Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/3578dbe2-599a-4899-8d70-31d6c2fe0d90.roa
File: 3578dbe2-599a-4899-8d70-31d6c2fe0d90.roa (raw, json)
Hash identifier: sVVJd7VlRRsTbujp4p9gSVZ2C2gHzV84cTRwBgSvF8E=
Subject key identifier: 4E:73:40:C6:00:19:00:1A:14:16:E2:92:A4:2C:C9:D8:EA:A8:DD:4E
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 49E2CE531633A701E10D0FE237FB26AA9D426732
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/3578dbe2-599a-4899-8d70-31d6c2fe0d90.roa
Signing time: Fri 23 Feb 2024 00:00:00 +0000
ROA not before: Fri 23 Feb 2024 00:00:00 +0000
ROA not after: Fri 29 Mar 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
49:e2:ce:53:16:33:a7:01:e1:0d:0f:e2:37:fb:26:aa:9d:42:67:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Feb 23 00:00:00 2024 GMT
Not After : Mar 29 23:59:59 2024 GMT
Subject: serialNumber=e426f482d8f89bb28e5cfdb06fd9d5afd928b23baf1373821f345db902648b54, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:10:3b:d4:ad:7e:55:1e:56:6b:06:c8:fb:fa:
7f:fd:60:21:aa:c7:0f:25:39:b6:f4:d7:8d:f4:d2:
4d:64:6b:0b:89:9f:c8:97:e4:ae:24:da:a9:ec:4a:
a9:a5:b9:be:45:aa:d6:20:5e:ea:bc:c8:16:b1:57:
a4:1e:db:8c:8d:c7:9c:4e:75:2e:ae:3d:07:47:ef:
bc:ab:59:e2:ef:00:f4:7f:c1:d0:b3:e3:20:a3:bb:
31:51:83:ed:50:f1:16:8b:e7:a4:dd:d9:b1:3a:ac:
89:92:69:d9:e8:ba:e8:ff:5c:3d:35:30:26:09:07:
4a:b1:8d:e1:f4:cc:a9:2c:55:01:2c:5f:c6:c5:c0:
85:23:0b:34:86:eb:01:90:0d:3a:b5:a0:81:7e:9c:
0d:38:29:5a:8f:a6:39:c3:25:01:7d:a1:b3:d3:96:
51:01:42:0d:87:72:33:21:90:95:d5:61:e0:2a:50:
5f:ba:69:d8:68:7c:52:f6:ba:e6:1d:4f:53:4f:1e:
c9:95:04:f4:b2:ca:15:9f:8a:3b:2f:26:37:77:39:
46:2d:cb:17:1f:84:74:cf:b5:be:bf:de:e4:71:89:
5c:d7:92:42:57:0b:c6:b8:42:79:ca:bb:8f:3d:0a:
30:ad:cb:0c:11:49:99:05:b7:c5:4c:5b:d5:f1:88:
23:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:73:40:C6:00:19:00:1A:14:16:E2:92:A4:2C:C9:D8:EA:A8:DD:4E
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/3578dbe2-599a-4899-8d70-31d6c2fe0d90.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
b6:16:f0:a9:c0:65:d5:ab:68:27:5c:50:bd:05:cc:a4:e2:f1:
7f:51:7a:da:65:ee:1c:c5:91:ff:f7:d0:a2:0c:4b:56:e1:69:
59:4b:59:2a:54:9b:3f:d6:ff:9d:29:75:de:14:c1:e6:74:5f:
e7:d4:6f:3c:e6:58:d3:47:33:69:c0:19:e9:2c:4e:0b:cb:f7:
63:29:a4:c3:f9:f4:dd:f4:0d:e1:f4:12:16:02:34:61:90:2b:
13:7e:a5:18:d7:a6:e9:61:de:2a:70:bc:c1:d9:e8:4c:09:d1:
43:1e:58:70:18:14:88:55:72:35:64:55:fa:f1:82:21:e5:c3:
a4:2e:c5:8e:a2:fd:80:02:a5:4a:03:b2:6c:0a:b7:02:ff:6f:
2f:03:12:a0:c6:88:48:5c:62:ac:29:13:da:ff:95:38:56:c2:
37:fc:66:37:ae:e9:e8:c0:1b:ef:23:ee:e3:56:7d:c8:3c:d5:
96:23:fc:09:b6:54:07:40:f0:c4:bd:7c:ef:cf:22:b3:10:d6:
76:9c:cf:96:2b:ae:e1:4e:e1:c7:3f:c8:22:c9:5d:07:3d:4e:
eb:da:1d:ef:d0:43:54:bb:82:0e:e5:75:67:55:e7:c7:09:88:
d1:4b:8a:c5:54:51:2d:2e:8b:f2:af:5c:5f:55:61:f1:a5:23:
db:c0:d2:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:47:00 2024 by rpki-client on console-ams.rpki-client.org