Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/80920a8d-36cd-4545-b066-aadc34e04495.roa
File: 80920a8d-36cd-4545-b066-aadc34e04495.roa (raw, json)
Hash identifier: Xs6sb2J4EgP25vDvw/G0ctYtJz+T6pfNhB0hI2ci2pk=
Subject key identifier: 8D:78:45:A1:94:E2:C0:91:19:C5:FF:5E:34:9D:92:0A:38:F6:7D:2C
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 536271B70C9FEBE8332278CE398F367659F951CE
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/80920a8d-36cd-4545-b066-aadc34e04495.roa
Signing time: Fri 08 Dec 2023 00:00:00 +0000
ROA not before: Fri 08 Dec 2023 00:00:00 +0000
ROA not after: Fri 12 Jan 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
53:62:71:b7:0c:9f:eb:e8:33:22:78:ce:39:8f:36:76:59:f9:51:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Dec 8 00:00:00 2023 GMT
Not After : Jan 12 23:59:59 2024 GMT
Subject: serialNumber=9b94805befbf75caa97f3355871d30cb9b1237a8ff355b0431193a98313e7a9f, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:bf:5f:b3:e4:41:e6:9a:0a:33:46:96:e5:bf:
b5:d4:6b:b4:4f:9d:b4:5f:5e:7f:e7:1a:6f:10:ac:
40:04:71:a0:42:7c:8b:b8:aa:12:55:28:29:21:0f:
5e:dc:5a:8a:89:bf:0a:c0:31:eb:f0:e4:60:fe:b9:
b0:f2:fd:9e:91:6b:1e:9f:87:ab:0d:c3:92:83:b1:
4c:36:69:0b:a7:16:8f:b6:e6:ae:56:8b:6d:39:a2:
65:f6:6c:82:42:fb:b1:bd:67:7a:90:76:48:92:d5:
ca:cd:d0:1b:54:d2:1a:0f:ee:ec:4c:bc:9d:3b:4b:
5c:3e:ec:1c:cf:73:79:90:4d:80:a9:ad:9d:3f:1b:
92:f5:9a:69:21:c1:df:ec:b1:1e:ef:89:36:16:f6:
db:a6:cd:8f:03:01:d6:64:21:81:f3:a8:9d:83:a8:
55:6d:e5:eb:10:01:95:1c:83:0a:50:fd:f4:09:1d:
12:4a:c4:2c:48:34:0b:b1:37:a2:3b:77:f0:d2:e2:
98:21:8f:41:75:d5:ef:30:6d:17:72:e2:23:2d:e1:
f3:6b:f4:83:8f:4c:21:95:d2:c2:fc:c0:76:c3:ae:
c0:76:52:a8:5b:6e:ed:31:59:40:4f:57:03:78:f9:
dd:35:65:35:43:5a:55:a1:e8:81:ff:29:25:db:73:
9d:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:78:45:A1:94:E2:C0:91:19:C5:FF:5E:34:9D:92:0A:38:F6:7D:2C
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/80920a8d-36cd-4545-b066-aadc34e04495.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
88:97:7e:6d:76:8c:dd:c8:7d:3c:a8:2d:24:84:fe:d5:75:07:
d5:c2:f0:06:64:26:99:95:68:fc:df:1e:f6:1d:5a:8d:67:5b:
15:8b:01:0d:de:e4:1e:60:48:a6:37:36:9f:ed:b8:e1:9e:68:
02:ad:c1:c0:4d:fd:87:a7:9e:ff:af:db:c3:59:01:10:f5:87:
05:c8:b9:35:0e:fe:3f:56:01:39:30:c6:3d:5f:d5:3f:3e:40:
da:e3:df:b9:07:ed:1e:40:62:21:1e:27:70:6f:8c:66:5c:b6:
23:45:8a:fd:a3:24:d0:ac:92:dc:36:3f:d9:c2:34:65:ca:18:
84:ff:39:c2:9e:bd:bc:a8:f1:92:19:fa:66:c9:f4:5a:4d:95:
1a:a1:a2:d8:bf:c5:d8:b3:18:1f:72:0a:37:76:fb:86:be:57:
2f:b2:d1:f8:7d:e0:cb:74:cd:94:df:cd:78:d4:b5:55:54:2e:
8a:71:ec:75:1c:5d:c8:8f:01:01:aa:2a:83:97:b6:cc:39:61:
c6:7e:9f:4d:5d:25:a2:1a:fb:c5:cf:45:70:c0:bf:2c:94:58:
71:e2:5c:d6:24:02:6e:3d:28:fb:b3:eb:ac:36:96:91:d7:ae:
5d:4a:a3:60:b7:3a:0e:d8:b4:6f:e8:e8:7c:1d:91:2a:2b:c0:
fc:fc:d1:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:41:33 2024 by rpki-client on console-fra.rpki-client.org