Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/8a583d9d-cd6d-4ee3-875b-26cebf7dc546.roa
File: 8a583d9d-cd6d-4ee3-875b-26cebf7dc546.roa (raw, json)
Hash identifier: P2VPo5/tAGBfqWvfEoU6tRCxv8x+YKFaF6ZR+D4al74=
Subject key identifier: C4:70:F7:30:7D:81:81:98:4A:53:06:A5:E9:54:24:01:BC:70:40:21
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 25147B8353E0836C0AD5E4251C6223AC5C3F2BA5
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/8a583d9d-cd6d-4ee3-875b-26cebf7dc546.roa
Signing time: Mon 14 Aug 2023 00:00:00 +0000
ROA not before: Mon 14 Aug 2023 00:00:00 +0000
ROA not after: Mon 18 Sep 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
25:14:7b:83:53:e0:83:6c:0a:d5:e4:25:1c:62:23:ac:5c:3f:2b:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Aug 14 00:00:00 2023 GMT
Not After : Sep 18 23:59:59 2023 GMT
Subject: serialNumber=3b39c1a73eb79a905d00946999adf016e381225778a5af114df633f3685f43de, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:01:16:63:2f:c7:f6:13:df:e5:3d:ae:da:e8:
d9:4d:5d:07:1e:de:75:00:74:cc:8a:5e:11:fa:9b:
eb:3c:68:f9:d5:ef:ed:25:60:e1:a2:20:03:6f:c7:
8d:67:f3:ef:74:df:d5:58:ee:d7:13:5f:a9:7f:64:
46:93:04:45:2c:0c:0d:fd:b4:f5:73:af:8d:3d:e9:
4f:88:19:64:20:e2:c8:e6:62:86:f9:a1:d6:d7:53:
9d:11:f3:34:c1:f0:58:05:e4:61:9c:2e:20:45:55:
25:b7:c2:af:08:be:5d:ef:27:64:f6:85:82:8d:39:
d7:73:67:89:b2:4b:50:07:cf:14:8e:f8:1f:88:78:
7a:8e:fd:b6:68:0f:b9:a6:e4:ed:f4:4a:dc:1f:68:
b9:c5:64:48:dd:95:18:81:bb:0a:31:91:75:3c:8d:
9e:ce:bc:2c:5b:6e:46:4c:53:81:23:34:5c:69:b8:
92:dc:8b:e1:ce:9f:86:3d:6e:32:a8:d7:43:f0:72:
7c:f5:21:d9:41:9b:b0:34:28:1f:24:89:85:27:f8:
ce:7c:f7:1c:e7:05:c5:44:4c:a3:b2:73:9f:39:35:
fc:fb:74:42:85:cb:82:e5:c9:43:64:fd:62:21:d1:
52:3d:40:55:b1:c0:80:a2:d2:cf:f8:d6:e3:02:70:
f6:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:70:F7:30:7D:81:81:98:4A:53:06:A5:E9:54:24:01:BC:70:40:21
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/8a583d9d-cd6d-4ee3-875b-26cebf7dc546.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
71:7b:dd:eb:a5:b8:60:a2:22:10:7c:18:d6:0c:35:c2:b3:a5:
00:77:8a:e4:bd:bd:c2:16:63:f7:ea:6e:10:d8:62:69:09:9b:
25:a0:fe:37:05:0f:b4:d1:5a:05:e3:ed:eb:b2:63:e6:d5:e4:
a6:64:9e:b8:26:c3:84:59:fc:d7:48:1c:c7:7f:5d:83:76:24:
b7:55:75:09:ab:52:10:39:d9:dd:8a:ed:5d:ff:e5:96:c3:e2:
74:93:c4:08:b2:43:5f:95:c5:56:5f:36:01:27:b4:f0:67:94:
4e:59:96:18:4b:79:13:3c:2d:01:4f:3a:0a:35:0f:91:1b:b0:
f2:53:ed:9a:2b:6e:3e:3f:f7:35:07:38:45:ed:c3:a2:da:3b:
15:e7:15:3a:29:51:e7:ec:7c:9e:e8:99:20:b2:35:64:5c:4f:
20:43:b3:f6:bb:5f:8e:54:9f:6b:26:8e:f7:f2:d0:9b:a4:82:
b6:b1:45:bf:bd:a1:91:a1:c4:72:00:18:ed:15:28:87:2d:ca:
12:dd:c6:6b:e6:3f:68:61:90:cf:0e:8d:15:ce:46:dd:ef:28:
5d:8f:fb:32:dc:ff:63:2c:8e:00:36:ad:7d:9d:e6:db:73:97:
2e:a2:b8:4c:d0:84:ae:ae:fc:f6:69:bb:00:9e:77:23:7f:0e:
04:07:d0:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:47:59 2024 by rpki-client on console-ams.rpki-client.org