8b:2c:bc:
bb:2f:5a:0e:22:f9:33:df:52:a8:81:17:55:77:73:
59:60:a8:df:4b:07:64:d1:69:e5:53:59:7f:7e:9a:
dd:a1:b4:e4:80:74:3c:3a:62:b7:80:82:a1:7f:bd:
69:12:f2:0f:0f:62:2b:bd:a4:f0:9c:13:32:54:bd:
51:c6:70:78:64:95:33:5b:e8:96:89:b1:c4:7d:27:
46:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:BB:55:10:87:C7:B4:F7:A9:F4:7C:A4:5E:AB:8F:D6:E0:AE:2C:B0
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/28965583-5e6e-43eb-9c1e-3976a6358048.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
98:ed:4f:7e:78:33:8b:7b:11:9f:37:cb:a3:f0:62:4d:bf:7b:
51:ce:11:cf:9b:b5:54:f0:6b:e2:57:88:9e:e9:02:56:1a:7f:
9d:0d:f2:7f:55:af:70:1c:23:e6:e8:25:6a:97:02:78:12:cb:
c6:06:79:df:3b:d2:f8:69:23:31:b3:3e:80:9b:a5:af:bc:8a:
f1:b2:86:d8:4d:fa:99:7d:e5:62:1e:f0:d0:13:0e:e1:c2:11:
bb:da:31:46:3a:58:63:04:5d:b2:23:e1:63:18:17:86:7c:5e:
c7:66:16:2e:4e:9f:d8:7d:9c:c1:ae:e0:1e:9f:bf:b8:b7:61:
3d:9d:12:f0:02:23:02:69:0a:36:9e:1a:10:9c:25:22:af:64:
ea:51:c5:2a:20:da:af:60:76:d4:a1:17:a5:4e:60:d1:c0:2f:
08:51:ea:a5:e1:b8:35:88:d9:99:c9:fa:67:52:59:7c:7e:be:
68:c7:89:25:d1:5c:f2:06:8a:bc:42:39:83:cd:03:8b:a0:85:
71:65:a2:c2:c9:31:cb:f1:00:0e:44:a6:10:4b:c5:b9:f9:31:
6c:05:00:3b:ac:e2:a1:ac:c2:28:0e:bc:c0:32:4d:07:09:78:
35:90:74:bc:e8:74:af:c4:f2:fd:f6:5c:0a:63:88:27:57:0d:
74:f4:c5:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:41:15 2024 by rpki-client on console-fra.rpki-client.org