Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/477b1217-6cd1-4295-b47a-4f0d73c0d3f0.roa
File: 477b1217-6cd1-4295-b47a-4f0d73c0d3f0.roa (raw, json)
Hash identifier: 8Vp0dW+ejAikvralM+EaGizilDMFlaJ/6n/ikcn1Viw=
Subject key identifier: A9:2F:31:60:33:31:3C:C6:48:9A:41:73:58:83:2E:56:C4:0A:29:E6
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 4C5F57D57F607CB68C4339CA50CDEA0179DC591B
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/477b1217-6cd1-4295-b47a-4f0d73c0d3f0.roa
Signing time: Sat 06 Jan 2024 00:00:00 +0000
ROA not before: Sat 06 Jan 2024 00:00:00 +0000
ROA not after: Sat 10 Feb 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4c:5f:57:d5:7f:60:7c:b6:8c:43:39:ca:50:cd:ea:01:79:dc:59:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Jan 6 00:00:00 2024 GMT
Not After : Feb 10 23:59:59 2024 GMT
Subject: serialNumber=605883b6f10befbf25268ee055c139ffbe50b4bbb6f21f2ab9a70a81b95e08b8, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:e6:10:7f:b6:38:f0:be:0f:4f:de:a1:b6:57:
c2:48:9f:7e:11:36:86:38:fc:5e:47:5f:a1:af:53:
dc:12:d8:d8:c2:3f:10:a5:aa:1a:a3:c3:7e:5a:e4:
fd:e1:03:0e:42:bd:d8:7b:3d:81:d6:bd:71:2f:08:
55:d0:a4:de:4e:b4:69:aa:54:e7:5d:af:49:ba:95:
04:42:ad:8f:9a:fd:2b:ff:01:e5:be:02:9d:33:a4:
89:69:e3:c5:2c:60:a5:cb:05:e3:71:7f:6d:6f:82:
71:bd:86:56:33:6a:8e:5a:29:87:21:06:73:02:69:
f8:f2:e3:1f:54:87:d0:2d:e4:e7:2b:e4:1a:b0:d8:
cc:71:d6:b3:67:d6:4c:9e:3a:13:c2:8c:f8:11:b3:
c4:13:60:2a:c1:04:cf:b2:88:9b:f3:6d:c0:5a:02:
ba:89:d7:a2:35:f6:72:0b:65:d6:22:77:06:48:bd:
15:89:46:e8:a2:cd:9e:ad:f0:c9:58:0e:74:4c:b2:
fe:bb:3b:e0:1e:a1:bc:0d:5c:2e:dd:8a:0e:4c:60:
a0:b4:8d:1d:84:5c:48:46:27:ff:56:93:38:be:e1:
91:2b:b9:d0:79:72:47:ee:35:ce:aa:b6:73:5f:d2:
5c:6e:e6:e6:60:e6:dd:02:54:e6:7e:3c:0e:24:14:
60:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:2F:31:60:33:31:3C:C6:48:9A:41:73:58:83:2E:56:C4:0A:29:E6
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/477b1217-6cd1-4295-b47a-4f0d73c0d3f0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
1d:b0:af:48:90:55:04:2d:e9:81:2b:e8:71:2e:3b:9b:9b:4e:
70:ae:54:33:13:52:29:1d:51:37:1d:e9:b8:90:70:69:c2:ee:
c0:56:f6:a5:7d:f0:7a:36:4e:e0:e9:a0:5f:0f:37:09:d6:39:
fd:9b:c6:53:75:ee:be:60:be:3f:09:14:62:b3:b6:48:75:96:
73:8f:bb:4c:86:33:8e:64:48:e6:70:62:80:b2:0b:1c:24:cb:
dd:80:14:d6:7b:bb:41:5e:7f:d9:f3:5c:e5:a0:ad:70:69:67:
45:21:b9:bb:c1:6f:81:8f:14:5f:29:fd:d0:b0:0b:b8:ce:d0:
8c:91:68:fc:43:06:db:e4:b7:c0:46:5e:07:75:bc:9b:47:f7:
28:bb:e7:32:f4:72:15:93:eb:6d:3e:02:dc:90:36:18:21:0f:
59:94:ef:e4:a0:b5:0d:b9:3d:f2:69:94:c1:4d:d7:cb:63:07:
15:bf:bb:67:c6:89:f5:f4:d9:ec:8c:78:c6:c9:51:59:3b:d0:
78:ac:87:18:98:0c:53:ea:33:7e:41:1b:68:ee:f8:83:8a:fa:
28:70:81:99:25:77:0b:c3:87:b9:85:a4:ba:8a:8d:33:db:db:
b6:6c:fd:93:23:4e:56:a9:c7:7b:78:af:76:bb:02:0f:32:94:
91:06:6a:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:47:08 2024 by rpki-client on console-ams.rpki-client.org