Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/848c9910-681a-4822-89b6-5b974d1f172b.roa
File: 848c9910-681a-4822-89b6-5b974d1f172b.roa (raw, json)
Hash identifier: nEIlYlT2mqxz186Nrl+Z/WvvsaURhiBM5vGWLh98Ujk=
Subject key identifier: 7F:11:19:19:96:3D:1A:17:24:D8:DF:68:14:C1:02:0A:FA:6E:55:25
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 69FF1A0BF85BCA8EE1508D136DD4224580549870
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/848c9910-681a-4822-89b6-5b974d1f172b.roa
Signing time: Sat 30 Sep 2023 00:00:00 +0000
ROA not before: Sat 30 Sep 2023 00:00:00 +0000
ROA not after: Sat 04 Nov 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
69:ff:1a:0b:f8:5b:ca:8e:e1:50:8d:13:6d:d4:22:45:80:54:98:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Sep 30 00:00:00 2023 GMT
Not After : Nov 4 23:59:59 2023 GMT
Subject: serialNumber=007fa174e4d1fa211dbb1803d6d02e4df4f5d29cf07e84a2c9e42cda11082ee5, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:27:cb:b8:40:12:21:73:b5:29:87:4c:c7:d4:
18:e5:af:c6:15:b4:61:f3:09:4f:ff:df:b1:7b:00:
38:c6:fe:20:fa:85:63:ea:94:7b:73:d9:83:42:8a:
c3:a8:11:b8:02:4e:bf:dd:14:be:0d:39:3f:c6:61:
35:59:29:b4:82:61:51:3d:18:32:c3:8e:bb:3a:b2:
9f:72:35:d7:b5:b5:02:32:e3:bb:2e:01:22:ac:09:
3e:41:e6:cd:b1:4e:d1:55:cb:f1:3d:33:31:e1:28:
74:b0:c4:8c:40:76:46:07:1d:ae:a1:cb:96:c0:9d:
53:61:37:a7:b1:33:26:6b:95:92:37:d1:bf:22:1d:
cf:5f:f9:52:ca:ad:3f:29:21:d1:9d:26:32:35:2d:
11:5c:89:06:18:eb:a0:d7:5f:eb:38:29:a4:57:19:
1e:bd:3a:94:5e:7b:bf:83:a2:81:54:94:1e:d5:c2:
6b:d6:85:e6:17:8f:e5:24:de:52:18:9a:e8:da:2c:
27:f5:54:3e:dd:88:7f:94:03:c4:c9:05:48:79:f5:
1f:ae:cb:35:91:d3:a8:84:e9:2d:53:d7:2c:2b:90:
f0:1c:bf:a7:82:77:cc:3a:17:32:df:33:42:cf:af:
00:9d:88:2a:21:fd:88:55:90:97:a6:1b:96:51:20:
71:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:11:19:19:96:3D:1A:17:24:D8:DF:68:14:C1:02:0A:FA:6E:55:25
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/848c9910-681a-4822-89b6-5b974d1f172b.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
38:53:d2:8e:36:2b:ca:c6:c8:df:1e:9e:1c:5c:30:3f:22:eb:
0c:c5:e1:74:7b:e9:7c:7f:aa:47:30:4c:7e:02:a5:c7:71:16:
55:f4:03:9c:d4:49:69:47:1c:b1:de:2f:a1:e9:86:03:0a:3e:
01:f7:95:2a:14:dc:82:29:fa:82:4e:c6:a9:ae:c7:d0:b7:4c:
7b:b0:a4:fd:31:83:4f:d7:4d:cc:17:f0:9f:d4:18:e0:70:85:
67:7b:90:c8:05:32:a6:1d:e0:1e:eb:eb:40:eb:5d:ce:28:55:
78:56:df:a0:89:ec:f3:bf:a1:cb:38:63:80:c1:40:09:f4:07:
6e:48:94:9f:6f:b1:51:74:74:df:d1:81:a3:bc:52:b4:8b:a3:
fb:5d:48:4e:69:fb:dc:a2:b6:22:88:26:f4:8f:47:61:76:5a:
8d:a2:47:c1:7f:74:73:9f:4e:9e:c5:3d:69:fc:93:1f:8b:b8:
c2:4f:51:d8:05:f2:0a:3e:41:ac:6f:2d:93:69:b4:2d:44:57:
e8:1d:f3:0e:b8:52:b9:fe:c5:e7:c7:7c:6a:a2:a0:e0:01:81:
f8:b1:42:e9:36:61:fa:4b:e5:ee:f9:ca:db:15:0e:d9:e5:21:
28:1e:d0:77:62:86:b1:58:0f:7f:4f:93:e6:d9:8e:ce:0b:e2:
db:3a:10:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:41:34 2024 by rpki-client on console-fra.rpki-client.org