Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/6aecf0bb-907b-4f5f-b657-095fb6803ad6.roa
File: 6aecf0bb-907b-4f5f-b657-095fb6803ad6.roa (raw, json)
Hash identifier: Hm3Hw6clq2xl0ts74PakH3+hl8CW/WtIpU/TPvlWTl8=
Subject key identifier: 89:60:AD:61:D2:DF:5A:9E:F1:CB:5A:FA:E1:23:C6:79:9B:EF:9C:60
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 2F864B0C2CCB2F2095C9C0BCA15C1D36836796DC
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/6aecf0bb-907b-4f5f-b657-095fb6803ad6.roa
Signing time: Mon 02 Oct 2023 00:00:00 +0000
ROA not before: Mon 02 Oct 2023 00:00:00 +0000
ROA not after: Mon 06 Nov 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2f:86:4b:0c:2c:cb:2f:20:95:c9:c0:bc:a1:5c:1d:36:83:67:96:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Oct 2 00:00:00 2023 GMT
Not After : Nov 6 23:59:59 2023 GMT
Subject: serialNumber=c604a7b72b9bc037c9a490d29d4f89a84787452f8df160d57841ebc2492caeed, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:a5:87:a7:82:26:a8:45:fc:01:73:cd:8d:d1:
e3:f8:33:da:7c:5b:1f:e7:f5:ea:88:5c:54:a9:35:
22:d2:e2:ac:31:2f:14:99:af:3d:39:a4:9f:36:5b:
3c:bd:93:1c:58:ee:5a:f4:07:65:b2:c2:6f:cd:ca:
f9:d0:cc:57:3a:c1:39:06:94:53:62:95:fd:9c:8c:
dc:36:68:aa:d4:87:0b:50:62:6b:51:75:1b:0a:23:
56:7d:b0:94:c3:dd:8f:ff:31:79:15:2e:3d:84:12:
07:ec:99:c2:aa:97:29:8f:21:7f:df:86:4f:c6:15:
20:20:be:15:a3:22:24:7a:1c:28:6d:38:a1:f2:80:
85:2a:22:3e:46:fe:74:65:78:41:37:38:a2:a0:97:
75:e3:53:02:26:7b:cc:83:3d:9f:fb:37:c4:77:a1:
2f:a5:48:38:5a:52:6e:2f:87:73:ed:64:97:12:48:
b8:9b:50:d4:af:46:89:7d:ac:10:9f:1d:f2:98:11:
e5:e5:4d:7b:ec:1d:07:07:06:f7:d8:cb:b6:90:0b:
34:c6:71:9c:b5:e5:fe:77:7e:4b:ba:5f:e5:40:47:
10:3e:08:4d:54:45:4c:12:92:06:fe:1e:3e:33:cf:
a7:29:da:9b:cf:5c:4e:3e:4d:72:fb:f6:f1:cc:34:
f1:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:60:AD:61:D2:DF:5A:9E:F1:CB:5A:FA:E1:23:C6:79:9B:EF:9C:60
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/6aecf0bb-907b-4f5f-b657-095fb6803ad6.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
97:77:df:8e:60:06:8c:ce:ea:89:fb:0a:f7:a8:18:ee:0b:91:
17:cb:09:2a:8c:75:fc:3c:ad:73:86:04:18:ba:46:11:29:c9:
6d:18:cb:08:e9:55:75:18:95:1a:66:d1:5a:de:b7:e6:df:b4:
5d:6d:f8:c2:8c:23:35:70:02:7a:9f:b4:c0:90:54:9b:b3:ce:
23:eb:f1:11:ab:93:81:04:93:c6:15:01:95:9d:15:ad:03:a2:
f9:76:6e:17:b5:75:e8:c3:93:39:d8:0f:e8:1e:31:48:f8:d4:
cd:ce:f8:77:05:ec:d4:af:ed:a4:ca:5d:3e:61:65:2b:93:e9:
cd:5e:b3:c6:d9:95:9d:fe:7a:89:93:fa:87:f5:19:44:21:58:
13:a8:95:b7:62:76:69:df:d4:f2:ba:6f:63:07:72:00:9e:50:
35:c8:b5:96:7e:06:a7:71:dc:2a:c5:aa:6e:e8:d9:52:47:6e:
c8:a2:eb:06:72:65:ea:62:d1:9d:a6:0a:fb:bd:04:32:e0:e5:
a3:55:3b:f7:71:8c:ca:0d:02:cd:0b:31:4f:4a:65:4b:3f:6c:
af:23:2a:61:54:fb:f9:ed:5e:19:53:b5:3d:99:3f:df:e8:9b:
9e:7b:e5:b9:81:e2:0f:af:b1:47:f5:88:49:e4:45:42:41:d0:
42:fc:5e:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:41:30 2024 by rpki-client on console-fra.rpki-client.org