Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/95c7e85d-5cfe-464c-8066-3c33378faf85.roa
File: 95c7e85d-5cfe-464c-8066-3c33378faf85.roa (raw, json)
Hash identifier: 2ggwCXqh/Glefyo29nopR/kYurndhNmEbqO4jIVMlEI=
Subject key identifier: C1:23:BC:FA:25:E2:4F:A3:21:98:44:64:04:F6:56:11:11:7A:46:19
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 52690F285B30679D1DB2B0B05C1D84D015095A81
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/95c7e85d-5cfe-464c-8066-3c33378faf85.roa
Signing time: Mon 24 Jul 2023 00:00:00 +0000
ROA not before: Mon 24 Jul 2023 00:00:00 +0000
ROA not after: Mon 28 Aug 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
52:69:0f:28:5b:30:67:9d:1d:b2:b0:b0:5c:1d:84:d0:15:09:5a:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Jul 24 00:00:00 2023 GMT
Not After : Aug 28 23:59:59 2023 GMT
Subject: serialNumber=0849d04fb613e7e69578179202382eb1d4a7f25804c806e010a65f6ffdbe2ccf, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:5a:21:80:b2:84:b9:d2:7b:49:49:6a:99:c3:
27:0d:4a:81:ef:ce:e7:d4:00:47:67:5c:20:6f:c9:
86:35:2f:3b:bb:8f:dc:c3:86:21:c7:68:89:ee:af:
6c:b3:48:f4:7d:fa:a1:ec:29:4d:85:f7:c7:b5:22:
41:76:a3:bc:1b:25:e7:bf:a9:4b:77:94:c9:ae:ce:
f2:a9:72:74:5f:aa:52:93:0d:2e:3d:32:b6:91:92:
38:b1:e4:52:9a:33:bf:47:97:f3:bb:2d:05:b9:1a:
15:b4:0c:99:95:2e:4c:71:f9:2d:27:93:50:b8:d8:
46:a4:b6:60:ed:d8:06:20:ad:60:de:7f:97:30:0c:
d8:8e:d6:1c:96:99:3a:90:5b:ae:04:0f:92:77:e8:
40:7d:24:8d:e7:89:24:0e:07:90:69:d6:09:bc:b1:
2b:15:d2:27:03:c0:11:ba:6b:9b:e7:c3:59:dc:f7:
84:09:b3:7d:8d:8d:7b:f0:2e:54:92:1e:27:13:01:
04:09:f1:ef:24:39:a9:68:8e:0a:2b:3c:6d:42:d5:
7f:4c:d2:e7:89:79:af:fb:81:18:5f:da:b7:0c:d3:
72:aa:f2:40:8d:e7:17:14:3b:2b:89:29:58:49:cb:
da:23:4a:6e:a2:60:1c:6b:09:4d:aa:0d:ca:c9:b2:
ba:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:23:BC:FA:25:E2:4F:A3:21:98:44:64:04:F6:56:11:11:7A:46:19
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/95c7e85d-5cfe-464c-8066-3c33378faf85.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
49:b5:e2:48:2b:12:0c:2f:f4:58:58:e4:6f:9d:db:b2:a4:4c:
3d:bb:29:19:3a:c8:f4:de:1d:c3:1e:6d:b1:a8:ab:e8:8c:5c:
06:10:0e:84:d4:42:d6:73:b8:0d:28:4a:3e:6f:e9:18:e4:5a:
87:b6:31:61:9e:c4:21:b7:b6:15:87:40:90:bc:f5:42:b8:47:
68:4c:2a:ce:92:87:d0:4b:fe:9d:fe:6b:39:2a:39:ff:a1:f6:
78:3f:fe:cf:a0:db:43:04:fd:93:a9:84:9c:e0:31:15:02:81:
df:85:57:bd:9a:da:f4:8b:b5:d5:d6:e8:46:e1:c9:41:75:70:
a9:1e:95:ba:23:f9:e6:c4:c2:b7:2c:67:9c:f3:23:35:17:f1:
d3:a1:c6:29:61:c4:4d:a9:e6:00:83:de:4a:c5:80:bd:3c:bb:
56:39:e5:e2:ca:48:db:95:a9:45:ff:46:a8:59:92:43:e5:cc:
e6:bf:40:3f:5d:19:c1:e7:e2:17:e1:a4:cb:d3:a7:6f:07:95:
2c:3c:31:1e:fc:c9:03:46:33:3b:5e:db:4a:21:11:41:c7:4d:
d7:1a:e4:b4:16:bb:c7:09:9a:83:ea:f5:e5:56:25:34:c0:da:
1d:ae:65:6c:7a:c9:85:04:60:ea:92:31:83:24:22:16:80:dc:
c5:28:73:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:01 2024 by rpki-client on console-ams.rpki-client.org