Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/3e552a1d-7109-407d-9eea-5e7fc5b661a5.roa
File: 3e552a1d-7109-407d-9eea-5e7fc5b661a5.roa (raw, json)
Hash identifier: KWHtYihaQhNie2ozNexOa/5Y+4OWWf9Le/S9qvaKxPE=
Subject key identifier: 57:0B:5D:58:A7:60:73:8E:29:CA:FD:28:7A:E7:EC:28:F9:28:A1:9A
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 6B5FA7604783B0B39C9CEB1A48CE081B403F57D9
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/3e552a1d-7109-407d-9eea-5e7fc5b661a5.roa
Signing time: Tue 27 Jun 2023 00:00:00 +0000
ROA not before: Tue 27 Jun 2023 00:00:00 +0000
ROA not after: Tue 01 Aug 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6b:5f:a7:60:47:83:b0:b3:9c:9c:eb:1a:48:ce:08:1b:40:3f:57:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Jun 27 00:00:00 2023 GMT
Not After : Aug 1 23:59:59 2023 GMT
Subject: serialNumber=f6251e53a0137bf10ecd6a804ea2796b2348a00263324eb80f68c69eb926411c, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:c4:ba:6b:5b:83:8b:e3:cd:cb:99:80:6b:26:
1c:24:8b:cf:38:d2:25:65:6b:44:41:3a:76:d1:52:
4d:de:06:b4:82:c1:d9:7d:74:a4:58:d2:78:d8:5f:
e8:b1:19:c9:a9:13:13:11:20:7e:ae:9d:ea:09:bb:
98:f3:68:a6:78:fb:82:f2:28:11:87:be:2d:2e:e6:
8d:f8:5f:a2:f1:25:c6:f1:68:02:71:b0:e7:5f:0e:
4c:b5:31:da:88:3e:27:79:d5:09:01:64:35:bc:d8:
ef:b8:5a:f7:d0:39:ac:14:83:44:ce:77:c3:f4:c3:
10:d7:01:4c:55:d7:b8:1c:30:0b:86:0b:0a:4a:76:
23:29:53:eb:b6:18:c0:8c:fe:40:7c:76:43:8e:70:
92:17:ba:d9:ba:9e:8c:18:5f:23:ed:6c:96:2d:cc:
f6:ca:e5:77:87:a1:58:dc:10:05:93:af:31:57:85:
53:e8:8c:70:e6:31:1d:bb:a6:38:b3:01:85:e0:e2:
e7:89:7a:47:e4:f0:a5:4d:9a:88:82:52:4e:b4:8b:
38:6e:ae:60:b9:45:25:2b:40:ad:58:57:ef:82:59:
6e:ac:7b:33:59:da:ee:0b:60:64:33:2a:d8:20:9e:
01:84:98:e3:5c:01:af:bb:01:c1:5b:d2:7b:bd:94:
da:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:0B:5D:58:A7:60:73:8E:29:CA:FD:28:7A:E7:EC:28:F9:28:A1:9A
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/3e552a1d-7109-407d-9eea-5e7fc5b661a5.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
6b:1f:81:e9:9d:0f:d3:c1:14:3a:41:43:66:1a:dc:b5:43:98:
84:1f:ac:e3:d0:3d:ba:19:7d:af:61:9c:e0:f1:53:70:8b:fc:
0c:e2:1b:2c:48:14:3f:60:e1:f3:bf:32:87:59:e2:83:f3:18:
b4:63:92:bb:db:c4:4e:74:72:2d:06:db:66:d2:f1:e1:16:20:
0a:f3:98:9a:60:7c:f4:04:a5:4d:7e:be:dc:8d:10:8d:de:c7:
ff:fb:9d:8c:e9:c5:f9:74:c9:97:29:4b:79:e7:2c:a9:0f:cd:
2e:b0:06:e4:92:a6:fc:05:c5:c1:2a:6b:bd:d0:35:6e:d0:e8:
10:5e:4e:9a:3b:15:0c:27:a1:6e:f4:17:dd:6f:2b:38:06:51:
59:85:7c:78:83:72:d6:b3:ec:39:57:cf:2a:be:ec:bd:f9:1a:
58:ac:a3:d9:c6:b5:41:c4:8a:81:b4:31:54:a2:ab:52:9a:45:
39:c4:3d:4a:01:25:1c:a2:37:00:21:1a:6a:62:27:fa:cf:44:
8b:32:56:d0:8b:d3:9f:85:ff:09:aa:a7:ad:5e:18:c2:73:0b:
7c:d0:4a:26:66:ae:06:14:90:5e:2b:e2:21:3d:c4:16:8a:e0:
f5:a1:ad:78:df:9c:93:c9:63:46:b6:14:05:d5:cc:48:2a:c6:
81:aa:39:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:47:06 2024 by rpki-client on console-ams.rpki-client.org