Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/36817cc1-8fbe-437f-b24d-53a83e687b79.roa
File: 36817cc1-8fbe-437f-b24d-53a83e687b79.roa (raw, json)
Hash identifier: fd1SRIF6P8HnYdbb/ZelkIpa9EUMYGpTnseU7nbTd3w=
Subject key identifier: 30:ED:A9:B5:5A:FE:D0:E3:38:B0:42:2D:5D:E2:61:C8:E6:CE:19:08
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 4C87393EFB57F1702554BDF5462DDAAD9F744367
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/36817cc1-8fbe-437f-b24d-53a83e687b79.roa
Signing time: Sat 04 Nov 2023 00:00:00 +0000
ROA not before: Sat 04 Nov 2023 00:00:00 +0000
ROA not after: Sat 09 Dec 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4c:87:39:3e:fb:57:f1:70:25:54:bd:f5:46:2d:da:ad:9f:74:43:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Nov 4 00:00:00 2023 GMT
Not After : Dec 9 23:59:59 2023 GMT
Subject: serialNumber=41084cef0b4e9ecfe3ed7044d0c635007a7e401ea5ecc44f57d84f34f99fb73b, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:e7:81:aa:7c:41:56:b3:94:3a:32:da:0a:4d:
23:04:c1:f6:33:76:0e:91:40:37:b9:13:ec:44:aa:
e3:4f:36:b0:50:ae:8b:e9:bc:44:ef:80:fb:03:be:
f6:fd:60:72:26:0a:5e:b4:38:c8:46:df:81:90:48:
a1:8e:ac:80:d1:55:cf:fc:7b:97:1e:10:dc:85:61:
f0:ae:fa:79:0b:ab:b9:d9:5a:ea:11:29:91:17:9d:
be:b6:4f:37:ce:21:01:f6:33:fb:c6:58:f1:a9:b0:
75:10:25:b9:d7:72:37:f5:66:a7:e5:31:6a:f4:60:
ca:e7:59:4f:15:8a:60:25:a2:88:4f:56:3f:f4:42:
96:ba:ee:1c:f2:fd:ee:65:0d:7c:91:03:88:b4:a5:
95:32:76:34:f9:94:6d:fa:7d:a3:6a:38:93:52:d3:
ee:c9:87:78:6d:43:94:de:21:a7:d1:23:cd:b9:91:
3d:6f:35:e8:22:01:10:4a:64:2f:05:61:03:20:5d:
9a:ea:bb:5d:1a:19:4b:cb:da:6f:ce:a3:e9:4c:70:
45:89:b4:6b:fd:ef:2c:82:9f:df:e0:17:a5:9f:ee:
aa:dd:5f:4f:9c:94:75:71:e1:4d:80:8c:c3:85:52:
41:d0:59:8c:2e:8c:48:bc:07:88:6c:05:e7:55:ef:
f4:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:ED:A9:B5:5A:FE:D0:E3:38:B0:42:2D:5D:E2:61:C8:E6:CE:19:08
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/36817cc1-8fbe-437f-b24d-53a83e687b79.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
00:13:84:02:8b:4e:00:2c:40:f0:7c:a6:fc:de:64:9f:09:e0:
9c:d8:23:84:f7:c9:05:61:0a:21:7a:f6:38:d1:0a:4d:03:dc:
e5:2f:82:47:7a:f2:c1:f0:47:f2:84:a2:8b:00:3b:51:30:f6:
cd:db:cf:69:7d:b9:7a:1a:8e:6a:72:f9:2b:c2:98:ae:93:0a:
b2:35:0e:0e:9b:6d:cd:d7:03:0a:77:71:7a:fd:8a:ce:c6:c3:
e7:81:92:7e:c9:08:0b:93:e5:a0:07:df:e9:ee:16:75:28:d3:
50:c3:92:92:4f:4d:fa:a4:f7:11:52:78:55:40:86:fa:2f:d9:
24:7b:e7:d7:83:02:91:a5:c1:f1:d4:46:f5:b3:1d:f2:30:28:
fb:ad:ad:4f:11:1b:87:5a:a6:dd:cf:6c:5e:a3:56:6d:c8:4f:
54:1b:8c:a6:33:da:df:15:da:b4:7a:e9:c3:96:b4:ff:2d:b2:
78:31:d3:a6:c0:0f:f3:63:7c:f5:33:ba:d3:c0:5f:9e:64:40:
d2:05:e3:a6:a0:2d:01:20:8d:19:f5:65:03:ed:36:7e:4d:0e:
dc:2a:a7:89:56:67:69:9e:b1:09:ca:85:7e:e5:67:c4:7a:3b:
d0:9f:18:17:6c:63:3f:1b:6c:e5:8e:fd:4f:61:da:a7:98:1f:
01:e4:5e:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:41:17 2024 by rpki-client on console-fra.rpki-client.org