Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/a3dfe2be-897a-4628-a3e3-1c8db9c6b9d9.roa
File: a3dfe2be-897a-4628-a3e3-1c8db9c6b9d9.roa (raw, json)
Hash identifier: Kud/+58Ln8CbTiw1/OV4VWbe9xW/ol8s3AwNs9o6Rzk=
Subject key identifier: 8B:01:E0:14:B6:6E:AD:26:A2:32:CA:C6:AD:92:7B:97:CE:C7:66:F1
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 640D1C20A78DC1F58795268B6413B1F45E41D6CC
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/a3dfe2be-897a-4628-a3e3-1c8db9c6b9d9.roa
Signing time: Mon 01 Jan 2024 00:00:00 +0000
ROA not before: Mon 01 Jan 2024 00:00:00 +0000
ROA not after: Mon 05 Feb 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
64:0d:1c:20:a7:8d:c1:f5:87:95:26:8b:64:13:b1:f4:5e:41:d6:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Jan 1 00:00:00 2024 GMT
Not After : Feb 5 23:59:59 2024 GMT
Subject: serialNumber=e758eb1a955956db2b5cde9c769535f9cb38d51ff738b62da6fcc1d9b3df6909, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:20:53:9b:19:c9:bf:4a:bc:69:fc:d9:17:c2:
a4:28:30:a4:3a:d8:82:66:8d:78:ca:bb:c6:75:2d:
f0:ed:be:4e:e4:3d:8b:37:e8:32:91:93:35:94:48:
e0:46:31:2b:9e:47:05:14:c1:27:35:ac:a5:74:1d:
52:75:4c:5e:0f:de:a2:42:6d:36:7d:e7:c9:a0:a6:
f6:35:73:99:ce:91:48:49:91:39:a6:7b:ea:67:bc:
0a:72:4e:83:c2:4b:8b:a8:db:15:b3:1c:51:9c:e2:
3c:ea:80:6a:ab:88:b9:4d:29:44:26:91:f0:ae:c1:
39:20:70:80:ce:f6:27:46:48:54:5f:69:46:f6:75:
43:91:79:8f:8c:4a:e9:be:58:65:79:e9:14:5b:ef:
e9:7c:9a:1a:08:2b:f9:21:9f:5d:a9:3d:5d:45:90:
5e:0f:2b:f7:f0:dd:34:89:aa:7f:9a:65:d3:05:df:
27:e5:45:d8:d3:67:f1:cb:f6:20:7a:7f:8b:10:aa:
8b:f4:0d:eb:05:25:85:5d:be:c6:4a:b4:53:1d:26:
b5:6a:75:dd:a1:7a:eb:ca:1f:c9:d6:ab:27:71:f1:
93:c4:19:1d:ec:b6:63:f0:a3:7f:b3:c1:05:91:94:
f8:22:07:b1:ad:38:82:3a:78:ef:5e:77:42:6e:c9:
e8:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:01:E0:14:B6:6E:AD:26:A2:32:CA:C6:AD:92:7B:97:CE:C7:66:F1
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/a3dfe2be-897a-4628-a3e3-1c8db9c6b9d9.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
4f:95:4e:99:1b:59:cf:f2:3b:73:bd:e1:f0:52:35:95:9c:06:
ec:3a:a0:f6:e4:ac:b5:38:48:bd:f8:b6:8e:66:8b:f9:7d:d4:
54:ab:91:05:81:83:a8:45:eb:52:1d:60:16:d8:eb:55:bc:f3:
7c:22:34:ad:86:66:c9:50:12:d5:9f:67:e3:e4:24:67:9c:5d:
4f:c0:df:03:74:55:5b:6d:51:c5:5a:72:9b:92:c7:7b:77:f9:
09:7f:e8:93:4c:26:f9:7d:e7:58:12:17:1a:7c:7d:99:dd:0f:
19:27:4e:6e:75:c3:fa:66:b8:b9:15:f3:90:3e:2b:d2:99:9a:
6f:71:6c:45:19:2a:3f:6e:8d:cf:bc:34:36:f8:6d:98:cd:89:
e0:35:ff:73:99:50:31:d5:c7:c9:13:45:08:70:3b:56:2d:da:
9a:a6:9f:21:1a:0e:ad:e8:ed:6b:34:d9:a8:0a:00:24:57:08:
78:df:7a:65:85:32:7f:42:2e:80:77:bb:f5:ee:56:1a:9e:a3:
31:d2:1f:3b:da:9a:61:85:90:41:3f:f9:d6:f6:27:34:82:b4:
9d:af:8e:04:95:b0:e0:13:d0:b0:01:21:70:f7:9d:9d:b0:5d:
2c:2d:c3:58:71:de:33:79:3e:ad:3b:f5:25:0d:23:37:ac:f7:
57:c3:73:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:04 2024 by rpki-client on console-ams.rpki-client.org