Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/98706f16-f64a-4cdb-baed-98fed30a8e48.roa
File: 98706f16-f64a-4cdb-baed-98fed30a8e48.roa (raw, json)
Hash identifier: AGyklaLwYokaX4FPS7QwECEXJUqprPg3mpsmdx1sUP4=
Subject key identifier: C0:90:15:8E:F5:B7:DA:39:11:E0:04:66:27:C6:1D:51:D6:01:98:A9
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 42522A33224D44B7379D701F9B02F151D53DCB36
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/98706f16-f64a-4cdb-baed-98fed30a8e48.roa
Signing time: Mon 01 Apr 2024 00:00:00 +0000
ROA not before: Mon 01 Apr 2024 00:00:00 +0000
ROA not after: Mon 06 May 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
42:52:2a:33:22:4d:44:b7:37:9d:70:1f:9b:02:f1:51:d5:3d:cb:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Apr 1 00:00:00 2024 GMT
Not After : May 6 23:59:59 2024 GMT
Subject: serialNumber=d511d48a7da84b458ecbf68d367ff81ea205deeb9689f0d3cba4be36d4b1dbc4, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:52:02:e3:a1:b8:7a:50:18:82:d1:43:64:88:
85:fd:39:80:1b:8d:4e:b7:08:37:87:eb:52:49:0c:
75:7a:96:09:ff:1e:be:d7:48:1d:14:96:11:ac:7f:
42:9d:41:8f:87:24:8b:0c:90:01:0a:fb:3a:3b:31:
1f:bd:a0:26:f0:da:8e:ed:30:74:d7:e0:9f:6c:6d:
25:03:83:f6:55:aa:4a:62:d0:b3:56:ff:b9:b1:a5:
ad:04:4d:f4:0d:3b:f3:13:27:50:fc:ee:d3:69:27:
43:5f:c3:4c:22:f5:36:18:31:62:f4:40:f2:dc:1a:
2c:3e:2a:99:59:9c:88:8b:46:7d:3d:33:31:59:cc:
c8:47:7b:2f:bc:39:2c:dd:d0:15:4e:5d:a6:a8:53:
fb:8e:7c:8d:a0:24:db:02:9a:93:e6:cd:e2:d7:b9:
9f:e6:a8:da:f3:54:06:63:76:34:be:b8:55:27:bf:
99:c8:1b:a0:79:08:ba:23:b8:60:02:4e:14:4a:1f:
b7:cd:4d:bc:5f:9d:d2:06:b9:8c:29:70:65:8d:4d:
4f:52:64:83:42:6b:59:b7:31:52:3f:6f:57:c8:50:
f4:99:48:c4:95:13:25:5e:d1:a3:26:d2:f4:2a:7a:
db:d1:74:c7:cf:c4:25:40:03:86:70:84:28:36:27:
c9:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:90:15:8E:F5:B7:DA:39:11:E0:04:66:27:C6:1D:51:D6:01:98:A9
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/98706f16-f64a-4cdb-baed-98fed30a8e48.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
05:75:c9:e7:fd:62:16:02:b2:e3:d0:1e:1d:84:e1:38:c7:45:
ef:48:66:bb:49:de:5b:fd:ee:81:a5:9f:89:8c:fa:61:21:9b:
45:ca:8e:44:cb:bb:50:05:98:6e:f5:53:88:cf:ff:6e:23:96:
91:2e:76:2f:62:c0:3e:d5:69:2c:c3:be:bc:cc:13:3d:9e:2b:
98:c0:f9:7e:6d:9a:7e:15:5d:35:94:f0:8c:e7:bf:d9:92:26:
ab:d3:e3:38:19:39:3a:81:37:00:48:41:87:d8:aa:04:db:f2:
a8:5d:1f:a0:44:78:e4:47:fd:36:b9:0a:d2:7a:a9:44:b7:9d:
92:20:6c:45:62:38:ae:51:14:d6:88:5a:0f:8b:4c:44:48:3f:
ef:83:1b:83:5c:03:30:d4:4b:a7:86:7e:dd:bc:dc:aa:c4:fb:
49:71:db:1d:77:82:5e:63:40:51:a1:ae:a1:24:1a:69:87:e1:
0a:da:e6:65:f4:c0:66:16:a1:c8:90:cd:4c:a4:5d:11:76:ea:
8b:8e:2b:db:df:1a:7f:93:64:13:d5:2a:d9:e4:a9:81:cf:6f:
d1:52:7a:ab:4a:b8:39:00:cb:dc:bf:3c:88:05:b4:dc:9c:48:
17:e3:65:b4:78:ae:79:51:a9:60:94:5e:cf:43:51:a8:f3:1c:
0d:0c:0c:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:02 2024 by rpki-client on console-ams.rpki-client.org