Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/6f1f130d-8238-4674-bccd-f361de3135a7.roa
File: 6f1f130d-8238-4674-bccd-f361de3135a7.roa (raw, json)
Hash identifier: AuKh+WQh316lAHi/F+F+1NMhVUJL+Rez53J1cTnBYtk=
Subject key identifier: 04:E3:8D:63:3E:EA:C8:B1:08:01:8E:2A:CF:CB:0A:89:87:DF:BC:39
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 59293C18A300CB5F070489587196E404E68C27E0
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/6f1f130d-8238-4674-bccd-f361de3135a7.roa
Signing time: Fri 08 Sep 2023 00:00:00 +0000
ROA not before: Fri 08 Sep 2023 00:00:00 +0000
ROA not after: Fri 13 Oct 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
59:29:3c:18:a3:00:cb:5f:07:04:89:58:71:96:e4:04:e6:8c:27:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Sep 8 00:00:00 2023 GMT
Not After : Oct 13 23:59:59 2023 GMT
Subject: serialNumber=3e668b769198f72d1440d76512ffe2aebdde15d29d233439dbaeec00967791e2, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:0f:4e:af:3b:d2:bc:80:10:3a:07:68:b3:93:
9d:98:48:d1:e0:a8:1e:db:5e:cf:04:6e:58:7b:76:
a5:40:ed:bd:76:99:8c:fb:17:d4:01:4a:98:bf:1a:
c2:de:ab:94:f1:08:2d:a2:24:a8:00:c1:90:ea:9b:
eb:b4:07:59:73:15:d7:c7:00:2b:70:fc:5a:0e:14:
a1:ce:4c:48:d2:97:55:31:7d:2f:d7:1c:6b:79:28:
2c:77:44:e1:83:82:03:5f:73:1f:07:99:04:39:a2:
f3:da:ff:e3:97:6e:3d:a5:b5:ca:0b:c5:8f:49:bb:
c7:8b:cb:77:76:3f:26:10:89:92:79:97:05:72:56:
a2:69:38:51:ca:4e:43:30:4e:80:a0:e0:f6:7a:78:
77:af:bb:16:29:6d:1a:46:2c:95:3d:6a:ba:32:e9:
ce:c5:54:f1:39:8f:c1:19:b4:e5:f3:8c:f2:19:5e:
4a:85:f8:34:17:df:29:c3:69:8a:3d:a0:2a:e2:cc:
1a:25:1c:46:8b:99:18:11:06:62:81:02:92:5d:6f:
6f:56:da:b2:24:e6:d9:ec:89:03:bc:0e:47:da:ca:
6e:51:79:2a:80:98:b2:a5:e2:c4:6f:69:41:da:5e:
3a:bb:ca:2f:53:79:a0:ca:a6:57:42:38:f8:c6:dd:
30:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:E3:8D:63:3E:EA:C8:B1:08:01:8E:2A:CF:CB:0A:89:87:DF:BC:39
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/6f1f130d-8238-4674-bccd-f361de3135a7.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
2e:76:7d:58:e2:24:f0:2b:24:bd:cb:ab:ce:ca:a5:5a:ae:30:
e8:e0:9c:03:38:44:00:ac:44:85:d9:df:5f:8d:40:df:62:5c:
27:0a:cf:52:c8:a8:2a:66:8f:35:b6:5a:ff:de:1d:62:14:d9:
10:44:27:99:2a:97:5c:2c:3a:d4:b9:ee:c5:02:98:30:80:bf:
8e:87:1a:7f:9d:2b:1e:2f:bb:72:7f:0b:15:ba:02:db:97:a2:
33:fc:7a:d8:35:15:fb:3d:f9:b8:de:7d:f0:cc:e8:eb:b8:38:
3c:78:a5:06:d0:f1:3d:01:53:27:21:48:8f:6a:5b:01:ee:73:
5b:20:44:a0:16:9c:ec:f1:f3:be:8a:df:2b:65:8b:75:b6:89:
8b:3b:b8:bd:0e:b4:55:85:64:56:10:66:45:18:d3:c0:59:a3:
30:d5:2c:b7:86:2b:94:59:dc:3c:f6:65:4b:62:9c:07:29:1d:
45:c9:23:19:de:57:e7:b9:a3:de:04:d3:9b:c1:b8:90:c4:50:
2e:f7:a6:99:54:46:82:d8:fe:0e:f5:00:9a:51:e3:e4:2c:ff:
f0:9e:08:be:af:f3:21:ad:5b:d1:61:7e:63:94:80:01:e1:13:
ec:77:b3:cf:ad:22:31:46:91:01:9b:b8:1f:a0:f1:d3:70:28:
54:bf:4a:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:47:51 2024 by rpki-client on console-ams.rpki-client.org