Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/aa081795-67b4-46b4-85d2-71e613c25a7d.roa
File: aa081795-67b4-46b4-85d2-71e613c25a7d.roa (raw, json)
Hash identifier: /ARrYFm91Sc9UWzL2AX/vebK+SyiTqQSGgjiLK7l8+I=
Subject key identifier: 82:29:85:AF:5C:4F:C0:C3:EF:72:89:CB:C1:08:5C:4E:C4:90:2A:A1
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 3008093C47D35BD460141D1C0678328D25AE15D7
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/aa081795-67b4-46b4-85d2-71e613c25a7d.roa
Signing time: Sat 02 Dec 2023 00:00:00 +0000
ROA not before: Sat 02 Dec 2023 00:00:00 +0000
ROA not after: Sat 06 Jan 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
30:08:09:3c:47:d3:5b:d4:60:14:1d:1c:06:78:32:8d:25:ae:15:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Dec 2 00:00:00 2023 GMT
Not After : Jan 6 23:59:59 2024 GMT
Subject: serialNumber=19889728f7dd1067bd391e11809ec98a8636f426ba9ab93ad24e97446e861789, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:c2:8f:52:00:7b:6c:3d:48:11:fb:ad:72:46:
0d:eb:8b:0b:00:a6:f7:31:94:c9:7e:3e:ec:b9:58:
6e:04:dc:c5:41:14:a7:f1:7d:e1:cf:b0:d4:c8:0a:
1e:4e:97:6a:8d:7f:ae:23:85:a1:8d:49:13:e6:49:
34:23:f9:33:41:f1:7b:f1:9b:2f:d9:72:3d:b9:57:
48:2c:bf:e8:e9:26:16:11:e1:97:92:9a:f8:08:8d:
e3:b4:15:09:39:73:4b:ab:2a:55:92:0c:b9:50:60:
eb:03:08:50:30:13:f7:ed:1d:2d:33:68:6c:5f:b7:
c8:e8:c6:f0:50:4d:e2:b3:85:03:7b:6f:08:2d:b3:
bb:9f:cd:a2:37:8d:e2:8e:13:af:78:8f:56:e6:4f:
5a:00:c8:63:b3:05:81:c1:fb:56:e6:9c:64:d7:ac:
38:6d:25:d4:66:63:ff:a5:97:86:d7:6d:6e:6e:00:
c9:0a:17:e2:3f:30:ac:ba:43:ea:73:b2:67:c9:bb:
9c:22:6c:12:93:ca:d5:81:ee:49:05:b3:81:2a:c0:
3e:81:e5:1b:49:7d:5f:0c:a7:0b:32:6b:92:96:8c:
e1:b0:9d:cf:a5:67:36:b6:32:30:d2:87:ce:76:10:
78:76:e6:25:40:2e:14:a7:4e:93:c7:e0:be:24:92:
0b:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:29:85:AF:5C:4F:C0:C3:EF:72:89:CB:C1:08:5C:4E:C4:90:2A:A1
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/aa081795-67b4-46b4-85d2-71e613c25a7d.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
7a:d9:82:d9:95:df:0e:14:e5:38:34:58:e0:97:24:25:68:ea:
e1:90:99:06:ff:9b:3f:e0:df:43:a2:0d:05:f9:58:f2:b7:d4:
30:dd:de:63:d7:5b:29:6f:ba:38:ae:64:e5:c3:1d:13:4c:91:
f7:9c:b4:e4:b2:21:2b:ae:cb:3f:e3:db:cd:59:e6:ce:3f:8b:
44:be:eb:9d:6e:f7:ef:b6:89:03:f4:54:14:fd:7e:e7:5c:19:
5b:17:4b:15:cc:04:4b:54:63:84:17:51:a0:92:fc:d4:4d:82:
74:fe:0b:21:46:77:3c:e1:06:d5:2b:d3:f6:6d:d3:c6:ca:69:
bd:a8:08:d5:90:de:eb:49:6a:42:2b:1a:c6:03:e9:c0:2b:d6:
37:f4:96:e8:62:92:b0:07:dd:0a:b9:cf:01:b3:fb:40:a4:ec:
b7:77:3b:e9:c8:15:e5:58:ee:8f:f6:53:06:4b:3f:58:bc:0b:
ec:89:a8:b0:c7:8c:44:55:0f:3e:5b:2a:fa:05:37:0c:c9:52:
f7:a2:04:d7:09:cd:db:66:84:38:4b:35:49:89:85:ca:3a:1c:
f7:65:2b:38:8d:08:4a:bb:ff:35:88:02:9f:35:b4:aa:a8:3a:
07:f2:57:3b:25:14:6a:55:06:22:92:77:60:1c:0b:b4:97:20:
ba:e5:ec:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:06 2024 by rpki-client on console-ams.rpki-client.org