Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/6d755bb6-ecf1-4885-a988-63193b59a260.roa
File: 6d755bb6-ecf1-4885-a988-63193b59a260.roa (raw, json)
Hash identifier: 87V/E4IpsKi97UO+gHbkeOmWt8L1ZPq9SVmt+mqxdrY=
Subject key identifier: 08:26:8E:4E:AE:FC:23:9E:DF:B1:7E:C5:96:12:B1:E4:5F:76:32:4C
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 1CAF6B3B1A879847246F394A680AB776B2B65442
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/6d755bb6-ecf1-4885-a988-63193b59a260.roa
Signing time: Thu 03 Aug 2023 00:00:00 +0000
ROA not before: Thu 03 Aug 2023 00:00:00 +0000
ROA not after: Thu 07 Sep 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1c:af:6b:3b:1a:87:98:47:24:6f:39:4a:68:0a:b7:76:b2:b6:54:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Aug 3 00:00:00 2023 GMT
Not After : Sep 7 23:59:59 2023 GMT
Subject: serialNumber=d71b43e3b0ba9f509bb93fd38dc02640492707853499c2f454dcd9ae81a0d692, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:ad:1d:02:75:c9:9a:33:94:7c:63:44:93:66:
d6:6f:5c:a6:7b:9d:38:6d:bd:10:76:6b:3f:6b:65:
2b:ec:60:11:c6:c6:55:71:2e:eb:00:5c:55:66:d5:
67:09:13:82:57:6e:eb:e5:f9:3d:2c:1c:8a:77:a5:
72:06:92:93:c8:e5:3e:f9:18:fd:14:01:81:73:10:
0c:85:1e:ef:6b:eb:66:a5:b9:94:ff:3f:e3:13:d2:
24:31:17:a5:13:83:7c:70:31:c0:17:06:32:da:69:
f3:b7:41:c8:48:5d:51:e2:06:d1:56:7f:2e:85:f2:
3c:86:85:fc:c1:32:7b:2b:80:0a:5e:03:00:b0:00:
5c:36:13:bb:7a:77:71:c5:dd:2e:39:20:a9:1e:12:
8e:69:93:36:cb:74:93:e1:ce:bb:84:4e:66:4f:8c:
86:ce:95:e6:aa:b6:b4:6f:6c:87:1f:4e:95:ad:f4:
37:a5:02:4f:86:82:3e:b3:e0:ff:d8:57:19:77:40:
c9:e2:19:ab:56:d3:03:47:e7:6c:13:4f:b2:9e:a7:
ce:50:5c:fc:1a:46:45:cd:cc:de:e3:04:92:17:a6:
ad:6b:81:d6:9f:43:6f:0d:f5:cf:60:a1:d7:73:91:
9b:b2:b5:70:e0:a6:e0:9d:66:fc:f3:ba:37:b1:16:
bb:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:26:8E:4E:AE:FC:23:9E:DF:B1:7E:C5:96:12:B1:E4:5F:76:32:4C
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/6d755bb6-ecf1-4885-a988-63193b59a260.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
78:7b:d5:b3:3a:ea:35:44:15:2f:82:66:10:b3:66:d9:d7:e2:
0e:f1:32:8b:7d:40:c0:bb:aa:10:1e:56:34:6e:de:be:3c:5a:
f8:cd:0a:2b:07:39:b2:88:5a:be:c9:94:63:d8:22:d6:b0:fd:
0e:dd:d2:a0:1d:57:55:db:56:a5:48:ba:b4:d8:ed:d4:94:75:
50:52:9c:d7:7e:8d:a7:84:04:51:ba:81:b5:cb:5d:10:7c:27:
73:13:c1:9b:47:00:ed:58:12:9f:93:97:99:91:06:75:f7:1f:
dc:d9:73:a6:f8:1c:40:9d:12:ba:2d:6e:fa:d6:77:74:15:82:
de:59:d9:2f:87:76:8b:7c:fc:65:37:24:c7:76:cf:56:6e:d5:
32:b5:e4:15:14:71:37:4b:74:70:54:2b:0c:40:07:b4:35:74:
4f:c2:55:3f:db:51:be:07:05:19:e8:6c:f0:36:01:0e:02:8b:
72:33:09:7e:f7:38:27:73:57:a7:11:9d:50:ce:e7:5b:37:bb:
66:02:25:b4:24:5a:ae:fa:2e:e0:f6:49:85:5c:27:d7:5b:ac:
d1:6f:c8:8a:34:45:f8:12:44:f4:38:da:fd:cb:e7:bd:33:99:
90:e3:76:bb:a6:a1:de:c6:28:16:f8:f9:a3:a9:c4:fb:3d:59:
0b:1c:29:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:47:51 2024 by rpki-client on console-ams.rpki-client.org