Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/4b26d5fd-2567-4a05-8a9e-fa6fbb542887.roa
File: 4b26d5fd-2567-4a05-8a9e-fa6fbb542887.roa (raw, json)
Hash identifier: l2LaBeueZ4ZJ0I4zAksDGMB/qiMSMpLay4+APWdI8uU=
Subject key identifier: 45:9B:05:FF:77:ED:BA:39:8B:EC:51:0B:FE:71:3D:3B:FE:FD:82:55
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 01FCBF9CF88C896277DB00422559CC821A1AB0AE
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/4b26d5fd-2567-4a05-8a9e-fa6fbb542887.roa
Signing time: Tue 07 Nov 2023 00:00:00 +0000
ROA not before: Tue 07 Nov 2023 00:00:00 +0000
ROA not after: Tue 12 Dec 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:fc:bf:9c:f8:8c:89:62:77:db:00:42:25:59:cc:82:1a:1a:b0:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Nov 7 00:00:00 2023 GMT
Not After : Dec 12 23:59:59 2023 GMT
Subject: serialNumber=8cc47444ebc68a3ea8116e26b3c0c6c0ea492479fcdcce16769a17c6366b7644, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:c6:12:c8:46:fb:6f:bc:14:a7:86:51:d6:08:
93:c7:a4:71:7f:b5:50:76:f3:41:67:6a:a7:0f:d5:
a0:61:0f:04:1a:7b:56:0f:1f:7a:de:fd:60:d7:0a:
26:96:1a:f8:f4:1f:f4:62:17:4e:85:76:26:0a:1d:
60:64:0e:88:49:a1:7f:d8:56:8d:5d:e5:99:e6:72:
cc:4a:5c:6f:93:4b:b7:3c:bb:39:9c:31:f1:b8:a3:
3d:25:1e:71:93:61:0f:90:1f:fa:72:d3:be:0b:ed:
fb:34:51:26:3b:93:a1:a4:f2:4a:70:5e:cb:3a:fd:
77:49:c5:cb:01:49:f2:14:63:bc:45:01:20:bb:35:
c9:ba:a2:c4:0b:6f:a0:84:8f:0e:5a:84:ee:9b:bb:
42:be:93:a4:1b:d6:36:2a:15:b7:a3:05:2f:13:1f:
54:4b:1c:2b:53:20:a1:9a:4d:2f:a3:95:ca:10:51:
11:6e:49:03:60:59:61:39:71:e9:33:44:fc:d3:32:
b2:9b:18:89:5c:ef:13:42:2b:83:b8:54:dc:7e:92:
6a:b8:ee:59:a9:37:83:67:f1:2c:66:f4:0e:fd:3c:
04:8c:80:96:e1:1b:be:73:9c:5e:06:af:21:12:60:
fc:df:1e:16:19:0f:83:46:8f:8a:a5:fe:79:9d:ab:
cb:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:9B:05:FF:77:ED:BA:39:8B:EC:51:0B:FE:71:3D:3B:FE:FD:82:55
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/4b26d5fd-2567-4a05-8a9e-fa6fbb542887.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
02:cd:96:dc:f8:49:64:d2:64:13:0a:e4:81:09:f5:34:d2:34:
31:ac:a7:30:54:5b:e7:8a:d0:6c:46:d9:75:89:b2:91:bf:46:
a9:10:4e:66:2c:69:06:10:ec:18:40:1f:9e:30:e9:2e:3f:b3:
e6:d0:fd:70:15:90:34:e7:81:3c:76:fd:32:85:63:4e:a8:e4:
9b:b8:4c:d5:08:e3:37:2e:63:2a:c3:98:6b:ee:98:f5:3d:61:
a4:29:f8:da:8f:24:11:92:bc:54:09:cd:14:0d:9c:be:0d:13:
1d:4c:93:58:d8:c0:27:2d:bb:a2:cb:24:c0:9a:90:e1:6d:06:
00:8c:23:61:5b:7c:8e:80:3a:2b:9f:58:de:ea:1a:09:9c:41:
93:eb:2e:7f:0f:c3:12:0c:50:95:64:28:02:cc:80:17:8c:b7:
7b:a8:22:8a:a4:a6:d2:fa:f3:63:60:65:2d:b3:ed:42:5a:b5:
b2:cf:a0:ff:44:6b:0c:7d:74:2d:76:3c:24:9a:20:3d:83:ce:
08:d2:9f:2d:92:78:f0:83:2e:a8:b8:c6:7a:80:3f:c4:ab:f5:
9d:fe:c6:d2:8f:44:94:78:18:7f:69:88:68:35:1d:88:09:cf:
0d:86:84:cc:56:d9:53:dc:54:74:f0:2f:40:70:0d:16:67:8d:
6e:a3:3e:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:41:26 2024 by rpki-client on console-fra.rpki-client.org