Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/6665177e-6863-4920-9c07-2998e82144f8.roa
File: 6665177e-6863-4920-9c07-2998e82144f8.roa (raw, json)
Hash identifier: vZu42+Wy1Q6mOUl+y+/Gnn40r5hYnElXsCGx/9Tnxcc=
Subject key identifier: 79:E0:B7:30:D0:60:D9:44:87:02:05:6F:67:F3:4A:91:C2:CA:F0:EB
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 70052E47850B089EA0F7A581317F9612E5E6A174
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/6665177e-6863-4920-9c07-2998e82144f8.roa
Signing time: Mon 04 Dec 2023 00:00:00 +0000
ROA not before: Mon 04 Dec 2023 00:00:00 +0000
ROA not after: Mon 08 Jan 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
70:05:2e:47:85:0b:08:9e:a0:f7:a5:81:31:7f:96:12:e5:e6:a1:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Dec 4 00:00:00 2023 GMT
Not After : Jan 8 23:59:59 2024 GMT
Subject: serialNumber=13c96cb26b5c864770153c923fd67d72c04378670b11c409fc2f13e2790a6323, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:dc:46:6f:7e:93:1e:26:1b:61:60:00:d5:23:
88:b6:46:d9:63:4d:c6:72:57:55:b4:bc:41:ec:45:
89:eb:15:4f:9e:bf:63:3a:a4:5e:6a:a9:49:e3:8c:
73:53:8d:c2:89:8d:83:2f:48:c9:4c:c7:2a:36:7e:
d5:2a:9a:12:44:a6:7d:bb:fb:11:60:39:e3:b1:bd:
26:7c:9c:b6:2b:a0:72:ca:97:56:6c:7e:96:18:f3:
64:5f:ef:f5:55:8e:d9:0e:9a:3a:2c:31:8d:a6:ea:
b4:2a:fa:e5:e9:f8:ea:30:23:26:d9:62:5f:dc:c4:
09:67:d1:6d:70:a7:cd:1b:aa:35:9f:75:16:e8:ca:
3e:69:43:6e:58:32:31:dd:7a:5b:ab:60:d0:79:11:
38:3b:ba:94:45:d8:7d:9d:ea:3a:f3:3b:65:a6:32:
bc:f8:51:0c:43:80:f3:0e:3d:74:db:aa:2a:6f:f5:
d5:6e:4d:6e:b8:c7:cd:9f:21:16:7f:54:81:d2:b3:
5a:46:92:58:70:de:6c:50:b8:b3:82:e0:40:31:fe:
44:2e:c2:c0:9a:ed:53:36:34:be:13:43:04:37:10:
82:c6:f6:a0:33:03:e0:00:13:a8:6a:b6:bd:9f:83:
08:4d:e8:e0:c6:f0:71:4d:93:25:92:9e:1d:6b:6a:
06:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:E0:B7:30:D0:60:D9:44:87:02:05:6F:67:F3:4A:91:C2:CA:F0:EB
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/6665177e-6863-4920-9c07-2998e82144f8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
0a:79:09:c4:b2:b0:33:ae:06:31:cf:47:aa:43:a4:2d:75:d0:
3f:7a:35:3c:4f:fc:49:55:65:d0:bb:ee:ee:2a:32:4d:57:94:
7b:b5:fa:26:71:a7:d9:3d:06:79:08:94:91:17:e9:4c:a3:80:
27:13:ac:93:af:d6:43:0a:14:3c:85:5a:b2:f0:c6:db:47:69:
c5:35:45:7c:72:7d:d0:f4:f5:18:45:35:3e:c5:10:d6:d1:6c:
f0:a1:98:85:14:d8:e4:a7:d8:5b:da:a9:48:e9:70:79:da:58:
29:73:1c:1e:88:e9:ff:81:11:21:b0:74:fd:f8:8e:ab:ba:3c:
98:11:8d:8b:09:52:f8:79:5d:91:ec:62:0f:10:33:dc:11:b0:
2b:90:c9:b6:33:40:52:ae:cc:eb:70:2b:b9:5b:e5:32:b6:12:
6e:1f:b3:c0:d5:b6:05:9e:10:51:b5:8a:1d:31:0a:f3:64:e5:
79:8c:04:ba:04:12:32:4e:6f:fc:43:ba:8d:b1:28:c5:fc:85:
e3:8f:f5:df:5e:9d:9b:28:b3:26:07:5d:37:61:49:6f:a3:cb:
7a:c5:4a:5b:f7:f6:b8:08:e7:9d:34:e7:46:02:20:4f:44:61:
ad:65:46:10:86:b3:39:fb:64:e5:34:38:0a:52:6c:ae:93:00:
96:77:3b:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:47:50 2024 by rpki-client on console-ams.rpki-client.org