Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/5ba0d539-b260-413e-b853-9a7abc9d392e.roa
File: 5ba0d539-b260-413e-b853-9a7abc9d392e.roa (raw, json)
Hash identifier: tUmfaYNlbpO3g59K3X28DJ9YQ4kCSDlu/RxO8ZmAZMk=
Subject key identifier: E1:78:E5:84:96:42:BD:5A:E0:68:71:AC:27:55:21:3E:B0:D3:53:B9
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 609234BB529AB3883CEB7369EB1669F34F67827E
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/5ba0d539-b260-413e-b853-9a7abc9d392e.roa
Signing time: Wed 21 Jun 2023 00:00:00 +0000
ROA not before: Wed 21 Jun 2023 00:00:00 +0000
ROA not after: Wed 26 Jul 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
60:92:34:bb:52:9a:b3:88:3c:eb:73:69:eb:16:69:f3:4f:67:82:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Jun 21 00:00:00 2023 GMT
Not After : Jul 26 23:59:59 2023 GMT
Subject: serialNumber=584a98bc54c06820aaa7706af0ce3cf6ed0e4a3c824b2088df8ae92e7f8c7922, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:c2:52:05:7b:77:fd:2e:22:f3:2b:25:66:ea:
59:a5:1f:cb:e7:e6:45:52:a7:53:33:f0:93:37:5c:
6a:4c:2e:92:84:1f:dd:70:40:eb:05:99:55:1e:ce:
8d:cd:a7:2c:01:8b:5f:e5:98:11:c4:1c:28:77:25:
6e:17:35:15:d1:94:1c:f2:e3:5c:89:4d:db:fe:fd:
8c:ca:5c:0f:f5:98:ab:cd:f7:b2:2c:a4:cd:29:89:
9a:37:17:76:88:2d:73:9a:6d:4d:d8:c0:b1:91:f4:
61:b3:08:1b:6a:b9:50:a3:9e:94:4c:8e:e9:03:9c:
a3:7b:bc:ff:19:ea:d2:cc:14:2f:2d:c2:93:70:0e:
16:33:0c:10:e2:c7:37:37:b0:2a:91:77:08:07:9a:
44:11:68:2c:01:03:eb:b9:9d:14:2a:73:49:22:82:
36:83:49:d4:0a:43:45:0e:e5:2b:3b:b7:6d:fc:ca:
72:7f:71:17:a6:24:ff:6c:c9:80:90:14:fc:24:f5:
7f:53:f7:a9:49:ba:a8:36:52:60:0a:d2:08:e2:68:
db:48:0b:c9:35:44:9f:ae:67:05:33:12:50:16:de:
86:26:8b:30:26:5f:35:92:20:68:15:5c:e8:ce:c1:
b7:e2:5b:0f:8e:ce:9f:fb:24:aa:16:79:ea:6b:35:
f1:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:78:E5:84:96:42:BD:5A:E0:68:71:AC:27:55:21:3E:B0:D3:53:B9
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/5ba0d539-b260-413e-b853-9a7abc9d392e.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
9a:01:f2:9b:f0:ca:e4:d1:5f:ed:8d:97:44:a8:65:93:82:51:
39:12:b1:54:a2:3b:55:e8:e3:ad:0d:ad:a0:a1:15:df:a3:92:
12:10:53:30:64:d6:7f:84:c1:0f:c6:39:6f:c5:60:09:d1:52:
16:98:2c:72:41:4f:b4:b6:43:0b:fe:dd:de:bd:ea:ae:35:28:
c2:ab:de:2f:cb:bf:9a:3a:05:11:1f:8d:e6:ea:61:29:b3:be:
f4:5f:5b:6b:05:81:cc:50:4f:ed:cf:6c:3c:43:31:e3:90:80:
7a:c8:2b:bc:b2:3b:8b:43:85:2b:3b:78:aa:16:bb:3c:3b:b7:
d5:b2:23:07:78:1c:2e:5e:f4:08:ca:1f:8c:92:08:e3:ce:65:
25:a0:92:89:07:42:2a:dc:5f:dd:ba:4b:15:c0:cb:2c:97:b0:
09:d9:8b:5a:da:fd:d8:8b:89:9c:f2:13:f8:d3:56:1a:b5:e0:
2d:3f:c1:a6:71:3a:10:77:89:c5:6a:eb:4f:4f:0b:1f:72:1c:
4b:91:1d:e9:5d:f0:20:ab:03:c3:49:e1:35:c4:9f:fb:d9:2c:
0c:c7:f9:f6:a1:fc:21:2c:21:15:69:70:d9:c2:2c:d3:33:b0:
6f:a0:41:15:c0:51:4d:cc:cb:83:3a:8c:86:51:27:41:5a:84:
52:e0:b4:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:41:28 2024 by rpki-client on console-fra.rpki-client.org