Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/a0aaf7e1-1d64-4646-8cac-d73201744810.roa
File: a0aaf7e1-1d64-4646-8cac-d73201744810.roa (raw, json)
Hash identifier: 2H4REq3Pv7rkZby0Pu5lX3pyxql8I2nqPcTyTwKu3D8=
Subject key identifier: 2E:55:B3:B0:E1:94:5E:70:0E:BC:81:6D:CF:09:49:1A:FD:54:57:08
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 41F99D67C8A61D50BD020873E21947AF11CC736E
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/a0aaf7e1-1d64-4646-8cac-d73201744810.roa
Signing time: Tue 28 Nov 2023 00:00:00 +0000
ROA not before: Tue 28 Nov 2023 00:00:00 +0000
ROA not after: Tue 02 Jan 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
41:f9:9d:67:c8:a6:1d:50:bd:02:08:73:e2:19:47:af:11:cc:73:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Nov 28 00:00:00 2023 GMT
Not After : Jan 2 23:59:59 2024 GMT
Subject: serialNumber=32ce27c5e9f0888bd815ccd287a0f07733b3e6e944ec88cf9a1d4f4cbab89aaa, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:bb:b6:ce:5f:21:8e:16:cc:57:f8:a9:4d:4e:
1c:6e:35:83:fc:3e:85:88:8f:88:72:6e:e3:0c:27:
b5:e5:be:83:cb:b0:82:59:6e:2d:cc:39:d6:04:bd:
d8:b8:23:e6:3b:05:a1:a1:bd:da:7f:44:ca:27:a3:
2e:5d:b2:12:52:6d:e5:85:4b:f8:1a:4a:10:2c:b7:
39:d4:9c:f9:0e:3f:22:f8:0c:70:bd:a3:7e:45:b4:
3c:62:90:19:c7:1d:46:e5:28:62:7a:4d:db:50:78:
e1:b2:b1:03:34:05:99:50:c7:6c:55:6d:7d:bf:0c:
37:5e:51:ed:a7:a0:96:42:a1:6a:f7:21:03:c1:07:
59:e3:ba:17:b8:7f:fc:0f:8b:2c:38:1c:6d:33:8c:
11:19:f7:2f:7d:a6:3c:aa:c7:35:d9:65:d5:d3:10:
cb:f5:e4:dc:5e:b0:e4:3e:11:ba:a3:a0:b9:7d:bb:
f3:56:4f:60:8d:a8:2a:13:41:00:1a:82:16:b0:18:
9b:db:69:dd:f0:7c:53:5c:4f:af:2c:e2:37:0e:9c:
fe:39:9c:86:44:3a:c8:24:8e:98:8d:17:f7:25:b4:
22:2b:f6:fb:3d:2c:ff:65:92:b1:ca:04:bd:41:6f:
af:ac:fc:98:02:9f:2b:90:d2:6f:81:89:11:d7:79:
ff:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:55:B3:B0:E1:94:5E:70:0E:BC:81:6D:CF:09:49:1A:FD:54:57:08
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/a0aaf7e1-1d64-4646-8cac-d73201744810.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
41:0c:d2:d3:0e:e4:30:ad:e2:c3:fb:0a:20:0f:6a:58:56:d3:
f0:a8:0b:0c:8c:c6:9d:de:89:7a:8c:5a:87:d5:ef:8f:8c:ce:
96:64:ae:d1:85:9e:70:af:ec:bc:04:60:27:6a:33:14:93:c6:
15:39:30:02:4a:bb:5e:21:3b:66:cd:04:b1:42:65:55:a3:70:
26:46:0b:bd:a8:08:b4:1d:b4:cb:9b:8a:46:81:8e:2c:20:ed:
aa:8c:2b:cb:91:27:cb:d6:c8:d2:91:0b:70:30:67:1b:98:0c:
ca:ba:eb:42:fd:c0:85:a4:30:a7:b1:11:48:2f:ca:b2:41:1a:
14:ee:d9:5f:67:46:e3:0d:26:e5:4d:c0:d8:e7:f2:71:8f:09:
4b:ba:8e:7b:f7:e5:5c:d1:9c:46:80:c8:ee:8f:f0:e9:55:4e:
a5:0a:0c:19:9e:0a:62:e4:80:2e:1e:19:84:c7:5d:42:6e:14:
c5:7a:9d:01:0d:99:82:91:37:78:45:ba:ad:4f:4f:cb:fc:26:
9a:3c:99:a0:21:99:8f:d3:e9:07:07:2d:aa:78:7d:b3:4b:c1:
c3:4a:13:ea:31:10:e6:1f:26:6c:de:8d:22:82:94:a5:f2:66:
b4:55:b5:12:44:b1:93:4d:94:92:0a:fa:71:c8:f1:7f:7c:d5:
d3:c2:d1:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:03 2024 by rpki-client on console-ams.rpki-client.org