Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/66f3482e-6b64-419a-a6b6-0b066b913da2.roa
File: 66f3482e-6b64-419a-a6b6-0b066b913da2.roa (raw, json)
Hash identifier: yi0be270Bx8V9grg4h5hfUaAgVavQdRlrhUzL9me1BI=
Subject key identifier: 94:07:74:93:BF:5E:81:A3:AB:25:51:31:E9:2A:03:CE:78:CC:49:15
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 33349A2943B0FAA41DE5F5C22457355D5804EF49
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/66f3482e-6b64-419a-a6b6-0b066b913da2.roa
Signing time: Thu 14 Sep 2023 00:00:00 +0000
ROA not before: Thu 14 Sep 2023 00:00:00 +0000
ROA not after: Thu 19 Oct 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
33:34:9a:29:43:b0:fa:a4:1d:e5:f5:c2:24:57:35:5d:58:04:ef:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Sep 14 00:00:00 2023 GMT
Not After : Oct 19 23:59:59 2023 GMT
Subject: serialNumber=6dfa80235852c13cd2b1893bdc9aea8704e3dadf768e9ece36cc71fcddd6d781, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:e7:8f:e7:4c:2b:0d:79:69:2b:74:0c:b6:34:
0b:2b:7b:ae:ca:99:1c:3e:f4:62:fd:4b:5e:ab:88:
54:08:ff:4e:7a:6d:cd:f8:5d:5e:4c:18:92:21:e2:
73:06:40:1e:b7:78:d2:9f:7b:7e:e0:9d:41:34:59:
f5:25:a7:1b:3c:a7:5d:09:93:8f:22:40:f7:30:3f:
35:5e:e1:f9:ca:e9:2e:11:8e:07:94:51:74:52:49:
1a:47:b9:9e:48:fc:bd:42:00:10:1c:c1:d7:4d:20:
2b:bc:c3:92:34:92:fc:49:0d:dd:82:5d:e9:b0:71:
07:aa:0e:1a:a1:1f:71:69:7c:e5:a9:0b:62:ea:4a:
24:cf:fe:32:2e:21:59:2d:17:10:bf:df:c7:a6:bf:
bb:b7:c9:65:10:51:ed:84:52:12:d7:93:67:5c:eb:
eb:b2:2f:0a:99:6b:58:f4:01:57:59:cf:63:f3:d4:
39:c4:dc:90:f7:ea:2d:ff:61:b2:b1:87:3a:a7:89:
ce:0d:58:3c:a9:1c:90:50:82:73:11:7e:e9:69:d6:
d2:be:64:d7:c3:64:b6:4b:f0:7f:fe:5c:7e:69:9e:
c9:a5:8a:6f:b5:4f:20:37:8c:cc:69:0c:7f:30:cd:
a8:25:96:87:c0:4d:2c:4d:c7:72:3f:71:5b:59:0e:
44:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:07:74:93:BF:5E:81:A3:AB:25:51:31:E9:2A:03:CE:78:CC:49:15
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/66f3482e-6b64-419a-a6b6-0b066b913da2.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
95:83:fc:31:3c:55:dd:8f:ee:62:93:53:17:58:8c:f1:b0:43:
0a:29:60:0e:c5:68:b8:25:95:b4:d3:cb:78:90:bb:81:32:0d:
8b:d7:f8:b2:33:05:e5:74:32:3f:23:99:57:7c:74:f6:4f:b6:
80:96:57:e3:62:e8:d2:21:a0:a9:59:dc:e7:3c:5c:d2:b9:ac:
cc:e1:fe:bc:e2:4f:49:c1:01:f3:92:9f:c3:8e:5c:7c:6f:bb:
4d:21:b4:79:ca:12:83:c0:d9:e9:b5:91:e6:1e:f6:9c:21:c5:
dd:00:62:de:f8:51:24:81:5e:d8:02:98:0f:a6:85:7b:99:f4:
c6:67:80:e4:7c:57:26:e5:c5:74:d9:6f:0e:2f:25:dd:8e:1a:
35:a7:24:c9:a8:44:e7:59:c5:ed:56:cc:6b:85:6f:2d:3a:b0:
7b:6e:73:38:71:c8:72:f9:1e:d0:5a:66:27:39:af:5e:62:a4:
35:34:61:84:de:15:ac:19:95:0f:fd:23:ba:cb:c0:a5:09:cf:
d9:70:54:9d:5d:40:e2:f2:0d:51:04:a6:51:28:eb:13:15:8c:
0d:d9:b3:37:8d:ae:ab:5b:55:09:00:a1:95:59:61:41:f2:cc:
4e:05:b8:f7:18:ad:39:9a:2f:79:11:3b:3c:e1:28:5b:65:b4:
c0:a5:8b:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:41:30 2024 by rpki-client on console-fra.rpki-client.org