Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/42fd03df-c994-43c3-81cb-cb62dcf28bec.roa
File: 42fd03df-c994-43c3-81cb-cb62dcf28bec.roa (raw, json)
Hash identifier: D6veVK0liYV/R87XTTntal9B2kaPLtYgKDQRklLNIVg=
Subject key identifier: 7D:B4:96:25:E6:88:B4:86:7C:A8:32:2D:32:C0:61:01:37:8C:1F:86
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 4CFBC8930D62776582F921AEBCE3BC9E2EC920FA
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/42fd03df-c994-43c3-81cb-cb62dcf28bec.roa
Signing time: Fri 01 Dec 2023 00:00:00 +0000
ROA not before: Fri 01 Dec 2023 00:00:00 +0000
ROA not after: Fri 05 Jan 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4c:fb:c8:93:0d:62:77:65:82:f9:21:ae:bc:e3:bc:9e:2e:c9:20:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Dec 1 00:00:00 2023 GMT
Not After : Jan 5 23:59:59 2024 GMT
Subject: serialNumber=4087165c6bf3f3c33d8d4208937c74bd887a22ab69e22adb79bf61f3e568397e, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:05:68:47:17:ef:cb:f6:91:48:d9:48:62:16:
87:0f:a0:8d:3d:91:9f:59:2f:de:cc:aa:d7:3b:98:
6c:d4:b9:17:76:2e:f3:22:5c:ae:d9:07:de:3a:c5:
3f:fc:78:c8:f0:4d:09:85:52:d1:b4:97:e7:39:ab:
58:fa:25:d0:92:9d:4b:0d:2c:11:55:30:ba:5c:1d:
ff:bf:a9:45:a9:a3:2d:05:6f:02:d5:52:ec:1c:28:
1c:16:6c:8b:2c:f1:25:ec:ef:93:fb:91:c9:ec:50:
0e:f4:f2:0b:7b:1c:9e:a9:41:e6:d9:74:ae:dd:94:
7b:0e:77:59:30:68:c5:77:b8:a2:22:53:52:c5:8c:
2d:3a:cb:02:74:bd:a6:d7:91:25:23:2a:90:1d:f6:
ca:33:e7:ae:f8:cb:53:4e:86:c2:a7:6e:47:c6:e6:
a3:e8:ce:0a:6e:28:c9:b4:ae:b4:d5:e2:5e:e9:2e:
54:ad:fe:01:a7:17:37:bd:f4:da:5d:49:19:6a:a7:
b6:00:a4:dc:65:6b:85:65:da:84:18:44:88:f5:4d:
f8:44:82:21:8d:32:2f:e3:e4:8c:35:a7:22:b7:e3:
fc:a5:d6:29:c9:e4:b5:3a:c7:8c:77:f6:1f:42:d2:
46:22:dd:a7:ba:fe:65:a0:da:6b:21:59:bf:07:86:
34:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:B4:96:25:E6:88:B4:86:7C:A8:32:2D:32:C0:61:01:37:8C:1F:86
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/42fd03df-c994-43c3-81cb-cb62dcf28bec.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
1f:df:1f:6e:0a:40:bc:e3:43:ee:37:28:73:f8:1f:75:90:f4:
1d:21:a9:22:bc:16:92:11:69:61:29:ea:a0:a8:57:e5:44:fe:
8c:58:fa:b2:ff:8a:15:50:3c:fb:8d:db:77:c9:a4:1a:ed:36:
d0:5c:e9:08:a2:b5:8d:a0:35:4a:47:40:a0:87:4c:8a:64:95:
39:55:58:32:76:fa:90:f0:7b:1d:d4:a1:d0:4f:cc:96:49:06:
07:bf:92:bf:9d:56:0d:a8:e3:65:3e:99:ab:24:20:6c:36:19:
a3:23:ae:d8:4f:d9:9e:ab:ea:a9:72:45:75:18:36:56:e6:b0:
59:7e:f1:76:25:20:9f:f3:45:2f:95:f0:41:81:39:84:e3:39:
04:38:e2:eb:79:af:5f:c4:9c:f9:2c:39:aa:9d:f5:34:58:58:
34:66:2d:e2:f7:f9:b5:d4:56:34:6e:e4:00:9a:8e:7a:d7:87:
7c:ba:5d:5b:df:dd:da:87:60:81:a0:80:7d:9d:f3:eb:7a:75:
98:a3:f5:a4:c5:40:13:71:1a:8b:c5:b1:8d:45:11:5a:90:e8:
df:e1:b5:21:b1:8a:2f:4a:b9:79:e1:91:6d:5b:c3:6e:77:68:
8c:c8:7a:b5:b0:a7:b0:7a:1d:5b:1d:0c:ec:d3:57:f8:b4:f8:
d8:ce:91:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:47:07 2024 by rpki-client on console-ams.rpki-client.org