Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/7d81f2ed-b9e6-412c-83b2-0ee821f09dfc.roa
File: 7d81f2ed-b9e6-412c-83b2-0ee821f09dfc.roa (raw, json)
Hash identifier: XrRLyN/GXiGehE3uvw59xMwCY3ImOthL6c11KmxBphM=
Subject key identifier: D6:E4:39:9A:F8:93:E1:4A:40:F9:1D:63:0C:54:E0:D2:7E:CF:A6:EB
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 284F8CB801E56F2D6536B54980C99042112792B5
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/7d81f2ed-b9e6-412c-83b2-0ee821f09dfc.roa
Signing time: Tue 15 Aug 2023 00:00:00 +0000
ROA not before: Tue 15 Aug 2023 00:00:00 +0000
ROA not after: Tue 19 Sep 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
28:4f:8c:b8:01:e5:6f:2d:65:36:b5:49:80:c9:90:42:11:27:92:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Aug 15 00:00:00 2023 GMT
Not After : Sep 19 23:59:59 2023 GMT
Subject: serialNumber=f6a671812ff93dca0fa9227bd5469dc70c0c9770065e2972bc708648197f322e, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:5a:ad:e4:93:3b:91:38:e1:0a:b9:3d:27:9f:
15:1b:4c:4e:50:8e:4e:d1:33:a8:d4:0e:ea:71:4f:
1a:90:bc:64:0b:88:51:07:a9:a0:33:12:f0:a5:b6:
39:e8:78:98:07:12:7e:37:27:73:18:80:17:86:17:
21:59:d6:d4:18:9e:9d:67:30:44:25:02:dc:8d:99:
78:9f:60:26:97:e7:0f:25:70:2a:81:a0:7d:49:01:
7e:b8:e3:c6:6b:08:d7:56:99:9f:ab:71:f1:93:72:
eb:d8:6e:84:38:f3:6d:68:aa:29:25:ca:f1:a5:e7:
45:e2:10:1d:75:09:f7:22:9a:66:bc:e0:a7:e0:2b:
8c:b3:0c:9e:9f:fe:aa:64:d5:90:af:13:0f:a2:0c:
82:43:00:9a:f2:56:99:be:f7:c4:53:16:e9:af:13:
0f:6d:94:a2:72:13:1b:c7:46:fa:6b:d7:6d:b8:f8:
9a:4a:0c:75:be:a4:7e:b0:ce:c7:50:dd:58:b4:48:
e2:b8:84:70:d0:14:dd:7f:53:70:45:7e:84:39:6f:
7b:8d:e8:0c:ee:a9:2d:31:fb:d0:42:5d:69:5f:f7:
55:69:b4:b2:c5:fb:66:f7:82:e1:92:0e:c4:88:74:
dc:a7:70:06:0b:89:91:82:f7:b5:d4:fc:98:76:15:
c6:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:E4:39:9A:F8:93:E1:4A:40:F9:1D:63:0C:54:E0:D2:7E:CF:A6:EB
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/7d81f2ed-b9e6-412c-83b2-0ee821f09dfc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
17:c6:7a:94:10:b9:28:44:f7:47:81:a6:8a:7e:f2:63:7e:77:
e4:2c:54:89:a1:23:57:93:ba:b8:57:f0:a6:e7:7d:f8:cd:c5:
ea:c5:71:f2:fe:db:bd:39:56:2c:fc:28:69:24:3b:e6:a0:80:
db:28:1d:1c:d7:b8:8b:ca:ec:6f:9c:a0:45:5a:b2:b1:30:68:
f3:2a:14:0b:ba:b4:e8:87:15:9d:20:9b:b5:d9:e0:24:9a:67:
98:62:1a:0e:68:e2:94:42:9c:32:69:db:81:76:67:8e:95:8a:
ea:ae:26:3b:86:cd:51:66:7a:0f:8f:98:73:c5:70:96:e6:99:
e0:72:03:3a:22:d0:da:9b:30:05:8c:fe:5d:93:7a:26:7e:06:
e6:1b:bd:9b:c6:2f:1c:60:75:2e:73:ca:08:d7:9a:dd:24:e4:
cb:7c:28:a6:a6:6e:54:3c:05:f5:1d:83:3c:e7:1c:24:6c:b7:
f0:69:26:d7:ce:af:2c:ff:2b:fc:a1:1a:98:ec:ba:8d:b6:f6:
9e:4e:20:61:e2:00:3a:f6:96:a9:16:1e:97:ef:0e:67:1a:fa:
f6:f4:44:4a:56:1d:d2:d4:c7:be:ac:1a:48:c7:85:1f:46:db:
e4:70:37:ce:cd:86:22:4c:29:98:d9:cd:44:c8:14:94:66:d2:
e4:8f:ca:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:41:33 2024 by rpki-client on console-fra.rpki-client.org