Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/32ad4eb6-4774-4330-a143-231044675033.roa
File: 32ad4eb6-4774-4330-a143-231044675033.roa (raw, json)
Hash identifier: 0Kau41t0Pv8yf8CxoobyYsmbsHrHlC2F+XnH0qEig1s=
Subject key identifier: 81:E9:D1:1D:F2:E9:BB:B0:09:5D:70:16:7A:B9:EA:D2:3B:A5:9B:B4
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 03000F63F56B717A35271E1E1D121638E5AB0A4A
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/32ad4eb6-4774-4330-a143-231044675033.roa
Signing time: Sat 08 Jul 2023 00:00:00 +0000
ROA not before: Sat 08 Jul 2023 00:00:00 +0000
ROA not after: Sat 12 Aug 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
03:00:0f:63:f5:6b:71:7a:35:27:1e:1e:1d:12:16:38:e5:ab:0a:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Jul 8 00:00:00 2023 GMT
Not After : Aug 12 23:59:59 2023 GMT
Subject: serialNumber=976f29e5e8aad5889e4d2ba6874b06e3285f83a7364ef61b301ee29f2d653e9c, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:72:c7:6d:27:55:c4:7a:37:ad:41:30:87:69:
3b:9f:7d:aa:6f:3e:c7:4d:3c:eb:ce:69:9f:73:81:
1a:03:ac:39:a5:a3:8f:fc:fb:f9:0e:bf:18:4b:3c:
58:26:84:f9:11:fd:fb:5b:bc:a6:c8:83:a4:4e:1f:
4b:32:f6:1e:00:52:cc:5c:54:84:12:c5:cb:ee:f4:
90:a6:ac:3a:c2:54:bf:cd:33:48:19:b4:e2:36:ef:
b5:b1:76:ae:9a:b0:49:8f:2c:5b:f4:32:9d:47:c8:
4e:50:3f:e1:e7:1a:f3:cd:52:60:64:1d:a3:6e:6e:
43:da:a1:da:d0:89:e0:d3:34:f7:b5:53:05:19:87:
0a:0e:f5:b9:56:53:96:5a:1b:ae:56:72:b8:64:09:
86:2b:a0:ac:9f:6d:19:2d:db:d9:b1:28:eb:f4:4c:
95:5a:1b:19:1b:1a:f0:27:5d:11:71:5e:0c:19:f0:
10:59:12:24:8f:e5:71:8c:ac:83:a1:89:62:28:2a:
13:01:83:e6:dd:18:f3:b3:52:38:1c:8a:bc:fc:dd:
c2:71:01:e4:0a:f6:e3:8a:24:ff:e0:a1:18:9e:d5:
01:de:1e:e2:a2:70:c1:28:5b:5f:a7:ba:27:36:f8:
48:f0:4c:9e:9d:4d:8c:9b:88:06:c2:2e:d6:2e:19:
6a:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:E9:D1:1D:F2:E9:BB:B0:09:5D:70:16:7A:B9:EA:D2:3B:A5:9B:B4
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/32ad4eb6-4774-4330-a143-231044675033.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
78:03:de:e4:ae:20:e9:17:7f:f0:55:2d:90:da:5e:f4:b9:d0:
e9:d4:a4:25:4c:d0:b4:98:cb:34:d5:73:60:f8:d2:eb:ed:90:
e8:3b:a9:7d:99:f6:ae:74:64:e4:90:e0:23:ed:08:13:2f:2f:
c0:51:e3:85:a5:4d:3f:08:82:51:8b:12:f1:c1:66:c2:2f:97:
de:24:53:0a:40:5b:89:c1:8f:97:b2:7e:02:28:00:05:da:0c:
30:7c:9f:35:0b:97:8d:65:e4:70:ca:ff:e4:75:77:2a:b2:2f:
9b:8c:97:6e:2d:21:cf:c2:1f:9f:d7:d0:5d:d6:5b:8c:af:d4:
c2:f0:9a:89:45:69:c2:02:d5:19:78:8a:4f:89:72:21:ab:ed:
9d:82:3d:a9:3b:47:13:d2:ff:dd:75:dd:2f:71:4f:15:85:c6:
f1:a7:55:d5:23:d9:43:1d:dd:a3:d2:62:e9:ce:9c:08:a9:76:
2f:8c:87:d1:0e:61:8b:fd:75:24:27:35:5b:23:d1:4f:d2:61:
9f:6f:8e:c1:25:93:3f:29:c6:db:1c:93:a6:99:73:8c:10:f3:
9a:67:d3:1b:f0:2b:90:48:a4:ed:e1:08:cc:e2:e9:da:ae:7e:
25:fb:3a:5c:55:59:f6:70:b4:e8:85:e3:f1:da:8f:ec:33:66:
d8:90:de:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:41:17 2024 by rpki-client on console-fra.rpki-client.org