Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/4c27f40b-f9b2-4b72-992e-a61c2f1bf3fa.roa
File: 4c27f40b-f9b2-4b72-992e-a61c2f1bf3fa.roa (raw, json)
Hash identifier: lGA4jUYBYZib4W4hcPhkcrKizGZS7LjTGSoVX033tb0=
Subject key identifier: 1F:B6:F8:09:AE:2D:55:57:F1:83:35:1C:56:98:4F:C4:A4:B2:41:F0
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 2D6A7B500E0249E24243440B0A759ED02CB8D67D
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/4c27f40b-f9b2-4b72-992e-a61c2f1bf3fa.roa
Signing time: Sun 31 Dec 2023 00:00:00 +0000
ROA not before: Sun 31 Dec 2023 00:00:00 +0000
ROA not after: Sun 04 Feb 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2d:6a:7b:50:0e:02:49:e2:42:43:44:0b:0a:75:9e:d0:2c:b8:d6:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Dec 31 00:00:00 2023 GMT
Not After : Feb 4 23:59:59 2024 GMT
Subject: serialNumber=2b10cc4a14e4d4144ebd3e2082d871c58c7bc3e08f0e7d4faa9c865fff7fb45d, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:5b:84:eb:7f:39:4c:90:e0:db:9f:7c:59:43:
b7:9a:89:54:0c:bc:6a:68:a3:0d:35:72:48:aa:01:
23:bc:44:b0:90:42:14:f5:68:66:22:a0:77:7d:cf:
7e:2e:2a:d0:e5:fc:a7:fe:b6:58:aa:ea:8d:e2:de:
72:36:af:55:1a:06:10:f2:02:29:c3:d6:d2:82:a4:
09:0f:3b:b3:c6:53:05:75:4d:f9:92:e7:de:4e:2f:
05:34:e2:11:dd:bd:e6:4e:5f:d7:05:2c:57:2d:a3:
89:0b:b1:6c:ca:c3:3d:f5:e5:da:92:ce:cd:31:92:
67:3d:a5:44:df:f6:ff:ac:60:4e:74:05:35:f9:ee:
42:81:01:96:c3:3f:e5:a2:30:7a:24:22:6d:c6:3c:
46:55:29:f8:66:b0:5b:1a:dd:c4:b5:b4:b3:b6:be:
e8:a7:57:1a:6c:af:47:17:90:c7:76:66:c1:93:2a:
af:a6:8f:ef:78:40:c8:65:6f:9a:8d:f8:1a:52:b4:
11:26:ff:52:ef:04:db:f0:f7:5c:5e:99:ec:4f:67:
b2:a9:c7:53:c9:b6:a9:87:c6:bf:81:22:14:9f:e0:
27:91:00:a2:e6:bd:30:d7:63:5d:41:c6:01:0c:e8:
6b:cc:bf:43:16:fd:9e:95:a1:9b:95:a2:d8:a5:37:
98:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:B6:F8:09:AE:2D:55:57:F1:83:35:1C:56:98:4F:C4:A4:B2:41:F0
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/4c27f40b-f9b2-4b72-992e-a61c2f1bf3fa.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
9e:83:5e:fd:76:fa:67:7a:8b:b9:a6:8f:49:be:62:b1:31:fa:
e8:72:78:4a:e6:21:33:b1:9a:91:fd:f0:ab:7c:f8:52:74:f4:
eb:66:e6:af:0d:fd:3e:55:00:95:b0:49:4c:8c:70:8d:8c:01:
8c:2b:5c:2d:3e:a9:e9:f0:c4:f1:0b:e9:73:dc:79:1a:c8:b4:
b8:74:e5:9b:b7:8a:18:2d:aa:43:b7:97:57:63:64:d3:6e:88:
15:34:a1:f8:36:4f:22:7d:d2:c8:e5:38:cc:8a:a7:c0:29:f3:
5c:33:c4:64:01:5e:37:24:70:3e:a9:46:21:2b:81:aa:fb:ec:
87:7e:ae:9c:97:82:5c:34:68:42:bc:4b:da:8b:e8:1d:89:8c:
44:42:f0:35:7a:ff:66:77:fa:82:47:3c:cb:20:82:25:67:50:
57:2e:24:6b:86:f5:74:bd:02:e3:59:18:56:0e:46:91:7c:6c:
d8:1c:67:6d:f3:32:b1:2d:aa:8c:16:cb:c0:0f:d3:87:da:a6:
f8:54:a1:8d:1d:71:82:75:ad:15:0d:d6:01:22:ae:e5:a7:03:
8c:65:44:54:87:9b:de:c5:6a:e9:64:95:cc:99:c1:0a:21:05:
9b:2f:f2:ed:f2:23:15:0f:8d:e9:c2:ed:6b:2e:3c:b9:13:37:
c8:c5:e0:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:47:09 2024 by rpki-client on console-ams.rpki-client.org