Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/7c51ad95-a6ac-4d8f-a2c3-48fedd139523.roa
File: 7c51ad95-a6ac-4d8f-a2c3-48fedd139523.roa (raw, json)
Hash identifier: 9m87sWGqCytOu98s74d54stJewvP/EOizwczSr6jZTQ=
Subject key identifier: 89:53:97:1E:FB:2A:E4:89:2B:EB:E7:1E:16:29:71:39:E6:7F:14:8C
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 7393D1A3770A0F9E20663084D6D21C7FE8B30F2D
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/7c51ad95-a6ac-4d8f-a2c3-48fedd139523.roa
Signing time: Wed 19 Jul 2023 00:00:00 +0000
ROA not before: Wed 19 Jul 2023 00:00:00 +0000
ROA not after: Wed 23 Aug 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
73:93:d1:a3:77:0a:0f:9e:20:66:30:84:d6:d2:1c:7f:e8:b3:0f:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Jul 19 00:00:00 2023 GMT
Not After : Aug 23 23:59:59 2023 GMT
Subject: serialNumber=1627da0be90af6170937d4d8d37f6719c6c681e4876bf07d453570cfa1169754, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:6b:0d:77:13:39:9f:0c:3d:97:6e:15:e3:ad:
1e:d8:e4:26:cc:00:ba:28:e4:95:32:0f:98:60:c4:
f2:04:98:66:6c:ae:cd:2b:a5:f1:b9:b5:a7:71:c0:
0f:6b:1f:e5:69:ce:6c:1e:dc:77:22:cc:3d:e0:93:
7a:59:30:ee:f7:78:55:4c:fe:2d:c8:56:1f:ff:11:
bc:90:a0:dc:de:80:69:4b:89:37:69:ad:9d:22:35:
8c:0f:e1:63:ff:48:2b:e0:c6:a6:c8:cc:67:b5:79:
cc:bb:be:2f:1f:e1:f5:4f:48:af:51:36:1c:10:b4:
b5:83:65:79:23:35:7e:1d:5f:52:25:91:ec:43:c5:
8f:f9:52:5b:6e:14:fe:70:23:46:c2:9d:8e:ad:27:
c7:4b:5d:28:a0:33:92:a8:a9:ed:ff:4d:0e:d3:9f:
c1:f6:2e:8c:1e:9b:6b:c5:af:f6:ec:70:d4:11:ec:
fe:5b:ac:12:c6:66:90:9d:af:55:19:aa:a9:32:5f:
e6:93:57:6a:14:11:7f:91:6e:9a:04:19:ff:67:8a:
a9:08:3b:3c:90:ab:e6:a5:91:c4:69:5f:8c:bd:6d:
b9:4a:9a:e7:cc:99:65:59:45:36:e2:49:ca:fc:05:
a4:3f:28:f0:4d:0a:a5:7e:8b:f5:a0:c4:6f:7f:d1:
7d:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:53:97:1E:FB:2A:E4:89:2B:EB:E7:1E:16:29:71:39:E6:7F:14:8C
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/7c51ad95-a6ac-4d8f-a2c3-48fedd139523.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
47:ef:0b:6e:ca:da:7b:a7:6b:86:b3:a8:c3:35:f7:44:a5:00:
9c:12:c3:ac:4c:9d:19:6f:34:0e:5b:f3:0e:c9:09:d0:89:80:
83:38:27:ed:1f:c4:b2:51:ae:cb:79:fc:88:66:db:8b:65:97:
6f:c6:de:5d:03:ed:3b:31:06:f1:55:c9:fc:fc:5e:6d:9e:83:
20:26:d3:bd:3f:9e:2a:d2:69:f7:cd:b2:5f:74:25:16:c1:31:
76:bc:20:3d:e8:36:3d:20:00:52:13:00:40:d5:d5:d0:eb:c7:
9a:2d:b5:54:e9:9c:c9:78:5c:09:18:8a:c9:67:aa:04:08:6b:
10:ea:91:8d:3d:75:c6:9e:29:57:97:e8:4d:a1:c7:63:c8:e5:
e4:6e:6a:cc:0e:41:c1:55:da:5e:57:1a:eb:82:7e:30:e5:15:
c3:0f:a7:d0:10:f7:27:8a:69:5c:5d:f5:5f:8a:7d:fc:ea:0f:
f9:e4:c1:39:63:fa:14:2e:3b:68:29:9e:0f:a6:77:98:a7:6a:
5b:f4:cd:89:7d:48:3e:a2:c8:91:27:53:07:bd:2e:0a:3a:f6:
ae:fc:7e:8e:05:30:2a:18:7f:df:8a:12:48:c5:00:83:4f:a1:
b4:47:65:fa:92:ae:7c:90:92:16:1c:81:12:b1:56:90:77:0a:
3e:39:e4:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:47:55 2024 by rpki-client on console-ams.rpki-client.org