Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/8f293adb-01ce-4d9c-b82d-5100c89edc6f.roa
File: 8f293adb-01ce-4d9c-b82d-5100c89edc6f.roa (raw, json)
Hash identifier: VvF3QfOIwI4ts8iE+/2mDuOhlIPG8Pgv6TmhUzW8D78=
Subject key identifier: C2:66:7D:E7:37:92:44:B9:A8:D3:B8:DD:A6:B4:51:EE:6F:60:D2:2F
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 6422D01BF14FB98E0A5DBC670D0B0DAA42D1138E
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/8f293adb-01ce-4d9c-b82d-5100c89edc6f.roa
Signing time: Sun 03 Mar 2024 00:00:00 +0000
ROA not before: Sun 03 Mar 2024 00:00:00 +0000
ROA not after: Sun 07 Apr 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
64:22:d0:1b:f1:4f:b9:8e:0a:5d:bc:67:0d:0b:0d:aa:42:d1:13:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Mar 3 00:00:00 2024 GMT
Not After : Apr 7 23:59:59 2024 GMT
Subject: serialNumber=c2446a5f191a608ce3fe62c63c7147c784f64783e7f9f2d9ece14a0b440964f0, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:06:86:bd:c3:d4:c6:73:e0:b3:77:d9:21:73:
fd:f8:bc:da:3a:dc:1c:02:c4:b1:0a:8a:a7:67:86:
0f:ee:1e:1c:09:d3:07:9c:5a:96:d5:af:79:b8:21:
23:30:04:b8:74:23:a5:45:84:6f:18:8d:8d:ed:ef:
53:c3:50:d1:25:c7:01:b7:db:a0:ff:86:29:eb:cc:
ea:b3:05:87:ab:cc:d3:f5:e5:c3:b1:71:ae:d5:18:
71:0d:70:a0:31:c5:e6:c3:77:d2:ee:06:81:e2:a3:
cb:cd:77:cf:e0:b1:00:58:7a:7d:ca:21:de:03:e9:
92:84:9f:ab:14:44:1c:61:1f:1c:c5:fe:73:8c:df:
76:76:33:76:d1:bc:70:16:9b:2a:f3:bf:ad:28:f9:
6f:31:eb:b2:65:9b:6f:96:14:f9:74:f7:a0:d9:4f:
60:f7:5b:47:ad:a4:97:49:f9:f4:bc:80:49:ee:19:
57:0e:53:15:3e:b3:3c:a5:a3:1f:94:90:34:e3:0c:
d3:f7:53:9c:4a:af:f6:12:9e:ae:9b:c3:f5:20:95:
54:48:92:ef:cb:23:58:df:be:ef:dc:59:ea:5b:be:
ef:b0:2c:d7:db:a7:eb:29:c3:3c:fa:b2:4d:47:54:
17:21:6b:0d:cc:99:dc:71:c4:37:fe:a9:06:bb:01:
6b:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:66:7D:E7:37:92:44:B9:A8:D3:B8:DD:A6:B4:51:EE:6F:60:D2:2F
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/8f293adb-01ce-4d9c-b82d-5100c89edc6f.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
7b:b8:40:45:15:b2:df:7e:22:7b:94:48:30:46:56:34:71:46:
43:75:6a:9d:8b:0e:44:26:33:9d:43:b2:41:ce:3c:f0:7e:d6:
a2:f4:b2:ee:9d:fe:cc:66:f8:eb:a7:74:68:83:53:b5:59:ad:
50:3f:b4:63:08:62:7d:5a:14:e5:1e:96:7f:37:5a:8f:b9:ae:
b6:45:32:bd:d8:82:82:44:c2:17:01:72:71:cb:6f:16:1a:53:
93:04:fc:fe:29:3d:d6:12:32:73:1a:cc:69:72:cf:3d:56:5d:
55:55:2e:cc:78:b0:f4:4d:e4:07:51:34:c7:d9:e6:61:d4:10:
b9:b1:6c:ad:78:45:f3:cd:ed:f8:eb:94:85:68:89:63:e2:a2:
36:7c:b3:28:54:34:5d:f3:9c:93:bf:5b:9e:5c:73:c8:4b:8f:
b5:94:5f:dc:4a:33:a9:2f:40:2d:12:5f:a0:62:30:77:1a:0f:
30:ad:4a:01:35:1b:00:29:ff:a7:17:7c:d8:d0:52:0c:18:c2:
59:a8:62:cf:fb:6a:b4:bc:52:72:80:52:44:6e:a2:f1:71:92:
cf:d3:77:1b:fa:2d:0b:6a:13:56:38:fe:9f:5c:04:84:56:6a:
b7:8b:e4:d9:b4:ed:26:0a:ed:6f:a3:d7:0d:f6:40:0b:b6:43:
72:6d:c0:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:41:35 2024 by rpki-client on console-fra.rpki-client.org