Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/3adfb9d1-a973-417b-99b4-44de4ed37b09.roa
File: 3adfb9d1-a973-417b-99b4-44de4ed37b09.roa (raw, json)
Hash identifier: t+VbSKJi9Wcdu9cGgJ+sZzFjm1jTsLxPu9QB3fKv4p0=
Subject key identifier: 64:24:39:F9:A2:32:D2:C4:C8:84:20:19:8B:1D:70:00:14:54:29:F9
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 5F30820195FF7795BECF8AF7D514AEC70441CC10
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/3adfb9d1-a973-417b-99b4-44de4ed37b09.roa
Signing time: Mon 03 Jul 2023 00:00:00 +0000
ROA not before: Mon 03 Jul 2023 00:00:00 +0000
ROA not after: Mon 07 Aug 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5f:30:82:01:95:ff:77:95:be:cf:8a:f7:d5:14:ae:c7:04:41:cc:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Jul 3 00:00:00 2023 GMT
Not After : Aug 7 23:59:59 2023 GMT
Subject: serialNumber=4c318a1fe813b44ff3557767c6ddd5718f2fc91c6d7326c781304d0c782d9d00, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:27:91:13:9c:ae:32:62:a0:69:6f:b5:4c:10:
15:00:c6:7e:af:c4:0c:88:7d:3a:b9:6d:a1:be:0d:
8a:22:dc:d0:2d:c9:ab:b1:90:20:7e:ff:7a:b6:3d:
3c:ac:8c:72:0e:ff:d3:f7:b4:b3:35:20:6f:5d:b6:
04:63:1b:3a:3b:79:37:da:47:9b:2b:89:4f:b1:9b:
10:fb:03:ec:3f:25:9c:73:49:b9:aa:e2:d5:72:22:
0f:e0:85:e9:54:18:32:37:b5:e7:63:a9:b3:58:b6:
f5:ec:38:21:2e:f8:3e:4d:24:47:d5:37:ba:07:0f:
a1:2d:d8:37:de:86:3c:69:03:98:a3:e8:78:70:4c:
86:a4:5a:c3:44:88:cc:8a:08:f1:47:8a:89:26:b0:
82:52:41:66:4a:2a:b7:12:2b:01:f7:eb:b5:41:7c:
50:62:af:c1:da:31:20:83:2d:d7:96:34:1c:c0:81:
b6:50:e7:09:f7:18:56:06:b4:f6:df:f7:e9:e9:cf:
70:3e:56:fc:0b:97:08:ba:d4:5f:9d:0b:c1:d1:ec:
60:0b:ed:98:b5:ab:84:73:9a:87:dd:2e:d6:78:5f:
7f:f6:f0:a3:ce:e5:f2:3c:25:20:52:63:69:db:9b:
40:fb:4c:21:4b:f3:84:28:06:fa:07:ae:75:f9:06:
26:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:24:39:F9:A2:32:D2:C4:C8:84:20:19:8B:1D:70:00:14:54:29:F9
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/3adfb9d1-a973-417b-99b4-44de4ed37b09.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
6f:2a:63:1e:1e:71:82:a2:46:1a:06:ab:1d:01:e7:16:25:92:
73:10:bd:f7:f7:cb:7b:03:c2:1c:13:9c:fa:7d:38:3b:10:2e:
e5:9c:b7:5a:e4:ed:d1:5f:97:49:26:83:5c:70:48:8e:bc:4b:
46:ef:a5:a5:62:c9:c4:99:41:bf:41:2e:d3:3f:bc:fe:cc:d8:
51:ab:2e:02:1a:a9:34:b0:44:b1:35:ab:c0:0b:b4:7c:a0:b0:
7e:f5:af:77:3e:61:39:68:36:1a:8a:f2:5b:d6:da:55:74:e4:
88:c1:23:30:a0:63:bc:07:52:23:78:71:16:af:32:59:4d:d3:
c9:58:ef:70:5d:9c:5f:7d:4a:f2:32:2d:46:db:58:67:c9:61:
69:39:2f:64:94:35:81:71:5a:33:87:ad:19:a7:f9:db:34:a2:
43:8f:4b:36:80:c9:56:5c:bf:8b:f5:3f:e2:1b:94:72:ab:35:
72:ee:ec:0a:d6:01:be:d2:ab:ce:65:25:f4:e4:97:cf:fd:a1:
cd:1c:4f:6a:a3:c7:a9:51:d8:6d:2a:3d:d8:30:20:2c:f8:23:
9b:db:8d:78:3c:33:d9:81:52:d2:b3:dc:ff:57:bc:6c:f5:8f:
4e:0a:67:3f:c2:69:eb:95:8a:5a:78:e2:09:ec:1e:68:ab:ae:
2a:3b:a6:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:47:01 2024 by rpki-client on console-ams.rpki-client.org