Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/58b97e55-d964-4760-875b-e31b1c46bfec.roa
File: 58b97e55-d964-4760-875b-e31b1c46bfec.roa (raw, json)
Hash identifier: 4AHCFLJy2kxQDJH0inbsNfj/3+CuB97sUDNApoL6q2E=
Subject key identifier: 46:4B:82:7E:C7:C8:6C:D7:ED:33:D4:B6:9E:25:60:33:23:AC:6F:BE
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 1C4E1312CCD87D11B71DAF851A76FBC86D7B25A7
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/58b97e55-d964-4760-875b-e31b1c46bfec.roa
Signing time: Sat 10 Feb 2024 00:00:00 +0000
ROA not before: Sat 10 Feb 2024 00:00:00 +0000
ROA not after: Sat 16 Mar 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1c:4e:13:12:cc:d8:7d:11:b7:1d:af:85:1a:76:fb:c8:6d:7b:25:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Feb 10 00:00:00 2024 GMT
Not After : Mar 16 23:59:59 2024 GMT
Subject: serialNumber=a2a0470f8b7e02c4c404c53d841ce173f638905e070b23263f2448d5892a722e, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:00:27:7f:f2:eb:35:f7:66:4d:fd:d1:9a:6d:
c5:9c:90:60:89:9b:32:76:48:f2:36:3f:66:8c:53:
74:51:71:82:d3:f2:c1:49:59:c9:01:73:f3:fa:bb:
50:72:79:7a:fc:25:5d:71:ae:34:65:4e:f1:68:81:
96:67:9a:05:5a:2e:e1:9c:ce:0e:b3:1f:23:6a:0a:
88:2e:a2:9f:bf:28:2c:9f:17:33:03:cf:33:af:39:
ee:69:da:a6:84:cf:17:bc:fd:b0:78:f9:f9:aa:1e:
03:15:ed:44:2a:af:a8:fc:eb:88:83:66:da:43:6a:
22:eb:0b:6b:3a:c9:4e:23:cb:90:09:4f:54:4c:a0:
7c:59:e9:b7:24:5f:f6:cd:a6:03:e9:61:07:f0:01:
37:35:95:20:e9:bc:14:9a:f6:25:08:b0:cb:fe:04:
97:c2:4e:32:55:d7:7b:4d:f1:f3:bf:7a:fc:ff:51:
eb:53:64:b9:c5:57:d1:9c:7b:29:ff:79:80:f3:fc:
1c:1b:75:82:88:88:74:1b:1b:4f:ff:37:97:81:32:
d6:6a:e8:9e:4f:5a:19:05:90:7b:0f:3f:35:e8:ec:
c0:35:ae:e4:16:12:5e:dd:4c:e8:15:7a:89:39:85:
4a:00:92:1e:9c:b2:bd:5f:a8:42:60:65:f5:8d:d1:
47:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:4B:82:7E:C7:C8:6C:D7:ED:33:D4:B6:9E:25:60:33:23:AC:6F:BE
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/58b97e55-d964-4760-875b-e31b1c46bfec.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
3d:47:01:8f:7b:68:46:5e:6a:c4:ee:d5:12:a7:90:1c:f1:50:
70:14:7e:5f:7f:81:c5:c4:c5:65:3b:0e:4e:38:c0:6c:c7:29:
50:29:7e:b1:e5:8a:e2:d9:2f:b7:07:c5:fe:3c:ae:a5:d5:7a:
5b:71:ad:f8:01:02:84:b1:cc:67:e7:93:db:01:b9:c2:10:ce:
93:22:ce:07:1c:0e:c8:30:54:69:ec:4b:23:d0:02:ae:3a:9f:
1c:1b:0d:38:13:91:d9:74:1d:a9:03:80:36:40:5b:3c:ac:e5:
c1:c6:ba:7a:e4:be:37:d2:fa:1e:fc:75:96:9e:bc:a6:71:cc:
48:56:48:0c:7a:99:2a:be:f5:05:a4:77:1e:ed:25:22:e2:ec:
2f:34:c2:6f:3d:d6:31:e3:b2:c5:01:db:35:79:6b:6e:8b:7f:
f5:5b:32:3a:25:c4:55:ba:df:58:96:94:5c:69:eb:35:c7:21:
d4:1a:09:a0:af:e8:a7:fe:e5:9b:89:57:25:4d:0c:89:11:78:
73:ff:0f:e4:25:78:1d:52:51:0c:c2:e3:d3:2d:64:ed:72:6c:
50:38:1e:59:e3:35:24:9e:eb:79:e3:13:d4:66:09:6f:4f:aa:
03:a4:d2:b5:7a:a4:a4:9c:c1:6a:58:a9:f4:e1:c9:ae:f8:78:
62:2c:fe:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:47:47 2024 by rpki-client on console-ams.rpki-client.org