Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/4ff4f737-8a2f-4a58-9e46-ea1ddd87574c.roa
File: 4ff4f737-8a2f-4a58-9e46-ea1ddd87574c.roa (raw, json)
Hash identifier: edrza4P/D2wDd72K1pwDFuU4sPw3ujG4qulDxyZv+Ew=
Subject key identifier: 72:A1:35:5E:84:90:EB:A1:11:86:22:00:02:97:E9:05:8B:E5:96:90
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 6BA3B0C1BBF21F2CCAAE4C8D4714469D97A96052
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/4ff4f737-8a2f-4a58-9e46-ea1ddd87574c.roa
Signing time: Fri 05 Jan 2024 00:00:00 +0000
ROA not before: Fri 05 Jan 2024 00:00:00 +0000
ROA not after: Fri 09 Feb 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6b:a3:b0:c1:bb:f2:1f:2c:ca:ae:4c:8d:47:14:46:9d:97:a9:60:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Jan 5 00:00:00 2024 GMT
Not After : Feb 9 23:59:59 2024 GMT
Subject: serialNumber=d37970cf6719ee0aba26a417e93e38858f7de13303bb3dd2025525cc007d3409, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:72:64:e3:71:e6:e4:9d:f5:cf:54:52:66:d3:
c2:80:e0:63:8c:59:a2:a6:a8:f8:76:d5:f8:b6:69:
c7:c6:27:16:ea:02:1c:a9:ad:c0:ea:22:d1:1a:98:
d1:d4:36:e0:29:04:95:da:3d:e5:3b:2e:d7:28:b6:
89:9a:68:00:87:78:20:18:49:f4:b3:05:a3:f0:89:
4b:4a:1c:94:6b:f3:27:ba:06:da:c2:27:08:86:a6:
16:2b:bf:da:4e:b9:7e:0f:3e:97:5e:fb:df:2f:6c:
59:30:6d:e0:e7:c3:d2:1a:59:85:ac:80:ec:ec:bd:
0b:55:e2:7d:b4:69:15:89:a9:96:e3:7e:3c:09:0e:
19:c0:19:51:e1:9a:de:ea:2f:5e:c8:1d:30:e1:ef:
6e:30:f7:98:b6:a9:65:3a:bc:d1:36:ac:9f:b5:f0:
c5:b2:5e:72:ad:b0:10:ff:db:c0:63:a6:56:9b:57:
df:b0:f6:3a:3f:f6:bc:01:1a:75:92:09:8c:14:5f:
32:90:e8:c2:4e:12:35:04:d9:8e:c3:9f:9f:bc:ef:
85:16:90:4f:96:1a:91:a4:46:30:e1:60:06:f7:ce:
e6:c5:57:c5:f7:94:1f:28:b6:58:a0:57:ff:05:13:
76:4a:ed:da:98:4f:71:86:e2:68:a0:33:b4:c5:56:
30:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:A1:35:5E:84:90:EB:A1:11:86:22:00:02:97:E9:05:8B:E5:96:90
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/4ff4f737-8a2f-4a58-9e46-ea1ddd87574c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
2b:b5:e4:dc:64:91:2e:b9:43:a4:b7:0e:2e:2b:ba:a6:43:51:
a0:c0:79:fb:b7:ec:30:eb:cf:77:54:24:d9:8c:c2:9e:06:50:
dd:6b:7f:aa:e2:7f:06:78:e4:21:35:f1:67:f2:b9:fd:18:56:
17:5c:36:23:35:ea:ff:d9:4a:84:b5:2d:ad:38:0a:d2:19:1f:
3c:0a:9e:03:cb:93:6a:4a:6f:eb:78:4d:21:36:31:9a:02:18:
b2:32:5e:9e:bb:f2:04:1a:ea:15:d5:61:88:32:1c:84:a2:de:
63:9b:94:b6:9b:f0:4f:98:72:f4:d7:ce:25:88:2f:5f:bb:56:
2d:8d:33:a3:e4:1c:35:81:ee:5c:f8:d9:6c:ff:4f:3f:63:e4:
80:60:6c:d6:da:4e:4e:c5:b2:89:63:27:55:59:3c:c2:21:81:
d3:3c:5e:ed:3b:c7:b8:52:74:4f:57:2f:36:d4:9e:ee:02:3b:
e4:9a:a3:b1:8b:c3:38:5a:28:f3:f8:1b:e7:7d:8e:dc:cd:73:
42:35:bd:41:46:7b:fc:6c:51:1e:2a:19:78:be:2d:26:a4:70:
db:ff:4c:66:59:bc:13:53:ca:a7:f6:af:86:8a:f6:4d:9d:cf:
40:de:57:a5:45:56:e8:84:f8:ca:fe:32:95:f2:8b:d1:c7:c1:
03:d6:4a:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:41:26 2024 by rpki-client on console-fra.rpki-client.org