Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/518bf552-9098-496f-b6b2-7108bfc23738.roa
File: 518bf552-9098-496f-b6b2-7108bfc23738.roa (raw, json)
Hash identifier: OlWbASWq8qsC+yWcgCUXQfNppwQq65o90DXFE6xZkuI=
Subject key identifier: D4:B7:AE:19:D3:62:60:E9:5C:78:31:BB:4A:8D:1A:E7:0F:FC:03:5E
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 4AD62C6F86B589B9D099FC260795753A9D14DB84
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/518bf552-9098-496f-b6b2-7108bfc23738.roa
Signing time: Wed 30 Aug 2023 00:00:00 +0000
ROA not before: Wed 30 Aug 2023 00:00:00 +0000
ROA not after: Wed 04 Oct 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4a:d6:2c:6f:86:b5:89:b9:d0:99:fc:26:07:95:75:3a:9d:14:db:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Aug 30 00:00:00 2023 GMT
Not After : Oct 4 23:59:59 2023 GMT
Subject: serialNumber=e636cec9493fb92e4eb28565726fccb094ce0700cb73882d6d57698c328845ac, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:62:c0:70:e0:9d:29:48:d1:fd:bd:8d:94:60:
f8:3f:2d:a3:3a:73:84:fe:3e:19:01:32:1c:15:ce:
61:12:bc:32:5a:64:c1:d4:37:8a:57:39:94:a3:61:
2c:6b:fd:58:f4:69:b9:32:ec:9e:f8:fd:e5:c0:2c:
94:d4:cc:0d:68:3e:fb:00:9d:54:71:68:a6:bb:f2:
55:fd:95:9e:38:d7:36:9e:fc:8c:b9:71:60:f3:89:
bd:1a:61:63:4f:41:b8:94:7f:62:25:a7:fb:b3:55:
7e:b4:d2:57:83:c9:1a:ac:2f:a7:df:28:51:c0:ea:
cb:00:c3:b2:2e:f3:64:ee:2b:fa:1d:d1:3d:d8:a3:
58:ef:00:6e:8b:5d:0c:d9:64:a7:e2:89:a7:c3:06:
5a:da:92:46:19:02:ae:e0:47:b3:c7:46:70:ea:75:
4d:dc:21:1d:43:ef:3d:b2:81:5c:94:87:67:04:9e:
72:44:1d:69:b3:1a:a7:52:8b:6f:85:e3:dd:5a:a4:
2b:0f:fa:6c:83:ab:78:81:a8:f5:9c:dd:4c:31:c5:
cc:e1:0d:03:4f:46:a7:aa:ee:56:05:71:fd:8f:fe:
1e:61:5d:c5:fb:8e:da:27:cb:b1:23:4b:e5:55:95:
28:d3:77:44:d6:ee:61:fa:35:fe:7c:72:2d:aa:8e:
b0:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:B7:AE:19:D3:62:60:E9:5C:78:31:BB:4A:8D:1A:E7:0F:FC:03:5E
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/518bf552-9098-496f-b6b2-7108bfc23738.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
a0:ab:98:21:ea:d3:58:97:02:67:d8:d2:a0:6a:b8:ea:b8:b1:
00:e4:78:91:b2:0c:46:87:d4:1a:65:7d:87:c1:72:e4:9a:72:
fb:6d:94:c0:94:ae:ab:4a:e5:79:29:0c:8d:ca:1f:c8:b2:a0:
c8:07:54:81:af:de:7d:e3:2b:5e:c7:7d:29:2b:12:7f:d3:98:
58:a8:f7:a7:83:6b:49:8d:6f:a7:88:21:24:c8:3e:09:33:f7:
24:36:0c:a2:c9:77:81:d3:b5:fc:19:ea:76:7b:12:b5:fb:89:
d1:3b:b0:ad:8e:56:e4:5a:d2:67:bf:c1:16:8c:ea:66:cd:7f:
91:b0:8e:dd:95:eb:bc:2b:88:8f:8a:0d:20:a5:02:cb:80:04:
28:b2:1f:3a:92:7f:33:3a:65:b9:b4:56:2c:40:32:d4:34:78:
fe:8b:19:86:87:02:3b:49:3c:a9:5c:e1:ed:97:94:45:b6:0e:
2c:5b:7b:4a:78:38:30:48:15:5a:db:92:22:81:8a:16:c9:e6:
17:2f:06:39:9c:63:87:08:49:4f:a6:b5:65:71:e1:f4:39:13:
82:4d:3e:fb:25:c1:e5:fa:f1:16:55:a3:87:fb:ac:c4:f2:71:
00:9d:51:a2:bf:d5:c8:c9:25:10:67:87:18:4f:6a:63:2f:7b:
18:e6:3c:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:47:45 2024 by rpki-client on console-ams.rpki-client.org