Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/6b50d3af-878f-40ae-b466-4e98f6c5407e.roa
File: 6b50d3af-878f-40ae-b466-4e98f6c5407e.roa (raw, json)
Hash identifier: aKF2ziihcgEcao5dd47KLFpU/wCuQBW4hlNv8kghsZ4=
Subject key identifier: 3B:AE:66:0B:D7:39:7E:8D:87:3B:40:E8:D1:49:0B:F5:C0:31:69:9B
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 021EE90332AEF87E278FD68EEF7F297692FCE213
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/6b50d3af-878f-40ae-b466-4e98f6c5407e.roa
Signing time: Sat 07 Oct 2023 00:00:00 +0000
ROA not before: Sat 07 Oct 2023 00:00:00 +0000
ROA not after: Sat 11 Nov 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
02:1e:e9:03:32:ae:f8:7e:27:8f:d6:8e:ef:7f:29:76:92:fc:e2:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Oct 7 00:00:00 2023 GMT
Not After : Nov 11 23:59:59 2023 GMT
Subject: serialNumber=e89d894f3148b0515d54b7296fcc4729b22b7b14c601d12af7cbf963e0c8fd4a, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:3d:5c:85:a7:aa:1d:cf:05:e2:74:0e:0f:37:
ae:ba:85:41:cd:fa:93:18:12:04:fa:9e:1c:30:61:
ec:d6:23:45:e7:7e:28:4d:91:13:09:99:7c:42:bc:
22:54:5b:88:31:4c:9b:fb:91:1f:a8:22:e7:bd:a8:
8d:d1:c3:c8:fa:d1:79:8c:5b:1c:3b:fc:d0:ee:80:
6b:9a:56:f1:b1:05:d2:fb:92:5d:9a:35:f1:b8:f0:
7c:6c:09:00:97:8a:0a:63:ad:ff:5a:50:17:7a:21:
77:14:8c:b0:e6:74:f2:ab:36:55:76:7e:9e:e9:b4:
18:d2:e5:8a:98:2e:fa:70:8a:03:75:82:c8:58:ed:
8b:52:d9:26:0f:1d:f8:98:1a:7b:d9:95:ce:94:3b:
d9:10:2d:1d:b4:17:20:ec:81:58:ba:3d:11:a1:0e:
22:ca:58:11:de:81:25:9d:50:67:44:d0:7d:fd:bd:
7d:c5:80:df:bf:1f:f9:c7:49:e5:79:fc:f0:27:8b:
83:31:4f:03:56:f3:fe:32:af:a0:e6:16:80:7b:d8:
0f:06:63:fa:c8:8a:e0:13:17:d8:38:d3:46:a0:7f:
27:68:be:87:c2:0d:5e:aa:33:d3:bf:c9:5a:39:48:
7e:e9:d3:0e:09:ca:ba:c0:b5:68:61:3e:b0:d1:1e:
ad:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:AE:66:0B:D7:39:7E:8D:87:3B:40:E8:D1:49:0B:F5:C0:31:69:9B
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/6b50d3af-878f-40ae-b466-4e98f6c5407e.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
2d:d7:49:0e:5a:e6:69:4d:b3:6f:8a:83:c6:02:b5:f1:db:49:
a9:26:13:30:ee:71:db:51:44:a7:72:e9:d3:bf:65:3d:ef:7c:
24:d6:0b:ec:1a:5a:38:43:3c:30:5a:99:02:97:7a:b9:f9:64:
01:55:7a:ef:ac:fd:98:3e:42:11:d6:9e:c9:77:ab:1c:0b:24:
7d:5d:88:72:80:66:6a:74:63:c1:52:4c:2c:cc:1a:b9:47:83:
d7:e3:5e:47:f9:a3:bb:12:e5:ac:69:26:88:ec:b7:65:e9:70:
44:dc:4c:82:a4:35:8b:31:37:f7:ce:2e:45:db:74:e5:1a:75:
33:75:cd:e0:db:78:6c:fd:f7:f5:17:0e:24:89:c2:9d:91:2b:
47:21:a8:e2:2e:8c:21:93:53:33:f6:34:3c:35:40:c9:1c:96:
98:c9:33:60:3a:db:de:61:b3:38:aa:49:5b:ac:cf:d8:22:45:
16:5e:44:40:98:4f:ee:6a:b7:38:31:c8:53:7f:e2:74:c0:35:
f1:c2:03:45:33:b3:42:47:87:9e:0a:87:b8:7f:66:97:a2:a5:
dd:32:2a:61:6c:d3:f4:ab:60:03:3d:70:ab:51:12:67:f4:8f:
13:22:d2:64:74:e8:fa:21:f3:cd:08:b6:cb:e5:0a:2b:40:a4:
11:7b:89:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:41:30 2024 by rpki-client on console-fra.rpki-client.org