Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/89e06a3a-a65a-4da0-a472-4266316ce422.roa
File: 89e06a3a-a65a-4da0-a472-4266316ce422.roa (raw, json)
Hash identifier: MX+cHtw05JU7be0ohCwuvMUmP29/LyxyClFJUN8VS/4=
Subject key identifier: BB:AB:CB:E2:28:47:A9:05:72:51:26:F4:01:99:43:B8:47:25:7C:6D
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 3F4E223C494E1630AE5DB2D740B5EF19A208E605
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/89e06a3a-a65a-4da0-a472-4266316ce422.roa
Signing time: Thu 31 Aug 2023 00:00:00 +0000
ROA not before: Thu 31 Aug 2023 00:00:00 +0000
ROA not after: Thu 05 Oct 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3f:4e:22:3c:49:4e:16:30:ae:5d:b2:d7:40:b5:ef:19:a2:08:e6:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Aug 31 00:00:00 2023 GMT
Not After : Oct 5 23:59:59 2023 GMT
Subject: serialNumber=2a4509cf80547ba27c5782e79316928c28ef62b43dc27946c58992e94595bc91, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:d3:14:22:22:04:6a:f5:1d:cb:91:12:83:8b:
05:81:16:d8:e1:e1:af:90:19:a6:c9:41:25:1d:db:
85:5a:e6:39:87:66:1e:25:90:80:cb:3a:ae:82:c6:
f7:fa:55:62:af:79:a4:4f:6f:3b:2b:14:52:cb:06:
be:ff:e0:e6:08:bc:6d:ef:7a:ab:78:dd:1d:50:70:
99:6f:72:21:f2:7b:a7:4c:0d:b7:09:86:c0:e1:d2:
a0:12:cf:69:c3:58:dc:99:a5:ad:a5:df:ed:f0:a2:
25:04:c7:f8:5f:70:25:c5:43:85:f4:fd:42:a8:f9:
8a:e2:96:49:bd:ca:0c:ea:8d:1c:e7:85:7d:91:5f:
b2:9a:f6:c5:d8:63:61:74:80:d4:0f:0f:3d:6a:21:
ca:e5:76:3a:ec:ee:df:d6:b5:81:0b:3b:ef:27:ae:
01:ff:97:2d:32:a7:2f:62:25:3f:a0:f0:0c:67:01:
06:bf:ab:55:2a:ba:70:f8:f8:f9:86:93:92:a5:65:
b7:b0:61:91:d6:5e:a0:02:c1:b7:7d:1a:ef:51:84:
69:f5:fc:d4:da:ec:1e:ca:26:01:ca:46:f7:64:3b:
2c:55:de:a6:f4:b3:7b:b0:fb:70:da:9a:4d:18:99:
81:2f:37:f8:28:57:b7:39:ea:1d:f7:77:dc:af:88:
fc:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:AB:CB:E2:28:47:A9:05:72:51:26:F4:01:99:43:B8:47:25:7C:6D
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/89e06a3a-a65a-4da0-a472-4266316ce422.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
41:32:05:35:bd:7c:7f:6a:41:96:2d:c3:cc:c3:02:87:a8:0c:
7c:83:5f:77:ec:c8:c2:0b:9d:dd:bb:c8:b6:b5:06:d2:08:e9:
4f:b0:a0:e5:36:ef:0f:24:fa:42:4a:92:d8:fd:89:e1:5e:64:
e4:26:80:42:8f:55:c1:2c:18:0e:95:58:fb:54:2b:59:bf:1d:
95:f6:e3:eb:43:2a:71:69:ca:2d:b8:a4:e7:1b:77:c9:57:00:
fb:e1:44:dc:e5:c9:11:55:c8:1c:4f:53:e3:ec:88:c2:b0:35:
eb:45:18:60:df:80:1c:ba:2a:33:c6:f6:ac:f7:1a:b2:9c:d3:
dd:e9:82:b4:a9:51:20:ed:b5:b2:ff:f2:e8:f1:19:25:1b:7b:
2c:12:ab:ce:37:66:44:96:e8:02:18:d0:f2:9d:2f:a9:08:f9:
e7:7f:bd:9b:9d:75:ce:7b:0b:86:d6:20:aa:d1:0a:54:70:3e:
1f:27:fe:f5:f2:77:da:e3:7d:b2:f7:f2:8e:4e:6f:43:a1:0d:
fb:82:4c:5f:38:c2:00:f5:3b:8b:70:49:da:fd:0c:8d:9a:34:
8b:3c:88:ce:12:ad:ca:15:4b:6c:6c:88:66:bd:80:7c:dd:11:
b8:b0:3a:a6:50:e2:75:18:60:f2:b5:63:c3:6b:73:db:27:e0:
4f:96:93:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:47:59 2024 by rpki-client on console-ams.rpki-client.org