Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/2b5e13dd-6975-42d5-99cd-23e035129f4a.roa
File: 2b5e13dd-6975-42d5-99cd-23e035129f4a.roa (raw, json)
Hash identifier: FFDDqDPED2gmNatMED1MRNgJsfltaqfCxg0H8amTfx4=
Subject key identifier: 40:30:7A:25:A7:8D:2C:4E:24:74:B5:47:7B:3D:66:86:A2:62:B5:7C
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 064F23FC350E40500E2592126E57082C6429F2E3
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/2b5e13dd-6975-42d5-99cd-23e035129f4a.roa
Signing time: Sat 25 Nov 2023 00:00:00 +0000
ROA not before: Sat 25 Nov 2023 00:00:00 +0000
ROA not after: Sat 30 Dec 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
06:4f:23:fc:35:0e:40:50:0e:25:92:12:6e:57:08:2c:64:29:f2:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Nov 25 00:00:00 2023 GMT
Not After : Dec 30 23:59:59 2023 GMT
Subject: serialNumber=be5ab4285697521baaeae8ba2fa5acd99636eb92aa15762216eddec26bac14a5, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:12:21:d0:10:b0:8d:e1:71:6e:7b:9e:8a:89:
5d:4e:45:b7:14:bd:07:01:4b:5a:77:17:e5:7b:13:
0e:a1:5b:9f:66:73:1a:1c:ac:86:7d:da:d8:33:a3:
e9:a6:cb:9e:f0:61:82:dd:60:fc:d9:1b:f3:a1:5f:
83:32:f5:ec:19:9c:7e:c5:d0:e7:35:94:31:fc:3a:
4f:c6:0a:6c:78:e2:6a:b5:0c:96:d4:48:37:18:36:
90:e0:65:9d:08:29:38:46:83:b3:6e:30:74:14:fd:
5d:ba:da:4c:c8:1f:15:37:cb:60:e0:62:78:57:1f:
71:f1:85:0c:28:a4:45:96:50:71:84:8d:ac:25:4e:
e0:68:0b:ed:7e:6b:b1:da:0d:55:92:38:1e:3b:67:
e0:4b:72:d9:fa:42:48:1e:e5:e1:83:b2:5d:1d:61:
7c:20:6f:30:ea:b5:26:f6:2e:4b:d5:26:41:18:50:
5a:53:fb:b4:78:d9:0e:02:75:b0:5a:1b:5e:b5:c1:
71:b0:2d:34:29:85:0d:5f:ad:2f:2b:a9:ad:bb:c0:
5e:b8:74:5e:f5:08:89:0f:54:44:35:0a:3a:ca:f6:
ff:f3:13:8d:cb:e0:8b:63:e1:e7:8d:a6:aa:90:44:
62:7e:5a:99:c5:b4:b5:13:98:29:26:49:f6:a8:ea:
84:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:30:7A:25:A7:8D:2C:4E:24:74:B5:47:7B:3D:66:86:A2:62:B5:7C
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/2b5e13dd-6975-42d5-99cd-23e035129f4a.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
46:9b:21:c2:6c:d0:44:55:b7:f4:84:89:e4:81:91:f0:27:2b:
64:de:23:fa:5b:4b:95:a0:60:b7:f5:3b:fd:47:a7:e0:39:a4:
7d:52:4f:fd:5c:07:24:92:d8:15:d0:dc:a6:ca:98:55:bb:44:
c5:6c:c1:44:13:96:78:24:31:99:23:64:1b:49:ed:36:6f:c7:
62:b7:70:40:44:85:11:ae:93:a8:e5:a7:23:d7:b7:ce:fd:dc:
d6:88:1d:0c:3f:0c:2a:95:43:fa:ba:86:03:6d:e9:0c:22:b8:
87:74:eb:2f:6c:95:d2:dd:77:1d:21:f9:91:0c:ca:53:13:b3:
28:ca:66:49:0b:4f:af:cb:c5:9f:69:51:76:87:33:6a:50:ce:
dc:74:21:da:57:12:b8:06:74:82:15:ab:25:44:97:4e:22:47:
08:62:22:8f:9d:b0:5e:1a:05:ce:81:ad:28:53:f5:6e:79:31:
b6:cf:23:b9:bf:f0:cd:25:af:e9:c0:ba:71:b6:26:c0:45:3b:
14:01:86:3b:ba:b4:fb:82:12:87:e2:9f:a6:2e:a4:ea:4a:93:
36:bd:3f:46:1d:c0:02:db:96:42:0b:34:63:52:35:6c:2a:db:
05:d8:9d:84:2b:37:26:e1:12:42:58:c4:fa:0d:28:3c:7c:f1:
3b:a8:d7:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:46:58 2024 by rpki-client on console-ams.rpki-client.org